The agreement prohibits a range of activities including scraping, automated access beyond reasonable human rates, spam transmission, system interference, uploading malicious code, harvesting personal information, commercial solicitation, identity misrepresentation, and circumventing access controls.
This analysis describes what OpenRouter's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision defines the boundaries of permitted service use and establishes grounds for account enforcement action. Violations may result in account suspension or termination, and the clause authorizes OpenRouter to assess what constitutes an unreasonable load on infrastructure at its sole discretion.
This new provision establishes clear restrictions on automated access, scraping, and improper use of the service infrastructure.
View full change record →Under this clause, users are contractually prohibited from a defined list of activities including scraping, automated over-access, spam, and identity misrepresentation. OpenRouter retains sole discretion to determine whether a user's activity imposes an unreasonable infrastructure load, which may affect account standing.
How other platforms handle this
You agree not to engage in any of the following prohibited activities: (i) copying, distributing, or disclosing any part of the Services in any medium; (ii) using any automated system, including 'robots,' 'spiders,' 'offline readers,' etc., to access the Services; (iii) transmitting spam, chain lett...
You agree not to post, upload, publish, submit or transmit any content that: (i) infringes, misappropriates or violates a third party's patent, copyright, trademark, trade secret, moral rights or other intellectual property rights, or rights of publicity or privacy; (ii) violates, or encourages any ...
You agree not to engage in any of the following prohibited activities: (i) copying, distributing, or disclosing any part of the Service in any medium, including without limitation by any automated or non-automated 'scraping'; (ii) using any automated system, including without limitation 'robots,' 's...
Monitoring
OpenRouter has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"You agree not to engage in any of the following prohibited activities: (i) copying, distributing, or disclosing any part of the Service in any medium, including without limitation by any automated or non-automated "scraping"; (ii) using any automated system, including without limitation "robots," "spiders," "offline readers," etc., to access the Service in a manner that sends more request messages to the OpenRouter servers than a human can reasonably produce in the same period by using a conventional online web browser; (iii) transmitting spam, chain letters, or other unsolicited email; (iv) attempting to interfere with, compromise the system integrity or security or decipher any transmissions to or from the servers running the Service; (v) taking any action that imposes, or may impose at our sole discretion an unreasonable or disproportionately large load on our infrastructure; (vi) uploading invalid data, viruses, worms, or other software agents through the Service; (vii) collecting or harvesting any personally identifiable information, including account names, from the Service; (viii) using the Service for any commercial solicitation purposes; (ix) impersonating another person or otherwise misrepresenting your affiliation with a person or entity, conducting fraud, hiding or attempting to hide your identity; (x) interfering with the proper working of the Service; (xi) accessing any content on the Service through any technology or means other than those provided or authorized by the Service; or (xii) bypassing the measures we may use to prevent or restrict access to the Service.— Excerpt from OpenRouter's OpenRouter Terms of Service
1) REGULATORY LANDSCAPE: The prohibition on harvesting personally identifiable information may engage the CFAA (Computer Fraud and Abuse Act) and applicable state computer crime statutes. The FTC Act is relevant to provisions addressing fraud and identity misrepresentation. GDPR and CCPA are relevant to prohibitions on collecting personal information without authorization. 2) GOVERNANCE EXPOSURE: Low to Medium. Acceptable use provisions are standard across SaaS and API platforms. The sole discretion standard for infrastructure load assessment creates interpretive flexibility for OpenRouter in enforcement, which may affect account suspension determinations for high-volume API users. 3) JURISDICTION FLAGS: Developer and enterprise API users in the EU should assess whether their use cases comply with the acceptable use terms, particularly regarding automated access patterns that may be common in legitimate AI pipeline integrations. 4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise API integrations should be reviewed against the acceptable use terms to ensure automated API call patterns do not trigger the infrastructure load provision. Rate limiting and usage monitoring should be implemented to stay within acceptable parameters. 5) COMPLIANCE CONSIDERATIONS: Organizations deploying OpenRouter in automated pipelines should document their use case to demonstrate compliance with acceptable use terms, particularly the prohibition on access methods not authorized by the service.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision defines the boundaries of permitted service use and establishes grounds for account enforcement action. Violations may result in account suspension or termination, and the clause authorizes OpenRouter to assess what constitutes an unreasonable load on infrastructure at its sole discretion.
Under this clause, users are contractually prohibited from a defined list of activities including scraping, automated over-access, spam, and identity misrepresentation. OpenRouter retains sole discretion to determine whether a user's activity imposes an unreasonable infrastructure load, which may affect account standing.
ConductAtlas has identified this type of provision across 8 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by OpenRouter.