Every web application has a defined session time as a security feature. If no activity is detected by browser for a defined time, the session will  expire, and user will get logged out from its respective account.
In another case, if SPAM Validation is active for any respective account and if the system detects any SPAM words, then the user will get logged out automatically and the account will be locked temporarily, until and unless the Account Manager unlocks the account.