Home

Acceptable use policy

Last updated: 27 June 2026 · Terms of service

This policy sets out the standards everyone must follow when using Journey. It exists to keep learner data safe and the service dependable for every training provider. It supplements, and is part of, our terms of service.

You must not

  • Attempt to access another tenant's data, or circumvent the platform's tenant-isolation, role-based access or audit controls.
  • Upload unlawful, harmful or infringing content, malware, or material you are not authorised to process.
  • Probe, scan or load-test the service, or attempt to disrupt it, except under a written test agreement with us.
  • Share account credentials, or use the platform to send unsolicited or deceptive communications.
  • Use AI features to generate unlawful content or to attempt to extract another organisation's data.

You must

  • Keep credentials confidential, use strong authentication, and report suspected security issues promptly.
  • Ensure you have a lawful basis to process the learner and employer data you place in the platform.
  • Use the service in line with ESFA / DfE funding rules and your own safeguarding and data-protection obligations.

Enforcement

We may suspend access where there is a credible risk to data, availability or other customers, and will tell the affected provider as soon as we reasonably can. Serious or repeated breaches may lead to termination under the terms of service.

Reporting abuse

Report misuse or security concerns to security@journeyapp.co.uk.