Authorized Use Policy

Last Updated: May 2026

The Exarlo platform is a security assessment and auditing tool designed to help organizations identify and remediate vulnerabilities in their own infrastructure. Misuse of our platform is strictly prohibited.

1. Explicit Authorization Required

You may only use Exarlo to scan domains, IP addresses, and digital assets that you either explicitly own or have been legally authorized to test by the owner. By initiating an assessment, you are cryptographically affirming that you possess this authorization.

2. Prohibited Targets

You are strictly prohibited from initiating assessments against:

  • Third-party websites, competitors, or any entity without their explicit written consent.
  • Government, military, or critical infrastructure systems.
  • Any target where such scanning violates local, state, national, or international law.

3. Verification and Auditing

Exarlo reserves the right to request proof of authorization at any time. We may pause or cancel scans if we detect suspicious activity. In the event of a dispute or a complaint from a third party regarding an unauthorized scan, we cooperate fully with law enforcement and will disclose relevant logs and identifying information.

4. Reporting Abuse

If you believe your domain was scanned by our platform without your permission, please contact our security team immediately with relevant logs and timestamps.

Contact our abuse team: abuse@exarlo.xyz.