Acceptable Use Policy

Last updated March 16, 2026

This Acceptable Use Policy (“AUP”) defines what is and is not permitted when using pxdiff. It supplements the Terms of Service.

Sites Feature

The sites feature allows you to upload Storybook and Ladle build tarballs for temporary hosting at *.sites.pxdiff.com. The following rules apply:

  • Uploaded tarballs must be legitimate Storybook or Ladle builds (static HTML/CSS/JS generated by those tools).
  • Maximum tarball size: 500 MB.
  • Hosted sites expire and are deleted after 7 days.

You must not upload:

  • Arbitrary web applications, marketing sites, or content unrelated to component catalogs.
  • Malicious code, including scripts designed to exploit browser vulnerabilities, perform cryptomining, or execute drive-by downloads.
  • Phishing pages or content that impersonates other services or individuals.
  • Illegal material, including content that violates applicable laws in your jurisdiction.
  • Content that infringes on the intellectual property rights of others.

Capture Workers

When using the pxdiff capture worker (which runs Playwright and Chromium to take screenshots of URLs you provide), you must not submit URLs that:

  • Are designed to exploit browser or renderer vulnerabilities (e.g., crafted to trigger Chromium bugs, memory corruption, or sandbox escapes).
  • Target internal or private networks (e.g., localhost, 10.x.x.x, 192.168.x.x, 169.254.x.x, or internal DNS names) in an attempt to access infrastructure not intended to be public.
  • Are intended to perform denial-of-service attacks against any target, including pxdiff infrastructure or third-party services.
  • Serve content that would violate this AUP if uploaded directly (see Sites Feature above).

Rate Limits

pxdiff enforces per-API-key rate limits to ensure fair access for all users:

OperationLimit
Captures10 per minute
Diffs10 per minute
Snapshots60 per minute
Sites5 per minute
Read operations100 per minute
Management operations30 per minute

Additionally, magic link login requests are limited to 5 per 10 minutes per IP address.

Requests exceeding these limits receive a 429 Too Many Requests response. Do not attempt to circumvent rate limits by rotating API keys, using multiple accounts, or other evasion techniques.

Prohibited Uses

You must not use pxdiff to:

  • Store personally identifiable information (PII) or protected health information (PHI) in screenshots without appropriate safeguards. If your screenshots contain real user data, you are responsible for compliance with applicable privacy and data protection regulations (e.g., GDPR, HIPAA).
  • Conduct surveillance — do not use the capture worker or screenshot upload features to monitor individuals without their knowledge or consent.
  • Scrape or crawl websites without authorization — do not use the capture worker as a general-purpose web scraper or to capture screenshots of sites you do not own or have permission to test.
  • Engage in fraudulent billing — do not manipulate credit balances, exploit billing logic, or use stolen payment methods.
  • Interfere with the Service — do not attempt to gain unauthorized access to pxdiff infrastructure, other users’ accounts or data, or degrade service availability for other users.
  • Reverse engineer the Service beyond what is permitted by applicable law.

Account Suspension and Termination

We may suspend or terminate your account, without prior notice if necessary, for:

  • Repeated or deliberate rate limit violations after receiving a warning.
  • Capture worker abuse — submitting URLs designed to exploit, attack, or probe infrastructure.
  • Prohibited content — uploading material that violates the Sites Feature rules above.
  • Fraudulent billing activity — including use of stolen payment methods, exploitation of billing bugs, or deliberate credit manipulation.
  • Any other violation of this AUP or the Terms of Service.

Where possible, we will notify you of the violation and provide an opportunity to correct the behavior before suspension. Severe or repeated violations may result in immediate termination.

Reporting Violations

If you become aware of content or behavior on pxdiff that violates this policy, please report it to abuse@pxdiff.com.

Changes to This Policy

We may update this AUP from time to time. Material changes will be communicated via email or in-app notification.

Contact

For questions about this Acceptable Use Policy, email us at support@pxdiff.com.

Last updated: March 16, 2026