Legal
Privacy Policy
Last updated: April 1, 2025
This Privacy Policy explains how ReplAiChat, Inc. ("ReplAiChat") collects, uses, and shares personal data when you use our website and chatbot platform. We comply with the EU GDPR and the California CCPA.
1. Data we collect
- Account data — name, email, company, password hash.
- Customer content — chatbot configuration, knowledge sources, conversation history.
- Usage data — IP address, browser, pages viewed, performance telemetry.
- Billing data — handled by our payment processor; we never see full card numbers.
2. How we use data
To provide and improve the Service, communicate with you about your account, send relevant product updates (you can opt out), prevent fraud and abuse, and comply with legal obligations.
3. Legal bases (GDPR)
We rely on the legal bases of contract, legitimate interest, consent (for marketing emails), and legal obligation depending on the activity.
4. Data sharing
We share data only with vetted sub-processors needed to operate the Service (cloud hosting, AI inference, email delivery, analytics). A current list is available on request.
5. International transfers
Where personal data is transferred outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission.
6. Retention
We retain account data while your account is active and for up to 30 days after deletion (90 days for backups). Conversation logs are retained for 12 months unless you configure a shorter period.
7. Your rights
You have the right to access, correct, delete, restrict, and port your personal data, and to object to processing. Contact privacy@replaichat.app to exercise these rights.
8. Cookies
We use a small number of essential cookies to keep you logged in and protect against abuse, plus optional analytics cookies you can decline.
9. Contact
Data Protection Officer: dpo@replaichat.app. EU representative information available on request.