Scope
This policy explains how AgentBloom handles information when businesses create a workspace, connect communication channels, and use the AI receptionist and staff inbox. A business using AgentBloom controls the customer conversations collected for its workspace. AgentBloom processes those conversations to provide the service.
Information we handle
- Account information such as name, work email, password hash, role, and login-session data.
- Business information such as services, prices, location, hours, policies, phone number, and approved knowledge.
- Channel information supplied through authorized Meta, Instagram, or WhatsApp connections, including account identifiers and encrypted access credentials.
- Customer messages, contact details voluntarily provided in a conversation, appointment interests, staff notes, and conversation status.
- Subscription identifiers and status from PayPal. AgentBloom does not receive or store full payment-card details.
- Technical logs needed for security, webhook delivery, abuse prevention, and troubleshooting.
How information is used
We use information to create and secure workspaces, generate customer replies, route messages to the correct business, display inquiries to authorized staff, maintain subscriptions, prevent abuse, and comply with applicable obligations. We do not sell personal information.
Service providers and transfers
Depending on the features enabled, information may be processed by hosting providers, Dify and configured model providers, Meta platforms, WhatsApp, Instagram, Facebook, and PayPal. These providers may process information in countries different from the user or business location under their own terms and privacy commitments.
Health and sensitive information
AgentBloom is an administrative reception tool, not a medical provider or emergency service. Businesses should configure the system to collect only information necessary for inquiries and booking, and should not use it for diagnosis, treatment decisions, or emergencies.
Security and retention
AgentBloom uses role-based access, password hashing, expiring sessions, audit records, and encrypted storage for platform credentials. No system is completely secure. Information is retained while needed to provide the workspace and for reasonable security, dispute, backup, and legal periods. Businesses may request earlier deletion where applicable.
Your choices
Workspace owners can update business information, remove knowledge, stop connected channels, and request account or conversation deletion. Customers should first contact the business they messaged because that business controls its workspace records.
Contact
Privacy and deletion requests may be sent to xtd508639047@gmail.com. We may ask for verification before changing or deleting account data.