API Usage Policy

Access to the AskBiz API requires:

• An active Business plan subscription
• A valid API key generated from Account Settings → Developer → API Keys
• Acceptance of this API Usage Policy and the general Acceptable Use Policy
• Compliance with applicable law in your jurisdiction

API access is a privilege, not a right. AskBiz may modify, restrict, or revoke API access at any time with reasonable notice, except where immediate action is required to prevent harm or policy violations.

The API may be used to:

• Integrate AskBiz data into your own internal business tools and dashboards
• Trigger AskBiz analysis from your own workflow automation (e.g. when a Shopify order threshold is hit)
• Push data from custom sources not covered by native connectors
• Retrieve Business Pulse scores, alerts, and Daily Brief content programmatically
• Build internal tools for your own organisation's use (up to 50 internal users without an enterprise agreement)

You must not use the API to:

• Build a competing business intelligence product or service
• Resell API access to third parties
• Circumvent subscription plan limits (e.g. using the API to get unlimited questions on a Free plan)
• Send automated requests designed to exhaust rate limits or degrade service for other users
• Probe, test, or scan AskBiz systems for security vulnerabilities
• Access or attempt to access data belonging to other AskBiz users
• Scrape or extract AskBiz's proprietary content, algorithms, or methodology
• Use the POST /ask endpoint to generate bulk content for marketing, SEO, or automated publishing

API keys must be treated as credentials:

• Store keys in environment variables or secrets managers — never in source code or public repositories
• Use one key per integration — makes it easy to revoke individual integrations
• Rotate keys every 90 days
• Revoke keys immediately when integrations are decommissioned or team members leave
• Monitor usage for anomalies — Account Settings → Developer → API Usage

You are responsible for all activity that occurs using your API key. If a key is compromised, revoke it immediately and contact security@askbiz.co.

Rate limits are in place to ensure fair access for all users. Deliberately attempting to circumvent rate limits — for example, by rotating API keys, distributing requests across multiple accounts, or using exponential request bursts to exploit rate limit reset windows — is a violation of this policy and may result in account termination.

If your legitimate use case requires higher limits, contact hello@askbiz.co for an enterprise assessment. We do not accommodate limit increases for use cases that violate this policy.