byPilotbyPilot
Get Started
Back To home

Privacy Policy

ByPilot — Chat & Automation for Business

Location:Izmir, Turkey
Last updated
2025-10-24
Contact

Privacy Policy

This Privacy Policy explains how byPilot collects, uses, and protects your information when you use our AI chatbot platform.

Data Controller

byPilot (Izmir, Turkey). Contact: info@bypilot.ai

Data We Collect

  • Account Information: Business name, public profile information, user name, and email address.
  • Connected Channel Data: To power your automations, we collect specific data from the channels you connect. This includes:
  • Google: We request permissions (scopes) to access your data. This allows us to: Read, edit, and create Google Sheets (`spreadsheets`); view and manage files created by our app (`drive.file`); view other files on your Drive (`drive.readonly`); read and create Google Docs (`documents`); and read your Gmail messages (`gmail.readonly`).
  • WhatsApp: We request permissions to manage your business account (`whatsapp_business_management`) and to send and receive messages on your behalf (`whatsapp_business_messaging`).
  • Instagram: We request permission to manage your direct messages (`instagram_manage_messages`).
  • Encrypted Tokens: We securely store encrypted authentication tokens for each channel you connect, which are necessary to maintain the integration.
  • Message & Conversation Data: We process message content and metadata from your connected channels to operate the service and to display them to you in the Live Chat feature.
  • Technical Data: IP address, device/browser information, and application logs for security and performance monitoring.

How We Use Data

  • To deliver our core chat and messaging automation functionality.
  • To connect to your third-party channels and perform actions on your behalf based on your bot's logic.
  • To securely forward message data to n8n for processing your automation workflows.
  • To display conversation history in your Live Chat interface.
  • To provide support, analyze performance, and improve our services.
  • To detect and prevent security incidents and abuse.

Sharing

We may share data with Supabase (our database provider), n8n (your automation engine), and the third-party platforms you connect (Google, Meta for WhatsApp/Instagram) as required to operate the service or to comply with the law.

Retention

Data is retained as long as your account is active or as needed to provide the service. When you disconnect a channel, the associated encrypted authentication tokens are permanently deleted from our database.

Security

We encrypt all sensitive data, including third-party tokens, in our database. All data is transmitted over TLS. We employ access controls and the principle of least‑privilege to protect your information.

Your Rights

  • Channel Management: You have the right to connect or disconnect your third-party channels at any time through the settings panel.
  • Data Access: You have the right to access, correct, delete, or request the portability of your personal data.
  • Objection and Restriction: You can object to or restrict certain data processing where applicable.

Changes

We may update this policy; material changes will be notified in-app or via email.

Contact

info@bypilot.ai