AI.Support built for Magento
Iniciar sesión Solicitar demo Prueba gratuita

Legal

Política de privacidad

This Privacy Policy explains how AI.Support B.V. collects, uses, shares, and protects personal data in connection with AI.Support Agent, the public website, related billing and support flows, customer verification flows, and data minimization controls.

Seguridad y confianza Contactar con el equipo de privacidad
Effective 12 de marzo de 2026 Stripe-aware Readable by design
Public privacy URL suitable for checkout linking
Clear data categories and purposes
Scoped no inflated security claims
Review note

Operational draft for lawyer review. Review legal bases, international transfer wording, cookie requirements, marketing-consent flows, and local data-subject rights wording for the countries where the service is offered.

This policy applies to personal data processed through the public website, demo and contact forms, the SaaS application, customer support, and related billing flows.

Where required by applicable law, additional notices or addenda may apply for specific regions, products, or data-processing relationships.

1. Controller identity

The controller for the personal data described in this Privacy Policy is AI.Support B.V., registered at Herengracht 420, 1017 BZ Amsterdam, The Netherlands.

For privacy questions, contact privacy@ai.support. For general support, contact support@ai.support.

2. Categories of data we collect

We may collect account data, contact details, billing-related data, usage data, device and browser data, support and conversation data, uploaded content, analytics and cookie-related data, and marketing preference data.

  • Account data such as names, usernames, company details, and login credentials.
  • Contact data such as email addresses, phone numbers, form submissions, and business context provided during demos or support.
  • Billing-related data such as billing email, invoice status, subscription identifiers, transaction references, and payment status metadata.
  • Usage and device data such as IP address, browser type, pages visited, session activity, and product interactions.
  • Conversation or support data such as chat transcripts, handoff notes, support requests, and uploaded files or materials.
  • Verification data such as one-time passcode challenge status, masked contact channel, verification timestamps, scope grants, and verified customer session metadata when merchants enable protected customer flows.

3. How data is collected

We collect data directly from users, automatically through website or application use, from connected integrations, from payment-related flows, from support or sales interactions, and when end customers complete email one-time passcodes or optional phone verification in storefront experiences.

4. Payment data

Payments are processed through Stripe or another payment processor. We do not store full payment-card details ourselves unless explicitly stated otherwise in a separate notice.

We may receive billing-related information such as customer identifiers, invoice status, subscription status, billing email, limited payment-method metadata, and charge or refund references required to manage the relationship and support the service.

5. Purposes of processing

We use personal data to create and administer accounts, deliver the service, support customers, process billing, verify access to protected customer workflows, deliver one-time passcodes, prevent fraud and abuse, enforce plan limits, improve the product, communicate with users, comply with legal obligations, and conduct marketing where permitted.

This includes customer verification flows used to unlock verified customer sessions while keeping protected support and personalization access scoped to the minimum practical data set.

6. Legal bases

Where required by applicable law, we rely on legal bases such as contract performance, legitimate interests, consent, and legal obligations. The exact legal basis may vary depending on the data and the jurisdiction involved.

This section should be reviewed and adapted for the jurisdictions where the service is marketed or delivered.

7. Sharing of data

We may share personal data with service providers and partners that help us run the business and provide the service, including payment processors, hosting providers, analytics providers, communications providers used for transactional email or SMS delivery, customer-support tools, AI or infrastructure providers, and integration partners.

We may also disclose data where required by law, regulation, court order, or to protect rights, safety, and platform integrity.

8. International transfers

Where personal data is transferred internationally, we will use appropriate safeguards where required by law, such as contractual protections or other lawful transfer mechanisms.

This section should be reviewed based on your hosting setup, subprocessors, and operating jurisdictions.

9. Data retention

We retain data only as long as reasonably necessary for the purposes described in this policy, including service delivery, support, security, billing, legal compliance, and dispute handling.

Retention periods may differ by data type. Billing records are typically retained longer where accounting or tax laws require it. Support transcripts, analytics data, one-time passcode challenge logs, verified customer session records, and minimized customer or order projections may be deleted, expired, or anonymized earlier according to operational, security, and abuse-prevention needs.

10. Data subject rights

Depending on your jurisdiction, you may have rights to access, correct, delete, object to, restrict, or port your personal data, and to withdraw consent where processing is based on consent.

You may also have the right to complain to a supervisory authority. These rights are subject to legal limits and should be reviewed for the relevant jurisdictions.

11. Cookies and tracking

We may use cookies and similar technologies for essential site functionality, analytics, preferences, security, and, where permitted, marketing or remarketing.

Users can manage cookie preferences through browser controls or any consent tools we make available. If a separate Cookie Policy or cookie banner is used in production, it should remain aligned with this policy.

12. Security

We use reasonable technical and organizational measures intended to protect personal data against unauthorized access, disclosure, alteration, or destruction.

We also apply data minimization and scope controls where practical, including limiting certain protected workflows to verified customer sessions instead of exposing raw account or order data broadly.

No method of transmission or storage is completely secure, and we do not guarantee absolute security.

13. Children and minors

The service is intended for business users and is not directed to children. We do not knowingly collect personal data from children where doing so would violate applicable law.

14. Third-party sites and integrations

Our website or product may link to third-party sites, storefronts, or services. Those third parties operate under their own privacy terms and practices.

Where customers connect integrations, they are responsible for ensuring they have a lawful basis to share the relevant data with the service.

15. Changes to this policy

We may update this Privacy Policy from time to time. The effective date at the top of the page indicates when the latest version took effect.

If we make material changes, we may provide additional notice through the website, product, or email where appropriate.

16. Contact for privacy questions

For privacy questions, requests, or complaints, contact privacy@ai.support.

Need help

Questions about billing, privacy, or legal terms

Before filing a dispute, please contact the team so we can review the issue quickly and fix billing or access problems directly.