Privacy Policy

This Privacy Policy explains how Botify Labs processes personal data through its websites, platform dashboards, workspaces, widgets, APIs, and related services.

For privacy, export, deletion, or data protection requests, contact support@botifylabs.com.

We may process account data, agency signup details, workspace and client profile data, assistant settings, knowledge sources, files, website import data, chat messages, leads, CRM notes, handoff records, reports, billing records, payment status, notifications, domains, sender settings, channel metadata, audit logs, security logs, and support communications.

Some information may relate to agency customers, workspace users, website visitors, end users who chat with an assistant, and individuals who communicate through connected channels.

Information may be provided directly by users, agencies, workspace clients, invited team members, website visitors, public chat users, uploaded files, imported websites, connected payment services, email services, AI services, social and messaging platforms, and operational systems.

Agencies and workspace administrators are responsible for ensuring they have the right to upload, import, connect, or instruct the processing of any data they provide to the platform.

Information is used to provide authentication, account access, assistant configuration, AI responses, lead capture, CRM workflows, human handoff, billing operations, invoice records, client reports, notifications, channel delivery, security controls, compliance workflows, support, troubleshooting, and service improvement.

We may also process logs and metadata to prevent abuse, enforce limits, protect workspace isolation, investigate errors, verify integrations, and maintain auditability.

Depending on the context, processing may be based on contract performance, legitimate operational and security interests, consent where required, legal obligations, billing and dispute needs, or instructions from an agency or workspace administrator acting for its own clients.

Where a deployment or agency requires separate consent or notices for website visitors, chat users, social messages, or client records, the agency or workspace operator is responsible for providing them.

Prompts, chat messages, lead details, workspace knowledge snippets, report context, and related metadata may be sent to configured AI services to generate responses, summaries, reports, follow-ups, lead scoring, and other platform outputs.

Users should avoid submitting unnecessary sensitive personal data. AI output may be inaccurate or incomplete and should be reviewed before important use.

We use essential cookies, session data, and authentication state to keep users signed in, protect admin and agency routes, secure public chat sessions, remember access context, and operate core platform features.

Preference cookies may remember UI choices. Analytics cookies, if enabled, may support public-page measurement, heatmaps, and session replay through tools such as Microsoft Clarity. Marketing cookies, if enabled, are used only after consent. You can change optional cookie choices through the Cookie settings link on public pages.

The platform may rely on hosting services, AI services, email services, payment processors, analytics tools, security and monitoring tools, messaging channels, social platforms, and other integrations configured by the platform, agency, or workspace operator.

These services may process information according to their own terms, policies, security practices, data processing commitments, account settings, and regional infrastructure.

Data may be processed in the United Arab Emirates or other countries depending on hosting, AI, email, payment, analytics, messaging, social, and support services used by the platform or configured by an agency.

Where required, deployment operators and agencies should ensure appropriate transfer mechanisms, notices, and client agreements are in place.

Data is retained as needed to operate the platform, support account and workspace records, maintain audit trails, provide billing and invoice history, meet legal obligations, protect security, resolve disputes, and support backups or recovery.

Workspace management includes compliance request workflows for export and deletion review. Some records may be retained where required for security, billing, audit, legal, fraud prevention, or dispute reasons.

Depending on your location and relationship to the platform, you may request access, correction, deletion, export, restriction, objection, or withdrawal of consent where applicable.

End users of an agency workspace may need to contact the relevant agency or workspace operator first because that party controls the client relationship and workspace configuration.

The platform is intended for business use and is not directed to children. Do not knowingly submit information about children unless your deployment is specifically authorized and legally configured for that use.

The platform uses role-based access, workspace scoping, protected access checks, security rules, encryption controls, audit logs, and deployment safeguards to protect data.

No system is perfectly secure. Users and agencies are responsible for protecting account access, limiting team access, configuring integrations safely, and promptly reporting suspected security issues.

We may update this Privacy Policy as the platform, services, laws, or operations change. The effective date indicates the current version.

For privacy, data export, deletion, or security requests, contact support@botifylabs.com.