Your usage of Postman must comply with a separate Acceptable Use Policy document, and you are personally responsible for anything that happens through your account, even if someone else uses it.
This analysis describes what Postman's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The Acceptable Use Policy is incorporated by reference as a binding obligation but exists as a separate document that users may not have reviewed at the time of acceptance, and it can be updated independently, potentially changing your obligations without a new explicit agreement.
You are bound by Postman's Acceptable Use Policy as part of the terms you accept, even if you have not read it separately, and you are responsible for all activity under your account credentials including activity by other people who access your account.
How other platforms handle this
Customer and its Users must use the Products in accordance with the Atlassian Acceptable Use Policy. Customer is responsible for ensuring that Users comply with this Agreement and the Atlassian Acceptable Use Policy.
You agree to comply with Adyen's Acceptable Use Policy, as updated from time to time, which forms part of these Terms and Conditions. Adyen reserves the right to update the Acceptable Use Policy at any time.
You may not use the Venmo services for any illegal purpose, to send money to any person or organization on a government sanctions list, for gambling, for purchasing or selling illegal goods or services, or for any activity that violates applicable law. You may not use Venmo for commercial transactio...
Monitoring
Postman has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"You agree not to use the Service for any purpose that is prohibited by these Terms or the Postman Acceptable Use Policy. You are responsible for all of your activity in connection with the Service and the activity of any person or entity that accesses the Service using your credentials.— Excerpt from Postman's Postman Terms of Service
REGULATORY LANDSCAPE: Incorporation by reference of external policy documents into consumer contracts raises issues under US contract law regarding whether users have adequate notice of and opportunity to review the incorporated terms. The FTC has addressed notice and disclosure standards for online terms. For EU users, the Electronic Commerce Directive and GDPR require clear and accessible disclosure of terms and conditions, which may require that all binding obligations be readily accessible at the point of acceptance. GOVERNANCE EXPOSURE: Medium. The incorporation of an Acceptable Use Policy by reference creates a governance gap where the operative rules for account suspension can change without a full ToS revision cycle, potentially catching enterprise customers without adequate notice. The account credential responsibility clause also creates internal access management obligations for enterprise IT teams. JURISDICTION FLAGS: EU and UK consumer contract regulations may require that all incorporated documents be provided to consumers in a durable medium or at minimum be readily accessible before acceptance. Organizations subject to SOC 2 or ISO 27001 should document the AUP as part of their vendor policy monitoring program, as changes to the AUP directly affect permissible use of the platform. CONTRACT AND VENDOR IMPLICATIONS: Enterprise vendor assessments should include the Acceptable Use Policy as a separately reviewed document. Procurement teams should confirm whether the AUP version in effect at contract execution is frozen for the enterprise term or whether Postman can update it unilaterally. The credential responsibility clause has direct implications for enterprise identity and access management (IAM) controls and shared credential policies. COMPLIANCE CONSIDERATIONS: Legal and compliance teams should set up monitoring for changes to Postman's Acceptable Use Policy, as updates may affect permissible use without triggering a full ToS revision. Enterprise customers should include the AUP in their standard vendor contract review checklist and ensure it is consistent with internal data handling and usage policies.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The Acceptable Use Policy is incorporated by reference as a binding obligation but exists as a separate document that users may not have reviewed at the time of acceptance, and it can be updated independently, potentially changing your obligations without a new explicit agreement.
You are bound by Postman's Acceptable Use Policy as part of the terms you accept, even if you have not read it separately, and you are responsible for all activity under your account credentials including activity by other people who access your account.
ConductAtlas has identified this type of provision across 11 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Postman.