Privacy Policy

Last updated: April 4, 2026

Bellsons AI ("we", "our", or "us"), operated by Bellson Consulting LLC, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our AI-powered customer service platform.

1. Information We Collect

We collect information you provide directly to us and information generated through your use of our service:

• Account information: Name, email address, and password when you register
• Facebook/Instagram page data: Page name, page ID, and access tokens when you connect your business pages
• Customer conversation data: Messages sent to and from your connected Facebook or Instagram pages
• Product catalog data: Product names, descriptions, prices, and inventory information you add
• Usage data: Information about how you use our platform, including features accessed and API calls made
• Billing information: Payment details processed securely through Stripe

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve the Bellsons AI service
• Process messages from your customers and generate AI responses
• Send you service-related notifications and alerts (e.g., human handoff alerts)
• Process payments and manage your subscription
• Generate conversation insights and analytics for your business
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

3. Facebook and Instagram Data

When you connect your Facebook or Instagram business pages to Bellsons AI, we access your pages through the Meta Platform in accordance with Meta's Platform Terms and Developer Policies. Specifically:

• We use pages_messaging permission to read and respond to messages on your behalf
• We use pages_show_list to display your connected pages
• We store page access tokens securely to enable automated responses
• We never access data from pages you have not explicitly connected to our service
• Customer messages are stored to provide conversation history and analytics

You can disconnect your pages at any time from your dashboard, which will immediately stop message processing and delete your page access tokens.

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• Anthropic: Customer messages are sent to Anthropic's Claude API to generate AI responses. Anthropic's privacy policy applies to their processing.
• Stripe: Payment information is processed by Stripe in accordance with their privacy policy.
• Legal requirements: If required by law, regulation, or legal process.
• Business transfers: In connection with a merger, acquisition, or sale of assets.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. You may request deletion of your data at any time by contacting us. Conversation data is retained for up to 12 months to provide analytics and insights. Upon account deletion, all personal data is removed within 30 days.

6. Data Security

We implement industry-standard security measures to protect your information:

• All data is encrypted in transit using TLS 1.2 or higher
• Data at rest is encrypted using AES-256 encryption
• Access tokens are stored securely and never exposed in logs
• We conduct regular security reviews and vulnerability assessments

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Portability: Request your data in a machine-readable format
• Objection: Object to processing of your personal data

To exercise any of these rights, please contact us at [email protected].

8. GDPR Compliance

For users in the European Economic Area (EEA), we process your data based on the following legal bases: performance of a contract (providing our service), legitimate interests (improving our service, preventing fraud), and your consent (where applicable). You have the right to lodge a complaint with your local data protection authority.

9. Children's Privacy

Bellsons AI is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of Bellsons AI after such changes constitutes your acceptance of the new Privacy Policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Company: Bellson Consulting LLC
• Website: socialmedia.bellsonconsulting.com

This privacy policy was written to comply with GDPR, CCPA, and Meta Platform Policies.