Acceptable Use Policy

Last updated 2026-07-07

Clearfront is a powerful tool, and with it comes responsibility. This policy sets out what you may and may not use Clearfront for. It applies to the software, this website, and any hosted service we offer, and it forms part of our Terms of Use. The core rule is simple: authorized use only.

1. Authorized use only

You may use Clearfront only against your own assets and accounts, or against a target you are clearly authorized to assess. If you do not have that authorization, do not run it. Clearfront operates on public data alone and performs no intrusive probing, but public data can still be used to harm people, and you are responsible for staying on the right side of that line.

2. Permitted uses

  • -Checking your own digital footprint and exposure.
  • -Security research and penetration testing you are authorized to perform.
  • -Investigations by law enforcement acting on a lawful basis.
  • -Journalism and investigations in the public interest.
  • -Academic and educational research.

3. Prohibited uses

You must not use Clearfront to:

  • -Stalk, harass, threaten, or intimidate anyone.
  • -Doxx, expose, or publish private information about a person without a lawful basis.
  • -Surveil or profile people without their consent or a lawful authority to do so.
  • -Commit fraud, impersonation, social engineering, or identity theft.
  • -Enable account takeover, credential stuffing, or unauthorized access.
  • -Bypass or defeat the access controls or terms of service of third-party platforms.
  • -Break any applicable local, national, or international law.

4. Your legal responsibility

You are solely responsible for ensuring your use of Clearfront complies with all laws that apply to you. Depending on where you and your target are, this can include the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Computer Fraud and Abuse Act (CFAA), and equivalent laws elsewhere. When in doubt, get legal advice before you run a sweep.

5. Data about other people

When you use Clearfront on someone else, you act as the data controller for the personal data you gather. That means you need a lawful basis, you should collect only what you need, and you must handle and store it responsibly. Because the software runs on your own machine, this processing is yours, not ours.

6. How the tool stays on the defensive side

Clearfront is built to keep you on the right side of that line: it collects only public data, it favors passive sources, and sensitive checks such as infostealer exposure are scoped to defensive self-checks and never surface working credentials. These safeguards support responsible use, but they do not replace your obligation to have authorization.

7. Reporting and enforcement

If you believe someone is misusing Clearfront, or you have a security or abuse concern, contact us at privacy@clearfront.sh. Because the open-source software runs on your own machine, we cannot disable a local copy, but we may withdraw support, remove access to any hosted service, and decline participation in the project community for anyone who violates this policy. We may also report unlawful activity to the appropriate authorities.

8. Changes and contact

We may update this policy from time to time; the date at the top shows the latest version. Questions about acceptable use: privacy@clearfront.sh.