Privacy Policy

Introduction

ChatBot AI ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our chatbot service for Shopify stores.

This policy applies to all users of our service, including Shopify merchants who install our app and their customers who interact with our chatbot.

Information We Collect

Information from Shopify Merchants

When you install our app, we collect:

• Store information (name, URL, contact details)
• Order data (order numbers, status, shipping information)
• Customer data (names, email addresses, order history)
• Product information (names, descriptions, availability)
• App usage data and analytics

Information from End Customers

When customers interact with our chatbot, we collect:

• Chat messages and conversation history
• Order numbers or email addresses provided
• Device information and IP addresses
• Usage patterns and interaction data

Automatically Collected Information

• Log data (access times, pages viewed, IP addresses)
• Device information (browser type, operating system)
• Cookies and tracking technologies
• Performance and error data

How We Use Your Information

We use the collected information for:

Service Provision

• Providing automated customer support responses
• Processing order tracking requests
• Answering FAQ inquiries
• Escalating complex issues to human agents

Service Improvement

• Analyzing chat patterns to improve AI responses
• Monitoring system performance and reliability
• Developing new features and capabilities
• Personalizing the user experience

Business Operations

• Processing payments and managing subscriptions
• Providing customer support
• Sending service-related communications
• Complying with legal obligations

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share information in the following circumstances:

Service Providers

We work with third-party service providers who assist us in:

• Cloud hosting and data storage (AWS, Google Cloud)
• AI and natural language processing (OpenAI)
• Analytics and monitoring services
• Payment processing

Legal Requirements

We may disclose information when required by law, regulation, legal process, or governmental request.

Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction.

Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

• End-to-end encryption for data in transit
• AES-256 encryption for data at rest
• Regular security audits and penetration testing
• Secure data centers with physical access controls

Operational Safeguards

• Access controls and employee background checks
• Regular staff training on privacy and security
• Incident response and data breach procedures
• Regular backups and disaster recovery plans

While we use industry-standard security measures, no system is completely secure. We continuously monitor and update our security practices to protect your data.

Data Retention

We retain information for different periods based on the type of data:

• Chat data: Retained for 2 years or until account deletion
• Analytics data: Retained for 3 years in aggregated, anonymized form
• Account information: Retained while your account is active
• Legal compliance data: Retained as required by applicable laws

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal reasons.

Your Privacy Rights

Depending on your location, you may have the following rights:

GDPR Rights (EU Users)

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to processing based on legitimate interests

CCPA Rights (California Users)

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale (we do not sell personal information)
• Right to non-discrimination for exercising privacy rights

To exercise these rights, please contact us at privacy@chatbotai.com. We will respond to your request within 30 days.

Cookies and Tracking

We use cookies and similar technologies to:

• Maintain chat sessions and user preferences
• Analyze website usage and performance
• Personalize the chatbot experience
• Provide security and fraud protection

You can control cookies through your browser settings, but disabling them may affect the functionality of our service.

International Data Transfers

Our servers are primarily located in the United States. If you are located outside the US, your information may be transferred to and processed in the US.

We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses approved by the European Commission.

Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will delete it promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

For significant changes, we will provide additional notice through email or prominent notice in our app.