Acceptable Use Policy

← Back to Home

1. General Scope

This Acceptable Use Policy ("AUP") applies to all users, clients, and administrators who access or interact with the CreditBoosters USA platform, including all email communications generated or facilitated through the Service.

CreditBoosters USA, Inc. provides a B2B and B2C continuing education credit management platform. Access is restricted to:

• Registered professionals with verified email accounts.
• Authorized administrators of contracted institutional clients (education providers, employers, licensing boards).
• Authorized third-party verifiers (e.g., licensing board reviewers with valid access credentials).

This AUP is designed to comply with the acceptable use policies of our email delivery provider, Mailgun (Sinch), as well as applicable anti-spam laws including CAN-SPAM, CASL, and GDPR ePrivacy provisions.

2. Nature of Allowable Traffic

All email communications sent through the CreditBoosters platform are strictly transactional and system-generated. Permitted message types include:

• Course enrollment confirmations
• Credit completion certificates and receipts
• License renewal deadline reminders (30-day, 14-day, 7-day intervals)
• Credential verification request notifications
• Compliance status change alerts
• Account security notifications (successful login from new device, password reset, MFA enrollment)
• Billing receipts and payment confirmations
• Team member invitation and onboarding emails
• Service disruption and maintenance notifications

The following types of email are explicitly prohibited and will never be sent through our platform:

• Marketing messages, promotional offers, or discount campaigns
• Newsletters, digest emails, or curated content roundups
• Cold outreach, prospecting, or lead-generation messages
• Upsell or cross-sell communications
• Product announcements to non-users
• Any message sent to recipients who have not registered an account or signed a service agreement

3. Consent & Opt-In

CreditBoosters USA obtains recipient consent through the following mechanisms — never through purchased, rented, or harvested lists:

• Individual professionals: consent is established when the user creates an account. Email verification is required before any transactional messages are sent. Registration constitutes informed consent for transactional communications essential to the service.
• Institutional clients (B2B): consent is formalized through a signed service agreement (Master Service Agreement or equivalent). Authorized administrators provide employee/member lists; each individual is verified before receiving messages.
• Consent records: all consent events are timestamped and stored for audit purposes. Records include the method of consent, date, IP address (where applicable), and the specific service agreement version.

Notification management: users can manage their notification preferences at creditboostersusa.com/notification-preferences.html. Essential transactional messages (security alerts, billing receipts, critical service notifications) cannot be fully disabled because they are integral to account security and contractual obligations. Optional operational updates (such as CE completion summaries and team compliance digests) can be turned off at any time.

All messages include a List-Unsubscribe header and a "Manage notification settings" link.

4. Zero-Tolerance Spam Policy

CreditBoosters USA maintains an absolute zero-tolerance policy toward unsolicited email. The following rules are enforced automatically and without exception:

• Complaint rate threshold: if the complaint rate for any client or sending stream exceeds 0.1%, sending from that stream is immediately suspended pending review by our deliverability team.
• Bounce rate threshold: if the bounce rate exceeds 5% for any sending stream, a review is triggered. Continued issues result in list quarantine or account suspension.
• Feedback loop (FBL) monitoring: we enroll in ISP feedback loops through Mailgun. Addresses reported through FBLs are automatically and permanently suppressed.
• List-Unsubscribe headers: every message includes both List-Unsubscribe and List-Unsubscribe-Post headers, enabling one-click suppression through email clients that support RFC 8058.
• Suppression list: a global suppression registry covers hard bounces, complaints, manual unsubscribe requests, and FBL reports. Once an address is suppressed, it is never re-engaged.

5. Prohibited Content

Content transmitted through the CreditBoosters platform must not include or promote:

• Spam: any message sent without the recipient's prior consent or not directly triggered by a user action or system event.
• Phishing or social engineering: messages designed to deceive recipients into disclosing personal information, credentials, or financial data.
• Malware and harmful code: attachments or links containing viruses, trojans, spyware, ransomware, or any other malicious software.
• Illegal content: any material that violates local, state, federal, or international law.
• Defamatory or harassing material: content that is libelous, threatening, abusive, or intended to intimidate.
• Intellectual property infringement: unauthorized use of copyrighted material, trademarks, or proprietary content.
• Deceptive subject lines or headers: misrepresenting the sender, content, or purpose of the message.
• Forged sender information: spoofing or falsifying sender addresses, routing data, or authentication headers.

6. Email Authentication Standards

All email sent from CreditBoosters USA domains is authenticated using industry-standard protocols:

• SPF (Sender Policy Framework): our DNS records authorize only designated sending servers (Mailgun infrastructure). Messages from unauthorized sources fail SPF checks.
• DKIM (DomainKeys Identified Mail): all outbound messages are cryptographically signed with a 2048-bit DKIM key, allowing receiving servers to verify message integrity and origin.
• DMARC (Domain-based Message Authentication, Reporting & Conformance): our DMARC policy is set to p=reject, instructing receiving servers to reject any message that fails both SPF and DKIM alignment checks. We regularly review DMARC aggregate and forensic reports.

7. Monitoring & Reporting

We actively monitor all email traffic for quality, compliance, and security:

• Automated bounce and complaint tracking: real-time dashboards monitor delivery rates, bounce rates, and complaint ratios for each client and sending stream.
• Volume anomaly detection: sudden spikes exceeding 150% of the trailing 7-day average trigger automatic sending holds and alert our operations team for review.
• Content review: new or modified email templates are reviewed before deployment. Template changes require approval from at least one additional team member.
• Rate limiting: per-client and per-template sending caps prevent accidental bulk transmissions.
• Abuse reporting: suspected abuse can be reported to abuse@creditboostersusa.com. All reports are acknowledged within 24 hours and investigated within 48 hours.

8. Enforcement

Violations of this AUP are addressed through a graduated response framework:

1. Warning: for first-time, low-severity infractions (e.g., minor template deviations), the responsible client receives written notice identifying the violation and required corrective actions.
2. Suspension: for repeated or moderate-severity violations (e.g., elevated complaint rates, unapproved sending), the offending client's sending capabilities are immediately suspended until the issue is resolved and verified.
3. Termination: for severe or willful violations (e.g., spam, phishing, malware distribution), the client's account is permanently terminated. No refund is issued for the remainder of the subscription period.
4. External reporting: in cases involving illegal activity, we report the matter to relevant law enforcement agencies, ISP abuse desks, and email blacklist operators as appropriate.

CreditBoosters USA reserves the right to bypass lower enforcement steps and proceed directly to suspension or termination when the severity or urgency of the violation warrants it.

9. Client Responsibility

Institutional clients who use CreditBoosters on behalf of their employees or members are responsible for:

• Ensuring that all email addresses imported into the platform belong to real, consenting individuals.
• Maintaining accurate and current contact records; promptly updating or removing stale addresses.
• Complying with all applicable privacy and anti-spam laws within their jurisdiction.
• Educating their authorized users about this AUP and the prohibited uses outlined in our Terms of Service.
• Promptly notifying CreditBoosters of any compromised accounts, unauthorized access, or suspected abuse within their organization.

10. Contact

For questions about this Acceptable Use Policy, to report a violation, or to request clarification on permitted uses:

Abuse & Compliance Contact:
Email: abuse@creditboostersusa.com

CreditBoosters USA, Inc.
4207 Ridgepoint Drive, Suite 140
Austin, TX 78731, United States
Phone: +1 (512) 843-6291
General: info@creditboostersusa.com

See also: Terms of Service · Privacy Policy · Trust & Security Center