Bytechat Privacy Policy

Last updated: October 24, 2025

Article 1. Introduction

Your privacy is of great importance to Bytechat. In this privacy policy we explain what personal data we collect, how we use it, and what rights you have regarding your data. This policy applies to the Bytechat website and the services we offer, specifically the Bytechat software. We adhere to the General Data Protection Regulation (GDPR).

Article 2. Our Roles under the GDPR

Bytechat operates in two different roles, depending on the context:

1. Data Controller: We are the data controller for the personal data we collect directly from you when you visit our website, contact us, or create an account for our services.
2. Data Processor: When our customers (the "Customer") implement Bytechat on their website, we process the data of their end users (the "Users") on behalf of the Customer. In that scenario, the Customer is the data controller and Bytechat is the data processor. The agreements regarding this are laid down in a separate Data Processing Agreement with the Customer.

Article 3. What Personal Data Do We Collect?

3.1. As Data Controller (data of our website visitors and customers)

• Contact details: When you fill in our contact form, we collect your name and email address.
• Account details: When you create an account as a Customer, we collect your name, email address, company name and password.
• Payment details: For paid subscriptions, payment details are processed by our external payment processor (e.g. Stripe). We do not store full credit card details ourselves.
• Technical and Usage Data: We automatically collect information about your interaction with our website, such as your IP address, browser type, visited pages and the duration of your visit.

3.2. As Data Processor (data we process on behalf of our Customers)

• Conversation data: The content of the conversations that Users have with the Bytechat widget on our Customer's website.
• Training data: The information that our Customer provides to configure and train the chatbot, such as website URLs, FAQs and product information.
• Data collected by the chatbot: Personal data that a User voluntarily provides in the chat, for example via a lead generation form (name, email address, etc.).

Article 4. Purposes and Grounds for Processing

We process your personal data for the following purposes and on the basis of the following legal grounds:

• Providing our Service: We use account and training data to be able to deliver and configure the Bytechat service. (Ground: performance of the agreement).
• Communication: We use your contact details to respond to your questions and to send important service-related updates. (Ground: performance of the agreement / legitimate interest).
• Invoicing and payment: We process payment details to manage subscriptions. (Ground: performance of the agreement).
• Analysis and improvement: We analyze usage data to improve and secure our website and services. (Ground: legitimate interest).
• Marketing: With your explicit consent we can send you marketing communication. (Ground: consent).

Article 5. Sharing Data with Third Parties

Bytechat does not share your personal data with third parties, unless this is necessary for the performance of our services or to comply with a legal obligation. We use the following categories of sub-processors:

• Hosting providers: For data storage and running our applications.
• Payment processors: For safely handling payments.
• Analysis and Email tools: For improving our website and communicating with customers.

We have concluded a data processing agreement with all these parties to ensure the protection of your data.

Article 6. Security and Retention Periods

We take the protection of your data seriously and have taken appropriate technical and organizational measures to prevent misuse, loss, and unauthorized access. Data is stored and transmitted encrypted.

We do not keep personal data longer than strictly necessary to realize the purposes for which your data is collected, unless a legal retention period prescribes otherwise.

Article 7. Cookies

Our website uses cookies. Some cookies are necessary for the functioning of the site, while others help us improve the user experience. For detailed information about the cookies we use and how you can manage your preferences, we refer you to our separate Cookie Policy.

Article 8. Your Rights

Under the GDPR you have the following rights regarding your personal data:

• The right to view, correct or have your data deleted.
• The right to withdraw your consent for data processing.
• The right to object to the processing of your personal data.
• The right to data portability.

You can send a request to exercise these rights to the contact details at the bottom of this policy. We will respond to your request as soon as possible, but no later than within four weeks.

Article 9. Changes to this Privacy Policy

We reserve the right to adjust this privacy policy. Changes will be published on this page. In case of significant changes we will inform you personally.

Article 10. Contact Details

For questions about this privacy policy or about the processing of your data you can contact us via:

Bytechat
Email: info@bytevision-ai.nl

If you believe that we are not handling your personal data correctly, you have the right to file a complaint with the national supervisory authority, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).