"Controller" means the entity which determines the purposes and means of the processing of Personal Data (you, the Customer).
"Processor" means the entity which processes Personal Data on behalf of the Controller (BotDesk).
"Sub-processor" means any third party engaged by BotDesk to assist in fulfilling its obligations with respect to providing the Services.
BotDesk will process Personal Data only to the extent necessary to provide the Services in accordance with the Agreement and your instructions.
Nature of Processing: Storage, retrieval, use for AI response generation, and deletion.
Categories of Data Subjects: Your end-users, employees, and anyone engaging with your chatbot.
Types of Personal Data: Name, contact details, message content, and metadata.
We ensure that all personnel accessing Personal Data are bound by confidentiality agreements. We implement industry-standard technical measures, including:
You authorize us to engage sub-processors to store and process data. We maintain a list of current sub-processors, which includes:
We remain fully liable for the acts and omissions of our sub-processors.
To the extent you cannot access the data yourself via the dashboard, we will provide reasonable assistance to help you respond to requests from individuals exercising their rights.
In the event of a Personal Data Breach, we will notify you without undue delay (within 72 hours of becoming aware) and provide sufficient information.
This DPA is incorporated into our Terms of Service. If you require a countersigned version for your records, please email us.
DPA Contact: dpa@botdesk.co
Join 200+ companies using BotDesk to automate 80% of customer questions while keeping a human touch.