Privacy Policy

1. Scope

This policy applies to information processed by Opencom in connection with product operation, customer support workflows, and service reliability. It also describes responsibility boundaries for self-hosted deployments.

2. Information We Collect

Depending on usage, Opencom may process:

• Account and workspace details (name, email, role, workspace configuration).
• Conversation data (messages, ticket content, help-center interactions, related metadata).
• Visitor profile data (email if provided, display name, custom attributes configured by workspace admins).
• Device and usage metadata (app/device type, browser/OS details, timestamps, diagnostics, and activity events).
• Network and routing context (IP-derived region/country, referrer, page/app context).

3. Mobile App and Push Notification Data

For mobile features, Opencom may process device-app identifiers and push notification tokens to deliver message alerts and support operational notifications.

• Push tokens and platform metadata may be stored to route notifications.
• Notification payload metadata (for example conversation or ticket context IDs) may be processed to support deep linking in-app.
• You can control notification permissions through device-level settings.

4. How We Use Information

Opencom uses information to:

• Provide messaging, inbox, campaigns, and support features.
• Authenticate users, protect accounts, and secure workspace access.
• Operate, maintain, and improve service reliability and performance.
• Generate aggregate reporting and operational insights for workspace teams.
• Comply with legal obligations and respond to lawful requests when required.

5. Sharing and Service Providers

Opencom uses infrastructure and service providers to operate the platform (for example hosting, messaging, analytics, and notification delivery). Information may be shared with subprocessors strictly to provide product functionality and service operations.

6. Data Retention and Deletion

Data retention depends on workspace configuration, legal requirements, and product operational needs. Opencom supports data deletion and export workflows as described by platform capabilities and workspace controls.

7. Security

Opencom applies technical and organizational safeguards designed to protect data in transit and at rest, enforce authentication and authorization, and monitor service integrity. No internet-based system can be guaranteed to be fully secure.

8. International Data Transfers

Depending on deployment and provider region, information may be processed in countries other than your own. Where applicable, transfer safeguards are used according to contractual and legal requirements.

9. Your Rights and Choices

Depending on location and role, you may have rights to access, correct, delete, or export certain personal data. Requests should be directed to your workspace administrator or submitted to Opencom using the contact details below.

10. Self-Hosted Deployments

If you self-host Opencom, you are responsible for your own hosting infrastructure, storage, security configuration, legal notices, and compliance obligations. This policy primarily describes the hosted Opencom service model.

11. Children's Privacy

Opencom is not intended for children under the age required by applicable law, and we do not knowingly collect personal information from children in violation of applicable law.

12. Changes to This Policy

We may update this policy from time to time. Updates will be posted on this page with a revised effective date.

13. Contact

For privacy questions or requests, contact privacy@opencom.dev.