[bunker]/domains

Acceptable Use Policy

Permissive default. Hard limits where it matters.

Effective: 2026-05-01

Most registrars write their AUP as a list of every category their lawyer worried about at 3 AM. We don't. Here's what we actually enforce.

1. Allowed by default

Anything legal in the jurisdiction of the domain's registry and in the Seychelles. We don't moderate beyond that baseline. We don't inspect what runs on your domain. We don't pre-clear topics. We don't care about traffic source.

2. Specifically welcome

  • Journalism and investigative reporting
  • Whistleblowing platforms and leak sites
  • Activism and civil society
  • Adult content (legal in operator's jurisdiction)
  • Crypto businesses, exchanges, DeFi, mixers (where legal)
  • Streaming services
  • File-sharing platforms (legal use of the protocol)
  • Forums and online communities, including controversial ones
  • Tor hidden services and I2P projects (alongside clearnet domains)
  • Privacy and anti-surveillance projects
  • Boring legitimate businesses (yes, those too)

3. Specifically not allowed

These get a domain suspended within hours of verification. No court order required.

  • CSAM — zero tolerance. We report to relevant authorities under Seychelles law. There is no appeal.
  • Active malware command-and-control — botnets, RAT C2, cryptojackers. Static research repos, security reports, and POC archives are fine.
  • Phishing infrastructure — domains designed to harvest credentials via impersonation of a real service.
  • Direct fraud schemes targeting end-users (rug pulls, advance-fee fraud, fake shops with no intent to ship). White-paper-stage crypto projects are fine; deployed pump-and-dumps are not.
  • Real-world threats — sites coordinating violence against specific identifiable people or property.

4. What we don't enforce

  • Copyright disputes — those go through our DMCA policy (short version: not via us, via a competent court).
  • Trademark disputes — go through ICANN's UDRP process. We comply with valid UDRP outcomes.
  • Defamation claims — court-only. Don't email us.
  • Political speech — we don't police viewpoint, party, or ideology. We host content from across the spectrum, including content governments find inconvenient.
  • Adult content involving consenting adults — see Section 2.

5. What happens if you cross the line

  • Verified violation of Section 3 — domain suspended, account suspended. CSAM is forwarded to authorities as required by Seychelles law.
  • Suspected violation — we contact you via your registered email for clarification. 72-hour window to respond before action.
  • Appeal — reply to the suspension email with substantive counter-evidence. Decisions get reviewed by counsel. Final decisions are final.

6. Reporting abuse

If you've found genuine Section 3 content on a domain we host, email legal@bunkerdomains.com with:

  • The domain in question.
  • The category (CSAM / malware C2 / phishing / fraud / threat).
  • Evidence — screenshots, hashes, URLs.
  • Your contact email if you want a follow-up.

We don't need your legal name. We won't share your report with the offending operator. We'll act on verified reports, fast.

7. Disputes

AUP disputes follow the same arbitration clause as our Terms of service: Seychelles arbitration, English law fallback.