Logo
InitialChat
FeaturesHow it WorksIntegrationsPricingResources
Compliance Center

GDPR Compliance

Effective Date: March 20, 2026

Quick Summary

InitialChat is fully committed to the General Data Protection Regulation (GDPR). We ensure that all personal data processed via our AI agents is handled with the highest standards of security, transparency, and user control. Our platform provides built-in tools for data access, rectification, and deletion to ensure our users and their customers can exercise their data rights effortlessly.

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data privacy law in the European Union (EU) that sets guidelines for the collection and processing of personal information from individuals who live in the EU. At InitialChat, we apply these rigorous standards globally to ensure all our users benefit from premium privacy protections.

Data Subject Rights

Under GDPR, you have several rights regarding your personal data. InitialChat provides the tools necessary to exercise these rights:

Right to Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your personal data ('Right to be Forgotten').

Right to Restriction

Request that we limit how we process your data.

Right to Portability

Request your data in a structured, machine-readable format.

Right to Object

Object to the processing of your data for specific purposes.

Data Processing & Storage

Personal data is processed only as necessary to provide our services. We implement strict data minimization principles:

  • Purpose Limitation: Data is only used for the purposes explicitly stated (e.g., improving AI responses for your specific business).
  • Storage Limitation: We retain data only as long as necessary for the service or as required by law.
  • Security: We use industry-standard encryption (AES-256) for data at rest and TLS for data in transit.
  • Sub-processors: We only work with sub-processors (like Supabase and Google Gemini) that maintain high-security standards and GDPR compliance.

Data Processing Agreement (DPA)

For our business customers, our Terms of Service include a comprehensive Data Processing Agreement (DPA) that governs the relationship between InitialChat (as a Data Processor) and your business (as a Data Controller).

Questions about GDPR? Contact our Data Protection Officer at dpo@initialchat.com

Logo
InitialChat

InitialChat is an AI‑agent platform for businesses to build no‑code chatbots to automate support, generate leads, and grow revenue.

Product

  • Features
  • How it Works
  • Integrations
  • Pricing
  • Resources

Use Cases

  • Real Estate
  • E-commerce
  • Clinics
  • Service Business
  • Restaurants

Company

  • About Us
  • GDPR Compliance
  • CCPA/CPRA Compliance
  • Privacy Policy
  • Terms of Service

© 2024-26 InitialChat. All rights reserved.