This Privacy Policy describes how AITOOLS ("we", "our", "us") collects, uses, stores, and protects information when you interact with our application and services (the "Service"), including integrations with Meta platforms such as Facebook Messenger and Instagram Messaging.
1. Information We Collect
We collect only the minimum data required to provide messaging and automation functionality.
1.1 Information received via Meta platforms
When users interact with our Service through Facebook or Instagram, we may receive the following information via Meta Webhooks:
- User platform-scoped ID (e.g., Instagram or Facebook sender ID)
- Message content (text, media URLs, attachments metadata)
- Message timestamps
- Business account ID receiving the message
We do not receive or store:
- User passwords
- Email addresses
- Phone numbers (unless explicitly included by the user in a message)
- Payment information
2. How We Use Information
Collected information is used strictly for the following purposes:
- Receiving and responding to user messages
- Providing customer support and automated replies
- Improving message classification, intent recognition, and service quality
- Debugging, logging, and ensuring service reliability
- Complying with legal and platform requirements
We do not sell, rent, or share user data for advertising or marketing purposes.
3. Data Storage and Retention
- Message data may be stored temporarily for processing and service improvement
- Logs may be retained for security, debugging, and compliance purposes
- Data is retained only as long as necessary to fulfill the purposes described above or as required by law
- Upon request or account disconnection, related data will be deleted or anonymized within a reasonable timeframe
4. Data Sharing
We may share data only in the following limited cases:
- With Meta Platforms, as required to operate messaging functionality
- With infrastructure providers (e.g., cloud hosting, databases) strictly for service operation
- When required by law, regulation, or legal process
All third parties are bound by confidentiality and data protection obligations.
5. Data Security
We implement reasonable administrative, technical, and organizational safeguards to protect information, including:
- Secure API communication (HTTPS)
- Access control and environment-based secrets
- Limited internal access to production data
- Monitoring and logging to prevent unauthorized access
However, no system can be guaranteed to be 100% secure.
6. User Rights
Depending on applicable laws, users may have the right to:
- Request access to their data
- Request correction or deletion of their data
- Withdraw consent by stopping interaction with the Service
Requests can be submitted via the contact information below.
7. Children's Information
Our Service is not intended for children under the age of 13. We do not knowingly collect personal data from children.
8. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be reflected on this page with an updated 'Last updated' date.
9. Contact Information
If you have questions or requests regarding this Privacy Policy or data handling practices, you may contact us at: