ChatHub
← Back to home

Privacy Policy

Last updated: February 2026

This policy explains what personal data ChatHub collects, why, and how we protect it. We comply with the EU GDPR and equivalent laws.

1. Data Controller

ACE XY LTD, a private limited company registered in England & Wales under company number 16349221, registered office at 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom. Contact: privacy@chathub.app.

2. Data We Collect

Account data (email, name, hashed password), billing data (handled by Stripe, we do not store card numbers), Telegram session metadata (encrypted at rest), conversation metadata (peer IDs, timestamps, message content for delivery), DropFans webhook payloads, IP address and user-agent for security logs.

3. Why We Process Data

To provide the service (contractual basis), to bill you (contractual), to detect fraud and abuse (legitimate interest), to send transactional emails (contractual), to send product updates (consent, opt-in only).

4. Telegram Conversations

ChatHub stores conversation history to provide the unified inbox feature. Messages are isolated per organization with row-level security and accessible only to authorized users via RBAC. You can request export or deletion at any time.

5. Third-Party Processors

Stripe (billing), Hetzner (hosting in Germany), Decodo (mobile proxies), OpenAI (translation, when enabled by you, messages are sent for translation; OpenAI does not train on API data), Sentry (error logs), Resend (transactional email), Cloudflare (CDN/DNS).

6. Data Transfers

All primary data is stored in the EU. Some processors (OpenAI, Sentry) may transfer data to the US under Standard Contractual Clauses (SCC).

7. Retention

Account data is kept while your account is active and for 12 months after cancellation for legal/accounting reasons, then anonymized or deleted.

8. Your Rights (GDPR)

You have the right to access, rectify, erase, restrict, port, and object to the processing of your data. To exercise these rights, email privacy@chathub.app. You may also lodge a complaint with the CNIL (France) or your local supervisory authority.

9. Security

Encrypted Telegram sessions at rest, HTTPS-only traffic, httpOnly cookie authentication, CSRF protection, server-side RBAC verification, signed DropFans webhooks, encrypted backups.

10. Children

ChatHub is a B2B tool not directed at children under 18. We do not knowingly process data of minors.

11. Updates

We may update this policy. Material changes will be notified by email.

← Back to home