# Responsible use of the meshVI API

Use the meshVI API in a way that is secure, compliant, and respectful of others’ data and systems.

## Security

- **Protect credentials** – Store API tokens and other credentials in a secure manner (e.g. environment variables or a secrets manager). Never commit tokens to source control or expose them in client-side or public code.
- **Use HTTPS** – All API requests must use HTTPS (e.g. `https://uat-verified.meshvi.com`). Do not send credentials over unencrypted connections.
- **Rotate tokens** – Rotate API tokens periodically and immediately if you suspect exposure or compromise.


## Compliance and data

- **Use data appropriately** – Use the API only for purposes consistent with your agreement with meshVI and with applicable law. Do not use the API to collect, process, or store data in violation of privacy or data protection laws.
- **Audit trail** – meshVI provides traceable audit trails. Use the API in a way that aligns with your own record-keeping and compliance requirements.


## Rate limits and availability

- **Respect limits** – Observe any rate limits or usage guidelines provided by meshVI. Excessive or abusive traffic may result in throttling or suspension.
- **Error handling** – Implement proper error handling (e.g. for 4xx/5xx responses and timeouts) so your integration degrades gracefully and does not hammer the API.


## Support

For questions about responsible use, security, or compliance, contact meshVI via [meshvi.com](https://www.meshvi.com).