Policy Center

1. Privacy Policy

HumanicBot prioritizes your privacy. We limit data collection to what’s essential for service delivery and never sell or misuse personal data.

  • Data Collection: Only user-supplied details (e.g., names, emails, chatbot settings) are stored.
  • Data Usage: Data is solely used to provision and enhance chatbot services.
  • User Consent: Explicit opt-in is required for any sensitive data processing.
  • Third-Party Sharing: Limited to vetted processors under strict NDAs and security controls.
  • Chatbot Response Usage: Client chatbot messages and responses are never used to train our AI; no monitoring or analysis of customer interactions occurs beyond immediate service delivery.

2. Data Security Policy

We employ top-tier security practices to protect user data from unauthorized access.

  • Encryption: TLS 1.2+ for data in transit; AES-256 for data at rest.
  • Access Control: Role-Based Access Controls (RBAC) restrict data access to authorized staff.
  • Vulnerability Management: Routine scanning, patching, and penetration tests.
  • Logging & Monitoring: Continuous audit trails and alerts for anomalous activities.

3. Terms of Service

By using HumanicBot, you agree to our terms governing acceptable use, responsibilities, and limitations of liability.

  • Acceptable Use: Prohibits bots that facilitate illegal acts, harassment, or hate speech.
  • User Responsibilities: Secure your credentials and report any breaches immediately.
  • Liability Limits: Liability capped at fees paid in the preceding 12 months.
  • Account Suspension: We may suspend or terminate accounts for policy violations.

4. Data Retention Policy

Data is retained only as long as necessary for service provision, legal compliance, or dispute resolution.

  • Retention Duration: Active subscription plus 90 days post-termination.
  • Deletion Requests: Users can request permanent removal of their data anytime.
  • Backups: Encrypted backups stored for 30 days.

5. Compliance & Regulatory Policy

We adhere to global data protection standards to safeguard user rights and data sovereignty.

  • GDPR: Supports EU data subject rights (access, rectification, erasure).
  • CCPA: California consumer rights for data access, deletion, and opt-out.
  • Local Laws: Compliance with applicable regional regulations.

6. Incident Response Policy

Our incident response framework ensures rapid detection, containment, and remediation.

  • Detection: 24/7 monitoring for security events.
  • Containment: Immediate isolation of affected systems.
  • User Notification: Affected users informed within 72 hours of breach confirmation.
  • Post-Mortem: Root cause analysis and preventive measures.

7. Training & Awareness Policy

We ensure all team members are equipped to protect user data through regular training.

  • Onboarding: Mandatory security and privacy training for new hires.
  • Refresher Courses: Quarterly updates and phishing simulations.
  • Policy Acknowledgment: Employees must confirm understanding of policy changes.
An unhandled error has occurred. Reload 🗙