LedgerTax Acceptable Use Policy

Effective date: 11 May 2026

Provider: Silver Sixpence (Pty) Ltd ("Sixpence", "we", "us")

Product: LedgerTax

Contact: [email protected]

This Acceptable Use Policy ("AUP") governs your use of LedgerTax (the "Service"), including the website, application, APIs if exposed, and any related features. It forms part of the LedgerTax Terms of Use. Capitalised terms not defined here have the meaning given in the Terms of Use.

1) Purpose of this policy

LedgerTax is designed to help users calculate South African crypto tax outcomes using FIFO and generate supporting reports. This AUP exists to:

  • Protect users and client data.
  • Maintain platform security and availability.
  • Prevent misuse that could expose Sixpence or users to legal, security, or operational risk.

2) General rules

You may use LedgerTax only for lawful purposes and only in ways that comply with:

  • South African law, including POPIA and any applicable tax laws.
  • Any other laws that apply to you.
  • The LedgerTax Terms of Use and this AUP.

3) Prohibited activities

You must not do any of the following:

3.1 Unlawful, harmful, or deceptive use

  • Use the Service to break any law or regulation.
  • Use the Service to facilitate fraud, identity theft, money laundering, or any other unlawful activity.
  • Use LedgerTax outputs to fabricate records or mislead SARS or any third party.
  • Impersonate another person or misrepresent your authority to act for a taxpayer or client.

3.2 Unauthorised data submission

  • Upload, sync, or process personal information, including ID numbers, tax numbers, transaction histories, and wallet addresses, unless you have lawful authority, mandate, or consent to do so.
  • Upload confidential or regulated information you are not permitted to process or disclose.

3.3 Security violations

  • Attempt to gain unauthorised access to any account, data, or system.
  • Probe, scan, test, or exploit vulnerabilities, including penetration testing, without Sixpence's prior written permission.
  • Circumvent authentication controls or session security.
  • Introduce malware, spyware, ransomware, or any harmful code.
  • Attempt to obtain API keys, credentials, or tokens belonging to others.
  • Connect API keys or credentials with trading, withdrawal, transfer, or account-control permissions. LedgerTax requires read-only access only.

3.4 Abuse of the platform or service disruption

  • Interfere with, overload, or disrupt the Service, for example denial-of-service behaviour.
  • Use automation that generates excessive requests, uploads, or syncs beyond reasonable use.
  • Attempt to bypass rate limits, quotas, or technical controls.

3.5 Misuse of intellectual property and content

  • Copy, modify, reverse engineer, decompile, or attempt to extract source code or proprietary logic, except to the extent permitted by law.
  • Remove or obscure any proprietary notices, branding, or legal notices.
  • Resell, sublicense, rent, or white-label LedgerTax without a written agreement with Sixpence.

3.6 Sharing access and account misuse

  • Share login credentials or allow unauthorised users to access your account.
  • Sell or transfer your account to another person or entity without our approval.
  • Use the Service in a way that violates your organisation's security policies if applicable.

4) Data integrity and user responsibilities

Because LedgerTax produces outputs based on the data, classifications, and assumptions available to the Service:

  • You must make reasonable efforts to upload, connect, and maintain complete and accurate data.
  • You must not intentionally omit data or manipulate inputs to create misleading outputs.
  • You must not deliberately misclassify transactions, alter base costs, change tax-year settings, or assign capital or revenue treatment in a way intended to mislead SARS or any third party.
  • You remain responsible for reviewing automatically assigned classifications and correcting any errors.
  • You remain responsible for verifying reports before filing, submitting, sharing, or relying on them.

5) Enterprise use (accountants, businesses, auditors)

If you use LedgerTax on behalf of others, you must:

  • Have a valid mandate or authority to process each client's data.
  • Comply with POPIA and relevant professional obligations.
  • Ensure only authorised staff can access client workspaces and data.
  • Avoid commingling client data in ways that violate confidentiality or your client agreements.

6) Enforcement

We may take one or more of the following actions if we reasonably believe you have breached this AUP or pose a security or legal risk:

  • Warn you and request corrective action.
  • Suspend or restrict access to the Service.
  • Terminate your account or contract.
  • Remove or disable access to content or data where necessary.
  • Report unlawful activity to relevant authorities where required or appropriate.

We may also cooperate with law enforcement or regulators where legally required.

7) Reporting suspected misuse

If you believe:

  • Your account has been compromised.
  • Someone is misusing LedgerTax.
  • There is a security vulnerability.

Contact [email protected] as soon as possible. Do not publicly disclose vulnerabilities without written permission.

8) Changes to this policy

We may update this AUP from time to time. If changes are material, we will take reasonable steps to notify you. Continued use of the Service means you accept the updated AUP.