Back to Home
Data Protection

Privacy Policy

Last updated: March 2026

1. Introduction

Welcome to BotWright, operated by Ravata Store SRL ("we," "us," or "our"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our SaaS platform, website, and associated AI and API services.

2. Information We Collect

We collect information to provide better services to our users. This includes:

  • Account Information: Name, email address, company details, and billing information (processed securely via Stripe).
  • Integration Data: Data from connected third-party platforms (Meta, WhatsApp, Instagram) necessary to process messages and automate workflows.
  • Knowledge Base Data: Documents, text, and URLs you upload to train your AI agents.
  • Usage Data: System logs, API request volumes, and interactions with our platform.

3. Google Workspace APIs User Data

BotWright integrates with Google Calendar to read availability and write new appointments made by our AI agents on your behalf. We prioritize your data security and adhere strictly to Google's policies.

BotWright's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Data Sharing and Disclosure

We do not share, transfer, sell, or disclose your Google user data (such as Google Calendar events) to any third parties, advertising networks, data brokers, or external AI models. The data retrieved from Google Calendar is used exclusively within your active BotWright session to display your schedule and facilitate the booking of new appointments (including the automatic generation of Google Meet links).

Data Protection Mechanisms

We employ strict data protection mechanisms to secure your sensitive Google data:

  • Encryption in Transit: All data transferred between Google, BotWright, and your browser is encrypted using industry-standard TLS/HTTPS protocols.
  • Encryption at Rest: Access tokens and calendar data stored in our databases (Supabase) are encrypted at rest using AES-256 encryption.
  • Access Control: Google user data is isolated per workspace. Only the authenticated user who connected the account can view or modify their respective calendar data.

4. How We Use AI and Your Data

We utilize Large Language Models (LLMs) to process incoming messages based on the knowledge base you provide. Your private business data, documents, and chat histories are NEVER used to train public AI models. We have zero-data-retention agreements in place with our foundational AI providers.

5. Data Retention & Deletion

We retain your data only for as long as your account is active or as needed to provide our services. You have the right to request the complete deletion of your account and all associated data at any time. Upon deletion, all connected integrations, calendar tokens, and uploaded documents are permanently wiped from our servers.

6. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your GDPR data rights, please contact us at:

Ravata Store SRL
Email: setup@botwright.io