Privacy Policy

Last Updated: February 8, 2026

At ChatBot SaaS, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

1. Information We Collect

Account Information

When you create an account, we collect:

• Name and email address
• Password (encrypted)
• Subscription plan and billing information
• Company name (if provided)

Website Content

To train your chatbot, we collect:

• Text content from pages you specify
• Website URLs and structure
• FAQs and product information

Usage Data

We automatically collect:

• Conversation logs and chat messages
• API requests and responses
• Widget interactions and clicks
• Login times and session data
• Browser type and IP address

Visitor Data (End Users)

When visitors use your chatbot:

• Messages sent to the chatbot
• IP address and location (city/country)
• Browser and device information
• Session ID (temporary identifier)

2. How We Use Your Information

We use collected information to:

• Provide the Service: Train chatbots, process conversations, deliver responses
• Improve the Service: Analyze usage patterns, fix bugs, develop new features
• Communication: Send service updates, security alerts, billing notifications
• Support: Respond to your questions and troubleshoot issues
• Security: Detect fraud, prevent abuse, enforce our terms
• Analytics: Generate usage statistics and reports
• Compliance: Meet legal obligations and respond to lawful requests

3. Data Sharing and Disclosure

We do NOT sell your personal information. We may share data with:

Service Providers

• AI Provider (Google Gemini): To generate chatbot responses
• Hosting Provider: To store and serve data
• Payment Processor: To handle subscriptions (Stripe/PayPal)
• Analytics Tools: To understand usage patterns

Legal Requirements

We may disclose information if required to:

• Comply with law, regulation, or legal process
• Protect our rights, property, or safety
• Investigate fraud or security issues
• Respond to government requests

Business Transfers

In the event of a merger, acquisition, or sale, your data may be transferred to the new entity.

4. Data Storage and Security

We implement security measures including:

• Encryption of data in transit (SSL/TLS)
• Encrypted password storage (bcrypt)
• Secure database access controls
• Regular security audits and updates
• Limited employee access to user data

Data Retention:

• Account data: Retained while your account is active
• Conversation logs: Retained for 90 days by default
• Training data: Retained while you use the service
• Backups: May persist for up to 30 days after deletion

5. Your Rights and Choices

You have the right to:

Access and Portability

• Request a copy of your data
• Export conversation logs and analytics
• Download your training data

Correction and Deletion

• Update your account information
• Delete your account and all associated data
• Remove specific conversations or websites

Opt-Out

• Unsubscribe from marketing emails
• Disable analytics tracking
• Opt out of data sharing (where applicable)

To Exercise Your Rights

Contact us at: admin@yoursite.com

6. Cookies and Tracking

We use cookies and similar technologies for:

• Essential Cookies: Required for login and session management
• Analytics Cookies: To understand how you use our service
• Preference Cookies: To remember your settings

You can control cookies through your browser settings, but this may affect functionality.

7. Third-Party Services

Our service integrates with:

• Google Gemini AI: For generating chatbot responses (Privacy Policy)
• Payment Processors: For subscription billing (Stripe/PayPal privacy policies apply)

These third parties have their own privacy policies, and we are not responsible for their practices.

8. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect information from children. If we discover we have collected data from a child, we will delete it immediately.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

• Standard contractual clauses
• Compliance with EU-US Privacy Shield (where applicable)
• Adherence to GDPR requirements

10. GDPR Compliance (EU Users)

If you are in the European Union, you have additional rights under GDPR:

• Right to Access: Obtain confirmation of data processing
• Right to Rectification: Correct inaccurate data
• Right to Erasure: Request deletion ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to processing for direct marketing
• Right to Withdraw Consent: Withdraw consent at any time

Legal Basis for Processing:

• Contract performance (to provide the service)
• Legitimate interests (to improve the service)
• Consent (for marketing communications)
• Legal obligations (to comply with laws)

11. CCPA Compliance (California Users)

California residents have the right to:

• Know what personal information is collected
• Know if personal information is sold or disclosed
• Opt-out of the sale of personal information
• Request deletion of personal information
• Not be discriminated against for exercising these rights

Note: We do NOT sell personal information.

12. Data Breach Notification

In the event of a data breach that may affect your rights, we will:

• Notify you within 72 hours of discovery
• Describe the nature of the breach
• Provide steps to mitigate harm
• Report to relevant authorities as required

13. Changes to This Privacy Policy

We may update this policy from time to time. We will notify you of significant changes by:

• Email notification
• In-app notification
• Updating the "Last Updated" date

Continued use after changes constitutes acceptance of the updated policy.

14. Contact Us

For privacy-related questions or to exercise your rights, contact us:

Email: admin@yoursite.com
Website: https://chatbot.buildfollows.com
Response Time: We aim to respond within 30 days

15. Data Protection Officer

For EU users, you may contact our Data Protection Officer at: admin@yoursite.com

16. Supervisory Authority

EU users have the right to lodge a complaint with their local data protection authority if they believe their data rights have been violated.

---

Back to Home Terms of Service