API Terms of Service
Audit Assistant Limited
Effective Date: 1 April 2026
These API Terms of Service (“API Terms”) are supplementary to and form part of the Audit Assistant Terms of Use (“General Terms”). By accessing the Audit Assistant API, you agree to both these API Terms and the General Terms. In the event of conflict, these API Terms prevail for API-related matters. Capitalised terms not defined here have the meaning given in the General Terms.
1. Acceptance
By authenticating via OAuth or otherwise accessing the Audit Assistant API, you confirm that you have read, understood, and agree to be bound by these API Terms.
2. Your Responsibilities
You are solely responsible for:
2.1. All applications, integrations, scripts, and code (“Your Application”) that interact with the API.
2.2. The security of your API credentials, OAuth tokens, and any access keys. You must not share credentials or embed them in publicly accessible code.
2.3. Ensuring Your Application complies with all applicable laws, regulations, and professional standards — including the Privacy Act 2020 (NZ), the Australian Privacy Act 1988, and any auditing or financial reporting standards relevant to your use.
2.4. Obtaining all necessary consents from individuals whose personal information is accessed, transmitted, or processed via Your Application.
2.5. Any actions taken by Your Application on behalf of your users, including data retrieval, modification, or deletion performed through the API.
3. Permitted Use
3.1. The API is provided solely for the purpose of integrating with and extending the Service for your own legitimate business use.
3.2. You must not use the API to build a product or service that competes with or replicates substantial functionality of Audit Assistant.
3.3. You must not use the API to scrape, harvest, or bulk-export data beyond what is reasonably necessary for your integration.
4. Prohibited Conduct
In addition to the restrictions in clause 2.4 of the General Terms, you must not:
4.1. Exceed any rate limits or usage quotas communicated by Audit Assistant, whether by documentation or API response headers.
4.2. Attempt to circumvent authentication, rate limiting, or any other security mechanism.
4.3. Cache or store data obtained via the API beyond what is reasonably necessary for your integration to function, and in any case you must honour any data deletion or retention obligations under the General Terms and applicable law.
4.4. Use the API in a manner that degrades performance or availability of the Service for other users.
4.5. Redistribute, resell, or sublicense access to the API or data obtained through it.
5. Data Handling and Privacy
5.1. Any data you access through the API remains “Your data” as defined in the General Terms, and all obligations under clause 3 of the General Terms apply equally to data accessed or processed via the API.
5.2. You must implement appropriate technical and organisational security measures to protect any data obtained through the API — including encryption in transit (TLS) and secure storage at rest.
5.3. You must not transmit data obtained through the API to any third party without the data owner’s explicit consent.
5.4. If you become aware of any unauthorised access to data obtained via the API, you must notify Audit Assistant within 24 hours.
6. No Warranty for API
6.1. The API is provided “as is” and “as available.” Audit Assistant makes no warranty regarding the API’s availability, uptime, response times, or error-free operation.
6.2. Audit Assistant may modify, deprecate, or discontinue any API endpoint at any time. Audit Assistant will use reasonable efforts to provide notice of breaking changes, but is not obligated to do so.
6.3. Audit Assistant does not warrant that the API will meet your requirements or that it will be compatible with Your Application.
7. Limitation of Liability
7.1. To the maximum extent permitted by law, Audit Assistant has no liability — whether in contract, tort (including negligence), or otherwise — for any loss, damage, or claim arising from or related to your use of the API, including but not limited to:
- Data loss, corruption, or unauthorised access caused by Your Application;
- Errors, inaccuracies, or omissions in data returned by the API;
- Downtime, outages, or changes to the API;
- Any action taken by Your Application or its end users.
7.2. The limitation of liability in clause 8.8 of the General Terms applies to all claims arising under these API Terms.
8. Indemnity
You indemnify Audit Assistant against all liabilities, claims, costs, damages, and losses (including actual legal fees) arising from:
8.1. Your Application’s use of the API;
8.2. Any breach of these API Terms by you or users of Your Application;
8.3. Any claim by a third party (including your clients, their employees, or regulators) arising from data processed or actions taken via Your Application.
9. Suspension and Revocation
9.1. Audit Assistant may immediately suspend or revoke your API access without notice if it reasonably believes you have breached these API Terms or that your use poses a risk to the Service, its users, or their data.
9.2. Audit Assistant may suspend API access for maintenance, security, or operational reasons at any time.
10. Compliance Verification
Audit Assistant may, having given reasonable notice, request information reasonably necessary to verify your compliance with these API Terms. You must provide such information promptly and in good faith.
11. Licence and Intellectual Property
11.1. Audit Assistant grants you a limited, non-exclusive, non-transferable, revocable right to access and use the API solely in accordance with these API Terms and the General Terms.
11.2. All right, title, and interest in and to the API, including all related intellectual property rights, remain with Audit Assistant. No rights are granted by implication or otherwise except as expressly stated in these API Terms.
12. Changes to These Terms
Audit Assistant may update these API Terms at any time. Continued use of the API after changes are published constitutes acceptance. It is your responsibility to review these terms periodically. Audit Assistant will endeavour to notify you of changes via its newsletter or email, however failure to do so does not affect the validity or enforceability of any updated terms.
13. Governing Law
These API Terms are governed by the laws of New Zealand, and the parties submit to the exclusive jurisdiction of the Courts of New Zealand.