Legal / Data Security
The technical and organizational measures protecting your data.
Security is foundational to the MyChatBot Service. This page summarizes the technical and organizational measures we use to protect the Service and Customer Content. It supports the security commitments in our Terms of Service and DPA.
Data is encrypted in transit using modern TLS and at rest using strong, industry-standard algorithms.
We apply role-based access controls, least-privilege principles, strong authentication for internal systems, and regular access reviews. Customers control their own users and administrators.
The Service runs on reputable cloud providers with network segmentation, firewalls, and continuous monitoring. We separate environments and protect secrets and credentials.
We follow secure software-development practices, including code review, dependency management, and testing, and we work to remediate vulnerabilities promptly.
We log and monitor relevant security events to detect and respond to anomalies, and we retain logs for a limited period for security and troubleshooting.
We maintain backups, redundancy, and business-continuity and incident-response procedures designed to keep the Service available and recoverable.
We maintain an incident-response process and will notify affected customers without undue delay of any breach affecting their Customer Content, with the information reasonably available to help meet notification obligations.
We assess the security of subprocessors and require contractual data-protection commitments. See our Subprocessors page.
If you believe you have found a security issue, please report it to team@mychatbot.app. Do not test against production data or other users’ accounts.
← All legal documents