Acceptable Use Policy

Limbic Engineering Systems, LLC d/b/a Weave Legal — weave.legal

Effective Date: May 20, 2026

Last Updated: May 20, 2026

1. Introduction

This Acceptable Use Policy ("AUP") governs your access to and use of the products and services (the "Service") provided by Limbic Engineering Systems, LLC, doing business as Weave Legal ("Weave Legal," "we," "us," or "our"). This AUP is incorporated into and forms part of the Weave Legal Terms of Service (the "Agreement"). Capitalized terms not defined in this AUP have the meanings given to them in the Agreement.

This AUP applies to all users of the Service, including the Customer (as defined in the Agreement) and its Authorized Users. "You" and "your" refer to the Customer and, where applicable, each Authorized User.

We may update this AUP from time to time to reflect changes in our Service, applicable law, or industry best practices. We will notify you of material changes in accordance with the Agreement. Your continued use of the Service following any update constitutes your acceptance of the revised AUP.

Violations of this AUP may result in suspension or termination of your access to the Service, as described in Section 8 below.

2. General Prohibited Uses

You must not use the Service, directly or indirectly, to:

• Violate applicable law. Violate any applicable federal, state, local, or international law, regulation, or court order, or facilitate any such violation by others.
• Infringe intellectual property rights. Infringe, misappropriate, or violate the intellectual property rights, proprietary rights, or privacy rights of Weave Legal or any third party.
• Transmit harmful code. Transmit malware, viruses, worms, Trojan horses, or any other harmful, disruptive, or destructive code or files through the Service.
• Gain unauthorized access. Attempt to gain unauthorized access to Weave Legal's systems, networks, infrastructure, or any other user's account or data.
• Interfere with the Service. Interfere with, disrupt, degrade, or impair the operation, performance, or availability of the Service or any related infrastructure.
• Reverse engineer. Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code, underlying architecture, algorithms, or data models of the Service, except to the extent expressly permitted by applicable law notwithstanding this restriction.
• Build a competitive product. Use the Service, or any data, output, or information obtained through the Service, to build, develop, train, or improve a product or service that competes with Weave Legal.
• Resell or redistribute. Resell, sublicense, redistribute, or make the Service available to any third party other than your Authorized Users, except as expressly authorized in the Agreement.
• Circumvent limits or restrictions. Circumvent, disable, or interfere with any usage limits, rate limits, security measures, access controls, or other technical restrictions imposed by the Service.
• Benchmark without consent. Use the Service for benchmarking, competitive analysis, or performance comparison purposes without Weave Legal's prior written consent.

3. Third-Party Service Compliance

The Service enables you to connect third-party software applications ("Third-Party Services"), such as Clio, Lawmatics, Gavel, and others, through a unified integration layer. Your use of the Service in connection with any Third-Party Service is subject to the following requirements:

• Comply with Third-Party terms. You must comply with the terms of service, acceptable use policies, API usage policies, and any other applicable terms governing each Third-Party Service that you connect to through the Service.
• No circumvention. You must not use the Service to circumvent, bypass, or avoid any restriction, limitation, billing mechanism, or access control imposed by any Third-Party Service.
• No unauthorized access. You must not use the Service to access any Third-Party Service beyond the scope of access that you are independently authorized to exercise under your agreement with that Third-Party Service provider.
• Maintain valid licenses. You are responsible for maintaining valid, current licenses, subscriptions, and authorizations for all Third-Party Services that you connect to through the Service. Weave Legal is not responsible for any fees, charges, or penalties imposed by a Third-Party Service provider as a result of your use of the Service.

4. AI-Specific Prohibitions

The Service provides access to artificial intelligence capabilities, including large language model ("LLM") outputs generated through MCP connections to Third-Party Services and through Weave Legal's Agentic Routines. The following requirements apply to all use of AI capabilities within the Service.

• No reliance without review. You must not rely on any AI-generated output from the Service — whether produced through MCP connections, Agentic Routines, or any other feature — without independent review and verification by a qualified human professional. AI outputs are not legal advice and must be independently validated before use in legal practice, client communications, court filings, regulatory submissions, or any other professional context.
• No misrepresentation of AI outputs. You must not present AI-generated content as human-authored professional work product without appropriate disclosure. You are responsible for ensuring that any use or distribution of AI-generated content complies with your obligations of candor and transparency to clients, courts, opposing counsel, and other parties.
• AI disclosure obligations. You are solely responsible for complying with all applicable bar rules, ethical opinions, court rules, and legal or regulatory requirements regarding the disclosure of AI use to clients, tribunals, opposing counsel, and any other parties. Weave Legal does not monitor or ensure your compliance with these obligations.
• No guardrail circumvention. You must not attempt to circumvent, disable, bypass, or otherwise undermine any safety measures, content filters, moderation systems, or usage restrictions of any LLM provider (including Anthropic and OpenAI) accessed through the Service. This includes, without limitation, prompt injection, jailbreaking, or any other technique designed to elicit outputs that the LLM provider's safeguards are designed to prevent.
• No model training. You must not use the Service, or any data, content, or outputs obtained through the Service, for the purpose of training, fine-tuning, developing, or improving any machine learning model, artificial intelligence system, or similar technology.
• No harmful AI use. You must not use the Service to generate content that is deceptive, fraudulent, defamatory, threatening, harassing, or intended to cause harm to any individual, entity, or group. You must not use the Service to produce misleading legal documents, fabricated case citations, false evidence, or any other content intended to deceive a court, tribunal, regulatory body, or opposing party.

5. Legal Industry Obligations

The Service is designed for use by law firms and legal services organizations. You acknowledge and agree to the following:

• Professional conduct. You are solely responsible for your compliance with all applicable rules of professional conduct, bar association rules, ethical opinions, and legal ethics requirements in every jurisdiction in which you practice. Weave Legal does not provide legal advice and does not assume responsibility for your professional obligations.
• AI competence and supervision duties. You acknowledge that the use of AI in legal practice may implicate professional duties including, without limitation, the duty of competence (e.g., ABA Model Rule 1.1 and its state equivalents), the duty of confidentiality (e.g., Rule 1.6), and supervisory responsibilities over lawyers and non-lawyers who use AI tools (e.g., Rules 5.1 and 5.3). You are responsible for understanding and satisfying these duties in connection with your use of the Service.
• No unauthorized practice of law. You must ensure that your use of the Service does not result in the unauthorized practice of law by non-lawyer staff, paraprofessionals, or any other individual who is not licensed to practice law in the applicable jurisdiction.
• Privilege preservation. You are responsible for evaluating and maintaining attorney-client privilege, work product protections, and any other applicable legal privileges when transmitting privileged or confidential communications through the Service. Weave Legal does not guarantee that the use of the Service will preserve any legal privilege, and you should consult your own professional obligations before transmitting privileged materials.

6. Data and Security Requirements

Given the sensitive and confidential nature of legal data processed through the Service, you agree to the following:

• Authorization to transmit. You must not transmit any data through the Service that you do not have the legal right or authorization to transmit, including data subject to restrictions imposed by law, regulation, contract, or court order.
• Credential security. You must use reasonable security practices to protect account credentials, API keys, and access tokens associated with your use of the Service. This includes, at a minimum, using strong, unique passwords and enabling multi-factor authentication where available.
• Breach notification. You must promptly notify Weave Legal at the contact address specified in the Agreement of any known or suspected security breach, unauthorized access, or compromise of your account credentials.
• No access to other customers' data. You must not attempt to access, view, copy, or interfere with data belonging to any other Weave Legal customer.
• Data protection compliance. You must comply with all applicable data protection and privacy laws and regulations governing the data you transmit through the Service, including but not limited to state data privacy laws, the California Consumer Privacy Act (as amended), and any other applicable data protection requirements.

7. Routine-Specific Requirements

"Agentic Routines" are governed AI workflows that execute on Weave Legal's infrastructure and interact with your connected Third-Party Services and LLM providers. The following requirements apply to your creation and use of Routines.

• Review before deployment. You must review and validate all Routine configurations and outputs before deploying any Routine into a production or live environment.
• Human approval for irreversible actions. You must not create or deploy Routines that automatically take irreversible actions — such as filing documents, sending client communications, or modifying matter records — without incorporating a human approval step prior to execution of the irreversible action.
• No circumvention of governance controls. You must not create or deploy Routines designed to circumvent, bypass, or override governance controls, permission restrictions, approval workflows, or access limitations established within the Service or any connected Third-Party Service.
• Responsibility for Routine outputs. You are solely responsible for the configuration, testing, deployment, and outputs of all Routines created under your account. Weave Legal provides the infrastructure for Routine execution but does not review, approve, or guarantee the accuracy, legality, or appropriateness of any Routine's output.

8. Enforcement

• Investigation. Weave Legal may investigate any suspected or reported violation of this AUP. You agree to cooperate with any such investigation and to provide information reasonably requested by Weave Legal.
• Suspension and termination. Weave Legal may, in its sole discretion, suspend or terminate your access to the Service for violations of this AUP. For violations that pose an imminent risk to the security, integrity, or availability of the Service, or that may expose Weave Legal or other users to legal liability, Weave Legal may suspend access without prior notice. For other violations, Weave Legal will use reasonable efforts to notify you and provide an opportunity to cure before suspending or terminating access, unless the violation is not reasonably susceptible to cure.
• Reporting to authorities. Weave Legal may report suspected illegal activity to appropriate law enforcement or regulatory authorities and may cooperate with investigations as required or permitted by applicable law.
• No waiver. Weave Legal's failure to enforce any provision of this AUP at any time does not constitute a waiver of that provision or of Weave Legal's right to enforce it in the future.

9. Reporting Violations

If you become aware of any violation of this AUP, please report it to:

support@weave.legal

We take all reports seriously and will investigate promptly.

10. Definitions

Capitalized terms used but not defined in this AUP have the meanings assigned to them in the Weave Legal Terms of Service. For purposes of this AUP:

• "Service" means the Weave Legal cloud-based platform, including MCP integrations, Agentic Routines, APIs, and all related tools and services.
• "Third-Party Service" means any third-party software application, platform, or service that you connect to through the Service, including but not limited to Clio, Lawmatics, Gavel, and other legal technology providers.
• "Routine" or "Agentic Routine" means a governed AI workflow created by the Customer that executes on Weave Legal's infrastructure and interacts with connected Third-Party Services and LLM providers.
• "LLM Provider" means any provider of large language model or other artificial intelligence services accessed through the Service, including Anthropic and OpenAI.

Limbic Engineering Systems, LLC d/b/a Weave Legal — weave.legal

Questions about this policy? Contact us at support@weave.legal.