Privacy Policy

Effective date: June 23, 2026

This Privacy Policy explains how Iterosys (“Iterosys”, “we”, “us”) collects, uses, and protects personal information in connection with IteroChat: our website at iterochat.com, the IteroChat dashboard, and the chat widget that businesses embed on their own websites and apps (together, the “Service”).

Who this policy covers

This policy addresses two groups of people:

Customers. The businesses and their staff (owners, admins, and agents) who create an account, configure IteroChat, and use the dashboard.
End users.The visitors who send messages through a chat widget that a Customer has placed on the Customer’s own website or app.

Our role (controller and processor)

For Customer account information (for example, the details used to register and manage an account), we act as the data controller. For the conversation data that flows through a widget on a Customer’s site, the Customer is the controller and we act as a processor that handles that data on the Customer’s behalf and under the Customer’s instructions. If you are an end user and have a question about how your messages are used, please contact the business whose site you were chatting on; they decide what data is collected and why.

Information we collect

Account and profile information. Name, email address, an encrypted form of your password, and the organization details you provide.
Content you provide. Knowledge base material, AI instructions, saved replies, tags, settings, and other content you add to configure the Service.
Conversation data. The messages exchanged between end users, the AI, and human agents, along with related details such as language, timestamps, and conversation status. End users should avoid sending sensitive personal information in chat unless the business they are contacting has asked them to.
Billing information. Your plan, usage counts, and invoices. Card payments are handled by our third-party payment processor; we do not store full card numbers.
Technical information. IP address, device and browser information, and log data generated when you use the Service.

How we use information

To provide, operate, secure, and maintain the Service.
To generate AI replies and to route conversations to human agents when needed.
To process payments, manage subscriptions, and measure usage for billing.
To provide support and to communicate with you about the Service.
To detect, prevent, and address abuse, fraud, and security issues.
To improve and develop the Service.
To comply with legal obligations and enforce our terms.

AI processing and service providers

IteroChat uses trusted third-party providers to deliver the Service, including artificial-intelligence model providers (to generate replies), cloud hosting providers, a payment processor, and email delivery providers. These providers process information only as needed to perform their services for us and are bound by appropriate confidentiality and data-protection obligations. We do not sell personal information, and we do not allow our AI providers to use your conversation content to train their general-purpose models.

Cookies and local storage

The dashboard stores your sign-in token in your browser’s local storage and mirrors a minimal token to a cookie so that pages can be protected on the server. These are essential to keep you signed in. We do not use them for advertising.

With service providers (subprocessors) who help us run the Service, as described above.
With the relevant Customer. Conversation data collected through a widget is made available to the Customer that operates that widget.
For legal reasons, when we believe disclosure is required by law or necessary to protect rights, safety, or the integrity of the Service.
In a business transfer, such as a merger, acquisition, or sale of assets, in which case we will continue to protect the information consistent with this policy.

Data retention

We keep information for as long as your account is active or as needed to provide the Service, and afterward as required for legitimate business or legal purposes. Customers can delete and permanently erase data using the tools built into the dashboard; see Data & privacy for the steps. Residual copies may remain in backups for a limited period before they are overwritten.

Your rights and choices

Depending on where you live, you may have the right to access, correct, export, or delete your personal information, and to object to or restrict certain processing.

Customerscan exercise many of these rights directly in the dashboard: export your organization’s data, restore deleted items, or permanently erase a conversation. See Data & privacy.
End users should contact the business whose website they were chatting on, since that business controls the conversation data. That business can act on the request using the tools above.
You can also reach us at [email protected] and we will route the request appropriately.

Security

We protect information with measures appropriate to its sensitivity, including encryption in transit, access controls, and strict separation of each organization’s data. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

International data transfers

We and our service providers may process information in countries other than the one you live in. Where required, we put appropriate safeguards in place for such transfers.

Children

The Service is not directed to children, and we do not knowingly collect personal information from children. If you believe a child has provided us personal information, please contact us so we can remove it.

Changes to this policy

We may update this policy from time to time. When we make material changes, we will update the effective date above and, where appropriate, provide additional notice.

Contact us

Questions about this policy or your personal information can be sent to [email protected]. IteroChat is a product of Iterosys, House 1473, Kanchan Road, Ghasipara, Dinajpur 5200.