Privacy Policy

1. Introduction

The Chat Widget ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our live chat widget service.

2. Information We Collect

2.1 Information You Provide

When you sign up for The Chat Widget, we collect:

• Email address (for account creation and communication)
• Password (hashed and encrypted)
• Website domain(s) where you embed the widget

2.2 Chat Messages

We store chat messages exchanged between website visitors and site owners. Messages are stored securely and are only accessible to the site owner who created the account.

2.3 Technical Information

We automatically collect certain technical information, including:

• IP addresses (for security and abuse prevention)
• Browser type and version
• Session identifiers (stored in localStorage, not cookies)

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our service
• Process transactions and send related information
• Send you technical notices and support messages
• Respond to your comments and questions
• Monitor and analyze usage patterns
• Detect, prevent, and address technical issues

4. Zero Tracking, Zero Cookies

The Chat Widget is designed with privacy in mind. Our widget:

• Does not use cookies - We use localStorage for session management only
• Does not track users - No analytics, no fingerprinting, no cross-site tracking
• Does not share data - We do not sell or share your data with third parties
• Anonymous sessions - Visitor sessions are identified only by a random UUID

5. Data Storage and Security

We implement appropriate technical and organizational measures to protect your information:

• Data encryption in transit (HTTPS/TLS)
• Secure password hashing (bcrypt)
• Regular security audits
• Limited access to personal data

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide our services. You may delete your account at any time, which will permanently delete all associated data, including chat messages and site configurations.

7. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have certain data protection rights:

• Right to access - You can request a copy of your personal data
• Right to rectification - You can request correction of inaccurate data
• Right to erasure - You can request deletion of your data
• Right to data portability - You can request your data in a machine-readable format
• Right to object - You can object to processing of your data

To exercise these rights, please contact us through our website.

8. Third-Party Services

We use the following third-party services:

• Stripe - For payment processing (see Stripe's privacy policy)
• Resend - For email notifications (see Resend's privacy policy)
• Hosting providers - For infrastructure (data processing agreements in place)

These services have their own privacy policies. We do not share your chat messages or personal data with these services except as necessary to provide our service.

9. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us through our website.