DxBots.Ai Logo

I'am working on your request, Please wait

GENERAL DATA PROTECTION REGULATION(GDPR)

DxBots.AI's commitment to comply with GDPR

We, at DxBots.AI, believe in assuring the safety and security of our users’ personal information and we ensure that we are being compliant with the regulations of data protection. Our goal is to strengthen data privacy because we strongly believe that our customers must have greater control over how their personal data is used. With the coming of GDPR, we have embraced a better approach to distribute the responsibility and accountability to store or process customer data, irrespective of whether they belong within or outside the EU. GDPR is important to improve the protection of a customer’s right to safeguard personal data and information and at DxBots.AI, we demonstrate complete transparency and honesty in maintaining this security.

1. WHAT IS GDPR?

The General Data Protection Regulation (GDPR) is a new European privacy law due to become enforceable on May 25, 2018. The GDPR applies to all organizations established in the EU and to organizations, whether or not established in the EU, that process the personal data of EU data subjects in connection with either the offering of goods or services to data subjects in the EU or the monitoring of behavior that takes place within the EU. Personal data is any information relating to an identified or identifiable natural person.

2. SERVICES WE USE ARE GDPR COMPLIANT

We use following services which are all GDPR Compliant

  1. Amazon AWS Services
    https://aws.amazon.com/blogs/security/all-aws-services-gdpr-ready/
  2. DigitalOcean
    https://www.digitalocean.com/security/gdpr/
  3. Razorpaay
    https://razorpay.com/terms/

3. WHAT INFORMATION WE STORE OF USER?

BOT USERS:
  1. Facebook Scoped ID
  2. First Name
  3. Last Name
  4. Profile Picture URL
  5. Locale Code
  6. Gender
  7. Timezone
DxBots.AI USERS:
  1. Name
  2. Email
  3. Password (encrypted)
  4. Razorpay Payment Info
  5. Company
  6. Address
  7. Phone

4. HOW WE USE THESE PERSONAL INFORMATION?

We use Bot Users information to send them messages and display Users on DxBots.AI's Live Chat feature. For DxBots.AI User we use this information to send email alerts and marketing materials and user can also unsubscribe to these emails. We also send emails when your user request human help through the chatbot. We do not store any sort of credit card information and we use Razorpay for the payroll which is GDPR Complaint platform.

5. DO WE ALLOW USERS TO DELETE PERSONAL DATA?

Yes, We allow user to deactivate their account, incase if they want to reactivate it later. But if they want to completely remove information they can contact us via email at (support@dxbots.ai) and will completely delete the user info from our systems. We do not directly remove the user’s information because we have seen instances where users had mistakenly deleted their information and their information becomes unrecoverable.

6. SERVER LOGS:

We maintain the server logs received from facebook, for debugging issues and improve the performance for Chatbots. We also store the IP Address of the Website on which the website Chatbot is attached to, against a particular bot user, so we can check whether the user is online or not and we can show it on Live Chat Feature.

7. WE OBLIGE THE PRINCIPLES OF GDPR
  1. Lawfulness, Fairness and Transparency - Processed lawfully, fairly and in a transparent manner in relation to individuals
  2. Purpose Limitation - Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes
  3. Data Minimisation - Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed
  4. Accuracy - accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay
  5. Storage Limitation - Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals
  6. Integrity and Confidentiality - processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures