Botnex Logo

GDPR Policy

Effective Date: 1 January 2026

This GDPR Policy explains how Botnex.io, operated by Right Business Avenues LLP, Vadodara, Gujarat, India ("we", "our", "us"), complies with the General Data Protection Regulation (GDPR) for users located in the European Union (EU) and European Economic Area (EEA). This policy applies only to individuals protected under GDPR and should be read along with our Privacy Policy.

1. Data Controller

For the purposes of GDPR, the data controller is:

Right Business Avenues LLP

Brand: Botnex.io

Vadodara, Gujarat, India

Email: support@botnex.io

2. Personal Data We Process

We may process the following categories of personal data:

  • Name, email address, phone number
  • Business and WhatsApp account details
  • WhatsApp message metadata (delivery status, timestamps)
  • IP address, device and browser information
  • Usage logs and platform interaction data

We do not sell personal data or use message content for advertising.

3. Legal Basis for Processing (GDPR Article 6)

We process personal data under one or more of the following lawful bases:

  • Consent – when you voluntarily provide data
  • Contractual necessity – to provide Botnex services
  • Legitimate interests – service improvement, security, fraud prevention
  • Legal obligations – compliance with applicable laws

4. How Data Is Used

Personal data is used strictly for:

  • Providing WhatsApp automation and chatbot services
  • Account management and customer support
  • Service communication and notifications
  • Platform security and abuse prevention
  • Legal and regulatory compliance

5. Data Sharing & Processors

We may share data only with trusted processors such as:

  • Meta Platforms (WhatsApp Business API)
  • Cloud hosting and infrastructure providers
  • Analytics and monitoring services

All processors are bound by confidentiality and data-protection obligations.

6. International Data Transfers

As Botnex.io operates from India, personal data may be transferred outside the EU/EEA.

We ensure such transfers are protected through:

  • Appropriate contractual safeguards
  • Industry-standard security measures
  • GDPR-compliant processing agreements where applicable

7. Data Retention

We retain personal data only for as long as necessary to:

  • Provide services
  • Meet contractual obligations
  • Comply with legal requirements

Upon account closure or valid deletion request, data is securely removed unless retention is legally required.

8. Your Rights Under GDPR

If you are an EU/EEA resident, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure ("Right to be Forgotten")
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise your rights, email support@botnex.io.

9. Automated Decision-Making

Botnex.io does not perform automated decision-making or profiling that produces legal or similarly significant effects on individuals.

10. Data Security

We implement technical and organizational safeguards to protect personal data against unauthorized access, loss, misuse, or disclosure.

No system is fully secure, and users are encouraged to maintain strong security practices.

11. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority.

You may also contact us directly at support@botnex.io for resolution.

12. Policy Updates

This GDPR Policy may be updated periodically.

Any changes will be reflected on this page with a revised effective date.