Legal · Privacy Policy

Privacy Policy

Effective Date: January 1, 2026  ·  Data Controller: Atronus Technologies LLC, Pearland, TX  ·  privacy@omnibotx.ai

1. Who We Are

Atronus Technologies LLC ("we," "us," "our") is the data controller for personal data collected through OmniBotX. We are a Texas limited liability company headquartered in Pearland, Texas. For privacy inquiries, contact privacy@omnibotx.ai or call +1 (713) 609-3615.

2. Data We Collect

Data You Provide (Subscriber Data)

Data Type	Purpose	Retention
Name, email, phone	Account creation, communications	Until account deletion + 30 days
Business name, industry, website	Bot configuration, service delivery	Until account deletion
Payment method (tokenized by Stripe)	Billing — we never see raw card data	Per Stripe's retention policy
Bot configuration (services, FAQs, tone)	Powering your deployed chatbot	Until account deletion

End User Conversation Data

When visitors interact with your deployed OmniBotX bot, we collect:

• Chat messages and conversation history
• Lead information voluntarily submitted (name, email, phone) with user consent
• Language detected and session metadata
• Timestamp and approximate geographic region (country level only)

This data is accessible to you (the subscriber) in your dashboard. We do not use end user conversation data for any purpose other than providing the Service and generating analytics for your account.

Automatically Collected Data

• IP address (anonymized after 90 days)
• Browser type and device information
• Pages visited on omnibotx.ai and time spent
• Cookie identifiers (see our Cookie Policy)

3. How We Use Your Data

• Service delivery — configuring and operating your AI chatbot
• Billing — processing payments via Stripe, managing subscriptions and trials
• Communications — onboarding emails, trial reminders, product updates (you can opt out anytime)
• Analytics — providing you with conversation and lead insights in your dashboard
• Security — detecting fraud, abuse, and unauthorized access
• Legal compliance — meeting our obligations under applicable laws
• Service improvement — aggregate, anonymized analysis of usage patterns. We never use individual conversation content to train AI models.

4. AI Processing & Third-Party Services

OmniBotX uses the following third-party services to deliver the platform. Each has its own privacy policy:

• AI Processing Engine — powers all chat responses via our secure API infrastructure. Conversation data is processed in real-time and is never used to train AI models.
• Stripe, Inc. — handles all payment processing. We never store your raw card data. Stripe Privacy Policy →
• Supabase — our database provider, hosted in the United States. Data is encrypted at rest and in transit.
• Cloudflare — CDN, DDoS protection, and Worker routing. Cloudflare may process request metadata. Cloudflare Privacy Policy →
• Resend — transactional email delivery for account and system emails.

We do not sell, rent, or share your personal data with advertisers or data brokers.

5. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

To exercise any of these rights, email privacy@omnibotx.ai. We will respond within 30 days. California residents have additional rights under CCPA — see Section 7.

6. GDPR — European Users

If you are located in the European Economic Area (EEA), our legal basis for processing your personal data is:

• Contract performance — processing necessary to deliver the Service you subscribed to
• Legitimate interests — security, fraud prevention, and service improvement
• Consent — marketing communications and non-essential cookies
• Legal obligation — compliance with applicable laws

Data transfers from the EEA to the United States are made pursuant to Standard Contractual Clauses (SCCs) or other approved transfer mechanisms. Enterprise subscribers may request a Data Processing Agreement (DPA).

7. CCPA — California Residents

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have the right to:

• Know what personal information we collect and how it is used
• Delete their personal information (with certain exceptions)
• Opt out of the sale or sharing of personal information — we do not sell or share personal information
• Non-discrimination for exercising CCPA rights
• Correct inaccurate personal information
• Limit the use of sensitive personal information

To submit a CCPA request, email privacy@omnibotx.ai with subject line "CCPA Request." We will verify your identity and respond within 45 days.

8. Data Security

We implement industry-standard security measures including:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for data at rest in Supabase
• Stripe PCI DSS Level 1 for payment data
• Cloudflare DDoS protection and WAF
• Role-based access control for internal systems
• Regular security reviews and vulnerability assessments

No system is 100% secure. In the event of a data breach affecting your personal information, we will notify you within 72 hours as required by applicable law.

9. Children's Privacy

OmniBotX is a business-to-business service not directed at individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact privacy@omnibotx.ai immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify subscribers of material changes by email at least 14 days before the changes take effect. The "Effective Date" at the top of this page indicates when the current version was last updated.

11. Contact & Complaints

For privacy questions or to exercise your rights:

• Email: privacy@omnibotx.ai
• Address: Atronus Technologies LLC, Pearland, TX, United States
• Phone: +1 (713) 609-3615

If you are an EEA resident and are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.