1) Controller & Contact

2) Data We Collect

Account & Contact

Names, email, phone, company, job title.

Usage

Logs, device info, timestamps, pages or flows used, crash/diagnostic data.

Content

Messages you submit to bots, attachments you choose to upload, instructions or prompts.

Billing

Billing contact and transaction meta (handled by payment providers; we do not store full card details).

Support

Emails, chat transcripts, and issue descriptions.

3) Where We Get Data

Directly from you when you use our website, forms, or Services.
Automatically from devices via cookies or similar technologies.
From third parties you connect (e.g., CRM, calendar, payment platforms) with your authorization.

4) Purposes & Legal Bases

Provide the Services (Art. 6(1)(b) GDPR – contract)
Improve and secure performance, diagnostics, and abuse prevention (Art. 6(1)(f) – legitimate interests)
Communicate about updates, support, and offers (Art. 6(1)(a) consent or 6(1)(f) legitimate interests; you can opt out)
Compliance with legal obligations (Art. 6(1)(c))

5) Data Retention

We retain personal data only as long as necessary for the purposes above, typically:

Account & contract records: duration of contract + up to 5 years for legal/accounting.
Logs & diagnostics: 3–24 months depending on purpose.
Support tickets: up to 24 months.

6) Sharing & Processors

We share data with service providers under data processing agreements (hosting, analytics, email, payments, CRMs, messaging APIs). We may disclose data to comply with law, to protect rights and safety, or in a merger/acquisition (with notice).

7) International Transfers

If data is transferred outside the EEA/UK, we use appropriate safeguards such as the EU Standard Contractual Clauses or adequacy decisions.

8) Your Rights (GDPR)

You can request: access, rectification, erasure, restriction, portability, and objection. Where processing is based on consent, you may withdraw consent at any time.

You also have the right to lodge a complaint with your supervisory authority. In France: CNIL.

9) Cookies & Similar Technologies

Strictly necessary: essential for security, sessions, preferences.
Analytics: aggregated usage metrics to improve the Service.
Functional/Performance: remember settings, speed up load.

Where required, we obtain your consent via a banner. You may change preferences in your browser or our banner controls.

10) Security

We apply technical and organisational measures appropriate to risk (access controls, encryption in transit, backups, audit trails). No method is 100% secure; please use strong, unique credentials and protect your tokens.

11) Children

Our Services are not directed to children under 16. If you believe a child provided personal data, contact us to remove it.

12) Changes

We may update this Policy from time to time. We will post the updated version with the “Last updated” date.

Privacy Policy