Privacy policy.

Data controller

Entity

BotXNext Sàrl (CHE-177.607.551)

Address

Route d'En Bas 36, 1084 Carrouge VD — Switzerland

Email

hello@botxnext.io

Representative

Bruno Arnaud Azoulay

What data and how

Contact form

Last name, first name, email, message, company (optional)

Server logs

IP address, user-agent, timestamp, page visited — anonymized after 30 days

Technical cookies

Session identifier, language preference (fr/en)

Communications

Email and phone exchanges related to a project or quote

Why we process your data

Reply

Respond to your contact or quote request

Perform

Carry out the contractual service (legitimate interest + contract performance)

Invoice

Issue invoices and keep accounting records (legal obligation under CO/LIFD)

Secure

Detect abuse, attacks, unauthorized access (legitimate interest)

Sub-processors and technical partners

Hosting

FuseBoat (Fusengine Sàrl) — servers in Switzerland

Maps

Google Maps (Google LLC, USA) — loaded on the Contact page, transmits your IP to Google

Email

FuseBoat (Fusengine Sàrl) — handling of @botxnext.io emails

Accounting

Vaud-based fiduciary (under confidentiality agreement)

Retention periods

Contact request

12 months after last exchange if no follow-up

Active client data

Contract term + 10 years (Swiss accounting obligation, art. 958f CO)

Server logs

30 days, anonymized thereafter

Technical cookies

Session: until browser close · Language: 12 months

Transfers outside Switzerland / EU

The only transfer outside Switzerland / EU concerns the Google Maps iframe on the Contact page, which transmits your IP address to Google LLC (USA). Google participates in the EU-US Data Privacy Framework and is recognized by the Swiss Federal Council (adequacy decision of 14 August 2024). If you do not wish to load Google Maps, you may block the iframe via your browser settings or contact us by phone / email.

Security measures

Systematic HTTPS connections, TLS 1.3 encryption minimum. Data access restricted to authorized persons and logged. Encrypted backups hosted in Switzerland. Passwords stored using a modern hashing function (Argon2id). Annual internal security audits. In case of confirmed breach, notification within 72 hours to the FDPIC and to affected individuals (art. 24 revFADP).

Use of cookies

The site only uses strictly necessary cookies (session, language). No advertising, tracking, analytics or social-network cookies. No prior consent is therefore required (essential cookies). Should we add analytics tools in the future, an explicit consent banner will be implemented.

Rights you can exercise

Access

Obtain a copy of the data concerning you

Rectification

Correct inaccurate or outdated data

Deletion

Request erasure (subject to legal retention obligations)

Objection

Object to processing based on legitimate interest

Portability

Receive your data in a structured, readable format (GDPR)

Withdrawal of consent

Withdraw at any time a previously given consent

Complaint

File a complaint with the FDPIC (Swiss federal data protection commissioner): edoeb.admin.ch

Procedure to exercise your rights

Any request can be sent by email to hello@botxnext.io or by postal mail to BotXNext Sàrl, Route d'En Bas 36, 1084 Carrouge VD. We commit to reply within 30 days. Reasonable proof of identity may be requested to prevent impersonation. No fee will be charged unless the request is manifestly unfounded or repetitive.

WhatsApp integration (Meta Platform)

When you connect a WhatsApp Business account to our services through Meta's Embedded Signup, we receive and process Meta "Platform Data": WhatsApp Business Account ID (WABA), business phone number, message templates and the content of messages exchanged through the Cloud API. This data is processed solely to provide the messaging service to the relevant client, in accordance with the Meta Platform Terms. It is never sold or used for advertising purposes. Deletion can be requested at any time (see "Procedure to exercise your rights").

Policy updates

This policy may be updated to reflect changes in our practices or in legislation. The version in force is always dated and published on this page. Substantial changes will be notified by email to active clients.