Legal
Privacy Policy
Last updated: January 2025
This Privacy Policy explains how Nezaton collects, uses, and protects your personal information when you use our platform and services. We have written this in plain language so it is easy to understand.
By creating an account or using Nezaton, you agree to the practices described in this policy.
1. Who We Are
Nezaton is an AI chatbot platform that helps small businesses automate customer conversations on their website, Instagram, WhatsApp, and email. Nezaton is operated as an independent startup.
For any privacy-related questions, you can contact us at: privacy@nezaton.com
2. What Data We Collect
We only collect data that is necessary to run the service.
Account Information
When you create a Nezaton account, we collect your name, email address, and password (stored as a secure hash — we never store your actual password). If you sign in with Google, we receive your name and email from Google only.
Business Profile Data
To configure your AI chatbot, you provide information about your business — such as your business name, services, FAQs, support contact, and working hours. This data is used exclusively to train your AI assistant.
Conversation and Chat Data
Messages exchanged between your customers and your Nezaton AI chatbot are stored in our database. This includes the customer's message and the AI's response. This data is used to display conversation history in your dashboard and to improve response quality. Your customers' messages are processed by our AI provider (Groq) to generate replies.
Lead and Customer Data
When your AI chatbot captures a customer's contact details (name, email, phone number) during a conversation, that information is stored in your Nezaton dashboard as a lead. You — the business owner — are responsible for how you use this customer data and must comply with applicable privacy laws.
Payment Information
Payments are processed by Razorpay. Nezaton does not store your credit card or bank account details. We only store the payment confirmation, order ID, and amount for billing records. Razorpay's privacy policy governs how your payment data is handled during transactions.
Usage and Technical Data
We log basic technical data such as API usage, error events, and session activity. This helps us maintain service reliability and troubleshoot issues. We do not use third-party analytics trackers like Google Analytics.
3. How We Use Your Data
To operate your account
We use your email and name to manage your Nezaton account, send login and password reset emails, and communicate important service updates.
To run your AI chatbot
Your business profile data — services, FAQs, instructions — is used to generate AI responses for your customers. This data is sent to Groq's API to produce replies.
To process payments
Your payment and subscription information is used to activate your products, generate invoices, and manage your billing cycle.
To send transactional emails
We send emails related to your account — password resets, payment confirmations, subscription reminders, and new lead alerts. These are sent via Resend. We do not send marketing or promotional emails without your consent.
To improve the service
Anonymized usage patterns help us understand how the platform is used and where it can be improved. We do not sell or share this data.
4. Third-Party Services We Use
To provide the Nezaton service, we rely on the following third-party providers. Each of them has their own privacy policy.
Groq
AI language model — processes customer messages to generate chatbot replies
Razorpay
Payment processing for India and international transactions
Resend
Transactional email delivery — password resets, invoices, alerts
Amazon Web Services (S3)
File storage for uploaded images, documents, and attachments
Google OAuth
Optional: lets you sign in to Nezaton using your Google account
Meta (Instagram / WhatsApp)
Required if you connect Instagram DM AI or WhatsApp AI products
5. How Long We Keep Your Data
Account data
Kept as long as your account is active. Deleted within 30 days of account deletion.
Conversation and chat data
Retained for 90 days by default. You can change this in your product security settings or delete conversations manually from your dashboard at any time.
Lead data
Kept until you delete it from your dashboard. You can export all leads as CSV at any time.
Payment and invoice records
Retained for 7 years as required for financial record-keeping and tax compliance.
Demo session data
Demo chat sessions are temporary and not linked to your account unless you are logged in.
6. Cookies and Local Storage
Nezaton does not use tracking cookies. We use browser localStorage to store your authentication tokens (access token and refresh token) so you remain logged in across sessions.
Demo sessions are also stored in localStorage to track your free message count. This data stays in your own browser and is not shared with us.
We do not use advertising cookies, tracking pixels, or third-party analytics cookies.
7. Your Rights and Controls
You have full control over your data on Nezaton.
Access your data
Log in to your dashboard to view all your account data, conversations, leads, and payments.
Export your data
Go to Account, then Data, then Export Data to download a full copy of your account data. Leads can be exported as CSV from the Leads page.
Delete your data
Go to Account, then Danger Zone, then Delete Account. Your account and all associated data will be permanently deleted within 30 days.
Correct your data
Update your name, email, and business information at any time from your Account Settings.
Cancel your subscription
Cancel any subscription from your Billing dashboard at any time. No fees or penalties.
Contact us
For any data requests or privacy concerns, email privacy@nezaton.com and we will respond within 7 business days.
8. How We Protect Your Data
Passwords
All passwords are hashed using bcrypt before storage. We never store or log plain-text passwords.
Authentication
We use short-lived JWT access tokens (15 minutes) and long-lived refresh tokens (30 days) stored in your browser. All sessions can be terminated from your Account Settings.
API keys
All Nezaton API keys are generated using cryptographically secure random bytes. Keys can be revoked from your dashboard at any time.
Data in transit
All communication between your browser and our servers uses HTTPS encryption.
Data access
Your data is only accessible by your account. No other user can access your conversations, leads, or business settings.
9. Children's Privacy
Nezaton is a business platform intended for users aged 18 and above. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has created an account, please contact us at privacy@nezaton.com and we will delete the account immediately.
10. Changes to This Policy
If we make significant changes to this Privacy Policy, we will notify you by email and update the "Last updated" date at the top of this page. Continued use of Nezaton after changes are posted means you accept the updated policy.
11. Contact Us
If you have any questions, concerns, or requests regarding your privacy or this policy, please contact us:
Email: privacy@nezaton.com
Support: nezaton.com/contact