Back homeEffective 2026-05-22

Acceptable Use Policy

Acceptable Use Policy

This Acceptable Use Policy ("AUP") sets out the rules of the road for everyone who uses the BantuHR platform ("BantuHR"). It applies to Customer organisations, their authorised users, and any visitor who accesses bantuhr.com or the Platform.

This Policy forms part of the Terms and Conditions and is incorporated by reference. Breach of this Policy is a material breach of the Terms.

1. The principle

Use BantuHR the way a reasonable HR team would: to manage your own workers, run your own payroll, handle your own leave, and communicate with your own people. Don't use it to harm others, break the law, or compromise the security or stability of the Platform for everyone else.

2. Prohibited activities

You must not:

Misuse the Platform's email and communications features.

  • Send unsolicited bulk email through the Platform.
  • Use BantuHR's transactional email pipeline to reach addresses outside your own workforce (former workers, prospective customers, mailing lists).
  • Forge sender headers, spoof addresses, or attempt to bypass BantuHR's anti-spam controls.
  • Use BantuHR's workflow engine to harass, threaten, or intimidate a Worker or a third party.

Compromise the Platform's integrity.

  • Probe, scan, or test the vulnerability of any part of BantuHR without our prior written authorisation.
  • Attempt to bypass authentication, authorisation, or rate-limiting controls.
  • Submit content designed to overwhelm, crash, or otherwise interfere with the operation of the Platform.
  • Reverse engineer, decompile, or attempt to derive the source code of any part of BantuHR.
  • Run automated scrapers against bantuhr.com or the Platform's APIs beyond a reasonable, documented integration use case.

Misuse the API and integrations.

  • Resell, sublicense, or distribute API access without our prior written agreement.
  • Build a competing HR product that uses BantuHR's APIs as its primary data source.
  • Use API keys outside the Customer organisation they were issued to.

Process information you have no right to process.

  • Upload personal information about anyone you do not have lawful authority to process under POPIA or the equivalent law of the data subject's jurisdiction.
  • Use BantuHR to track, surveil, or monitor individuals outside the legitimate HR scope (covert recording, off-shift location tracking, opinions on personal life).
  • Upload content that is unlawful, defamatory, obscene, or violates the rights of a third party.

Engage in fraud or financial abuse.

  • Submit false payroll information, manufactured leave records, or fabricated time entries to claim benefits or compensation you are not entitled to.
  • Use the Platform to perpetrate identity theft, tax fraud, or any financial crime.
  • Use stolen, fraudulent, or unauthorised payment methods to pay for a subscription.

3. Worker protections

BantuHR exists to make HR work for workers as much as for HR teams. Customers using the Platform must:

  • Inform their Workers that their HR information is being processed through BantuHR (as required by POPIA).
  • Honour Workers' access, correction, and deletion requests, treating BantuHR as one location of their data rather than a barrier to it.
  • Refrain from configuring BantuHR in ways that would defeat the rights granted to Workers under the Basic Conditions of Employment Act, the Labour Relations Act, the Employment Equity Act, or any other applicable South African labour law.

We reserve the right to refuse or remove configurations that, in our reasonable judgement, exist to harm Workers rather than to operate HR.

4. Enforcement

We monitor the Platform for AUP compliance using automated systems and human review. Where we identify a possible breach, we may:

  • Contact the Customer's administrator to investigate.
  • Limit the affected feature (rate-limiting bulk email, throttling API access).
  • Suspend the Customer's tenant.
  • Terminate the subscription for material breach under section 11 of the Terms and Conditions.

Where we suspend or terminate for AUP breach, we will provide a written explanation. The Customer remains liable for fees through the date of termination.

We may, in our discretion, report suspected criminal activity to the South African Police Service or the relevant regulator.

5. Reporting

If you believe a Customer or user is breaching this Policy, please write to abuse@bantuhr.com with as much detail as you can share. We treat abuse reports as confidential to the extent the law allows.

6. Changes to this Policy

We may update this Policy from time to time. Material changes will be notified to Customers at least 30 days in advance.

7. Contact

For questions about this Policy:

Zavon Holdings Group (Pty) Ltd hello@bantuhr.com