Skip to content
SocialBee
Back to home

Privacy Policy

1. Introduction

SocialBee ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered customer support platform.

By using SocialBee, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Organization name and details
  • Password (stored securely using industry-standard encryption)
  • Profile preferences and settings

Business Data

To provide our Service, we process:

  • Documents you upload (product catalogs, FAQs, etc.)
  • Customer conversation data from connected channels
  • AI-generated responses and conversation history
  • Channel connection credentials (encrypted)
  • Meta platform connection credentials (securely encrypted) for connected Facebook Pages, Instagram accounts, and WhatsApp Business accounts
  • Messages and interactions received through connected Meta channels
  • Google Calendar connection credentials (securely encrypted) for connected Google accounts used in appointment booking
  • Calendar metadata, availability data, and appointment events from connected Google Calendars

Usage Information

We automatically collect:

  • Log data (IP address, browser type, pages visited)
  • Device information (operating system, device identifiers)
  • Analytics data (feature usage, performance metrics)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process and respond to your requests
  • Generate AI-powered customer support responses
  • Send administrative notifications and updates
  • Analyze usage patterns to enhance user experience
  • Protect against fraud and unauthorized access
  • Comply with legal obligations

AI-Powered Response Generation

Our AI system processes your uploaded documents to provide accurate, context-aware responses to customer inquiries. This involves:

  • Analyzing and indexing your document content
  • Matching customer questions to relevant sections of your documentation
  • Generating responses based on your specific product information

Your documents and data are isolated per organization and are never shared with or used to train models for other customers. AI-generated responses are suggestions provided to your support team. Your staff can review, modify, or override any AI response before it is sent to customers. No fully automated decisions with legal or significant effects are made without human review.

4. Information Sharing

We do not sell your personal information. We may share information with:

  • Service Providers: Third parties who assist in operating our Service (hosting, analytics, email delivery)
  • AI Providers: OpenAI for processing documents and generating responses (subject to their data processing terms)
  • Meta Platforms: When you connect WhatsApp, Instagram, or Messenger channels, we exchange data with Meta as described in the "Meta Platform Integration" section below
  • Google: When you connect Google Calendar for appointment booking, we exchange data with Google as described in the "Google Calendar Integration" section below
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

5. Meta Platform Integration

SocialBee integrates with Meta platforms (Facebook, Instagram, and WhatsApp) to enable customer communication through these channels. This section describes how we interact with Meta's services and process data from these platforms.

Facebook Login

We use Facebook Login to authenticate and connect your Facebook Pages, Instagram Business accounts, and WhatsApp Business accounts to SocialBee. When you connect a channel, you authorize SocialBee to access specific data from your Meta accounts. You can review and revoke this access at any time through your Facebook Settings.

Data We Receive from Meta

When you connect your Meta accounts, we receive:

  • Profile Information: Your Meta user ID and name (used to identify the connection owner)
  • Page Information: Page IDs, names, and categories for Facebook Pages you manage
  • Instagram Account Information: Instagram Business account IDs, usernames, and profile pictures
  • WhatsApp Business Information: WhatsApp Business Account IDs and phone number details
  • Messages: Customer messages sent to your connected channels (including text, images, and attachments)
  • Comments: Comments on your posts (if you enable comment handling)

How We Use Meta Platform Data

We use data received from Meta platforms to:

  • Display and manage conversations with your customers
  • Generate AI-powered responses using your product documentation
  • Store conversation history for your review and training
  • Provide analytics and insights about customer interactions
  • Maintain and improve our Service

Limited Use Disclosure

We are committed to using Meta platform data responsibly. We explicitly confirm that we do NOT:

  • Use Meta data for advertising, marketing profiling, or behavioral targeting
  • Sell, license, or transfer Meta data to third parties
  • Share Meta data with other SocialBee customers or organizations
  • Use Meta data to train machine learning models beyond your organization's context
  • Retain Meta data beyond the period necessary to provide the Service

Data We Send to Meta

When you respond to customers through SocialBee, we send:

  • Response messages (text composed by you or generated by AI)
  • Read receipts and typing indicators
  • Delivery status updates

Permissions We Request

When connecting your accounts, we request only the permissions necessary to provide our Service:

  • Base Permissions (all platforms): pages_show_list, pages_manage_metadata, pages_read_engagement (required to list and manage your connected Pages)
  • Messenger: pages_messaging (to send and receive messages through Facebook Messenger on behalf of your Page), pages_read_user_content (to read comments and posts on your Page), pages_manage_engagement (to reply to comments on your Page posts)
  • Instagram: instagram_basic (to access basic Instagram Business account information), instagram_manage_messages (to send and receive Instagram Direct Messages), instagram_manage_comments (to read and reply to comments on Instagram posts)
  • WhatsApp: whatsapp_business_management (to manage WhatsApp Business Account settings), whatsapp_business_messaging (to send and receive WhatsApp messages), business_management (to manage business assets associated with your WhatsApp Business Account)

We follow the principle of least privilege and only request permissions required for the features you use.

Data Retention for Meta Platform Data

Messages and conversations from Meta platforms are retained for as long as your account is active or as needed to provide you with our Service. You may request deletion of specific conversations or all your data at any time (see "Your Rights" section below).

Your Control Over Meta Data

  • Disconnect Channels: You can disconnect any Meta channel from SocialBee at any time through our dashboard
  • Revoke Access: You can revoke SocialBee's access to your Meta accounts through Facebook Settings → Apps and Websites
  • Automatic Deletion via Meta: When you remove SocialBee from your Facebook Apps and Websites, we automatically receive a deletion request from Meta and remove your data. You will receive a confirmation code to verify deletion status
  • Request Deletion: Request deletion of your data through our contact email or via Meta's data deletion request process
  • Export Data: Request an export of your conversation history

Meta's Privacy Policy

Our use of Meta platform data is also governed by Meta's Platform Terms and Data Policy. For information about how Meta collects and uses your data, please review:

6. Google Calendar Integration

SocialBee integrates with Google Calendar to enable appointment booking through your customer support channels. This section describes how we interact with Google's services and process data from Google Calendar.

Google Account Authentication

We use Google's secure authentication to connect your Google Calendar account to SocialBee. When you connect your account, you authorize SocialBee to access specific calendar data. You can review and revoke this access at any time through your Google Account settings.

Data We Access from Google

When you connect your Google Calendar account, we access:

  • Calendar List: Names, identifiers, and time zones of your Google Calendars (so you can select which calendar to use for appointment booking)
  • Free/Busy Availability: Whether time slots on your selected calendars are free or busy (we do not see event details — only availability status)
  • Calendar Events: We create new events on your selected calendar when customers book appointments. We do not read, modify, or delete your existing calendar events

How We Use Google Calendar Data

We use data from Google Calendar exclusively to:

  • Display your available time slots to customers requesting appointments
  • Check calendar availability in real-time to prevent double-booking
  • Create calendar events for confirmed customer appointments
  • Show you which calendars are connected and their status

Google API Services User Data Policy

SocialBee's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Limited Use Disclosure

In accordance with Google's Limited Use requirements, we explicitly confirm that:

  • We only use Google Calendar data to provide and improve the appointment booking features described in this policy
  • We do not use Google Calendar data for advertising, marketing profiling, or any purpose unrelated to the appointment booking functionality
  • We do not sell, lease, or transfer Google Calendar data to third parties, except as necessary to provide the Service (e.g., displaying availability to customers) or as required by law
  • We do not use Google Calendar data to train general-purpose machine learning or artificial intelligence models
  • Human access to Google Calendar data is limited to what is necessary for debugging, security monitoring, or responding to your support requests, and only with your consent or as required by law

Permissions We Request

When connecting your Google Calendar, we request only the permissions necessary to provide our appointment booking Service:

  • calendar.events: To create appointment events on your selected calendar when customers confirm bookings
  • calendar.readonly: To list your calendars so you can choose which one(s) to use for appointment booking
  • calendar.freebusy: To check availability on your selected calendars without accessing event details

We also request basic profile information (name and email) to identify your Google account and display your connection status. We follow the principle of least privilege and do not request full calendar access.

Data Storage and Security

Your Google Calendar connection credentials are encrypted at rest before being stored in our database. Access tokens are short-lived and are automatically refreshed using secure, encrypted credentials. We do not store your Google password.

Data Retention for Google Calendar Data

We retain your Google Calendar connection data (encrypted credentials and calendar selection preferences) for as long as your connection is active. Appointment events created on your calendar remain on your Google Calendar under your control. We do not maintain a separate copy of your calendar data beyond what is necessary for real-time availability checks.

Your Control Over Google Calendar Data

  • Disconnect Calendar: You can disconnect your Google Calendar from SocialBee at any time through our dashboard. Upon disconnection, we delete your stored connection credentials and calendar preferences
  • Revoke Access: You can revoke SocialBee's access to your Google account at any time through your Google Account permissions settings
  • Manage Appointments: Calendar events created by SocialBee are standard Google Calendar events — you can view, edit, or delete them directly in Google Calendar
  • Request Deletion: Request deletion of all your Google Calendar connection data by contacting us at privacy@socialbee.chat

Google's Privacy Policy

Our use of Google Calendar data is also governed by Google's Terms of Service and Privacy Policy. For information about how Google collects and uses your data, please review:

7. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption in transit and at rest using industry-standard protocols
  • Secure password hashing using industry-standard algorithms
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Monitoring and logging for security events

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

8. Data Retention

We retain your information for as long as:

  • Your account remains active
  • Necessary to provide the Service
  • Required by legal obligations
  • Needed to resolve disputes or enforce agreements

Upon account deletion, we will delete or anonymize your personal information within 30 days, except where retention is required by law. Document data and conversation history are deleted immediately upon request.

9. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your personal information
  • Export your data in a portable format
  • Object to or restrict certain processing
  • Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@socialbee.chat. We will respond to your request within 30 days in accordance with applicable law.

For data received from Meta platforms, you may also revoke our access at any time by removing SocialBee from your Facebook Apps and Websites settings at facebook.com/settings. When you revoke access, we will delete your Meta platform data in accordance with Meta's requirements.

For data received from Google Calendar, you may revoke our access at any time by removing SocialBee from your Google Account permissions. When you revoke access or disconnect your calendar through our dashboard, we immediately delete your stored Google connection credentials and calendar preferences.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses approved by relevant authorities.

11. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new policy on this page
  • Updating the "Last updated" date
  • Sending email notification for material changes

We encourage you to review this Privacy Policy periodically for any changes.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

For EU residents, you also have the right to lodge a complaint with your local data protection authority.