← Back to HomeYedaBot

Privacy Policy

Last updated: March 1, 2026

1. General

This Privacy Policy explains how YedaBot (Yedabot.com) collects, processes, and protects information relating to platform users - both business owners operating bots ("Bot Owners") and end-users who chat with the bots ("End Users").

Using the service constitutes full agreement to this policy. If you disagree - stop using the service immediately. This policy is subject to the Terms of Servicewhich constitutes an additional binding agreement.

2. Critical Warning - Public Information

⚠️ ALL information that a Bot Owner enters into the system is completely public.

The bot's knowledge base content (Q&As, services, prices, etc.) is passed directly to every end user who opens a conversation with the bot. There is no protection, encryption, or access restriction on this information.

It is strictly forbidden to enter:

  • Passwords, access codes, or authentication details
  • API keys, tokens, or sensitive technical information
  • Credit card details, bank accounts, or financial information
  • ID cards, passports, or identifying documents
  • Health, medical, or sensitive data as defined by law
  • Personal information of employees, customers, or third parties without their consent
  • Any information you do not agree to make publicly visible

YedaBot bears no responsibility for any damage resulting from entering sensitive information into the system. Sole responsibility rests with the Bot Owner.

3. Warning for End Users

If you are a customer chatting with a bot:

  • You are interacting with an automated AI system, not a human.
  • Do not send credit card details, passwords, ID numbers, or any sensitive information in the chat.
  • Conversations may be stored by YedaBot and/or the Bot Owner.
  • Conversation content may be used to improve the service in accordance with this policy.
  • Do not rely on bot answers for medical, legal, financial, or other critical decisions.

4. Information We Collect

A. From Bot Owners (Registered Users):

  • Account Details: Email address, name, encrypted password.
  • Business Details: Business name, description, logo - as voluntarily provided.
  • Bot Knowledge Base: All content configured for the bot - this information is completely public.
  • Usage Data: Logins, interface actions, technical logs.
  • Payment Data: Processed by an external payment provider; YedaBot does not store card details.

B. From End Users (Bot's Customers):

  • Conversation Content: Messages sent to the bot and its responses.
  • Anonymous User ID: For maintaining conversation continuity only.
  • Technical Metadata: IP address, browser type, conversation time.

5. Web Scraping - Privacy and Data

YedaBot offers a tool that allows Bot Owners to scrape content from a website to populate the bot's knowledge base.

A. What Is Scraped and Stored

  • Text Content: Visible text on scraped pages (headings, paragraphs, lists).
  • Page Metadata: Page titles, URLs, descriptions.
  • This content is stored as part of the bot's knowledge base - and is completely public to every end user who chats with the bot.

B. What Is Not Scraped

  • Binary files, images, PDFs (unless explicitly enabled).
  • Content behind authentication, login, or access restrictions.
  • YedaBot attempts to respect the scraped site's robots.txt file, but cannot guarantee this in all cases.

C. Bot Owner Responsibility - Disclosure and Permission

  • YedaBot does not verify that the Bot Owner is authorized to scrape the specified site. Full legal responsibility for the scraping rests solely with the Bot Owner.
  • If the scraped site belongs to a third party, the Bot Owner must hold written consent before scraping.
  • It is forbidden to scrape personal information of private individuals (names, addresses, phone numbers, etc.). Such scraping may constitute illegal data processing under applicable privacy law.

D. Retention of Scraped Content

Scraped content is stored on YedaBot servers as part of the bot's knowledge base, as long as the account is active. When the bot or account is deleted, this content will be deleted according to the general data retention policy (section 8). YedaBot does not retain separate copies of scraped content for model improvement.

E. Disclaimer - Scraped Content

YedaBot is not responsible for the accuracy, currency, completeness, or legality of scraped content. YedaBot is not responsible for any damage resulting from the use of scraped content, including copyright infringement claims, privacy violations, or misleading end users.

6. How We Use Information (General)

  • Operating and improving the technical service.
  • Identity verification and account security.
  • Performance analysis, fault detection, and abuse prevention.
  • Improving AI models - based on aggregated and anonymized data only.
  • Sending essential service messages (cannot be unsubscribed) and marketing updates (can be unsubscribed).

YedaBot will not sell, rent, or transfer personal information to third parties for advertising purposes.

7. Sharing Information with Third Parties

  • AI Model Providers: Conversation content is transferred to language model providers (e.g., Anthropic, OpenAI) to generate responses. This information is subject to their privacy policies.
  • Cloud Infrastructure: Data is stored on secure cloud servers (Supabase, Vercel). These providers are subject to strict data processing agreements.
  • Law Enforcement: We will share information in accordance with legal obligations, court orders, or to protect YedaBot's rights.

8. Data Security

YedaBot employs reasonable industry-standard security measures to protect information, including encryption in transit (TLS) and at rest, role-based access control, and anomaly detection logs.

However, no security is absolute. YedaBot cannot guarantee that information will not be exposed due to breaches, failures, or factors beyond its control. Entering sensitive information into the service is solely at the user's risk.

9. Data Retention

  • Account data is retained as long as the account is active.
  • After account deletion - data is deleted within 90 days, except what is required for accounting or legal purposes (up to 7 years as required by law).
  • Conversation logs may be retained for up to 12 months for security and service improvement.
  • Data deleted from the primary database may be retained in backups for up to an additional 30 days.

10. Cookies

The service uses necessary cookies for authentication, session management, and security. There is no use of advertising cookies or cross-site user tracking. Blocking cookies in your browser may disrupt the service's functionality.

11. User Rights

Under Israeli Privacy Protection Law and GDPR regulations (as applicable), every user is entitled to:

  • Access: Know what data we hold about them.
  • Correction: Request correction of incorrect data.
  • Deletion: Request deletion of their data, subject to legal retention obligations.
  • Portability: Receive their data in a machine-readable format.
  • Objection: Object to certain processing, including direct marketing.

To exercise rights - contact us via LinkedIn. We will respond within 30 days.

12. Children

The service is not intended for those under 18. YedaBot does not knowingly collect information from minors. If we learn that information from a minor has been collected - it will be deleted immediately.

13. Policy Changes

YedaBot may update this policy at any time. Material changes will be published on the site and/or by email. Continued use after publication constitutes agreement to the updated terms.

14. Contact and Complaints

For any question, request, or privacy complaint - contact us via LinkedIn. If you believe your privacy has been violated and you have not received an adequate response, you have the right to contact the Israeli Privacy Protection Authority.