Privacy Policy

This Privacy Policy describes what data is processed when using the agentbouncer.io service, available at https://agentbouncer.io, as well as related features, interfaces, APIs, website scanner, file generator, and AI analytics.

The Policy applies to users of the website and Service, website owners and representatives, registered users, as well as technical data of visitors to Client websites if the Client enables AI analytics or other agentbouncer.io integrations.

By using the Service, you confirm that you have read this Policy.

The data controller with respect to user accounts and use of the Service is individual entrepreneur Alexey Sharapov (OGRNIP 325774600322644, IN 773001860255).

For questions regarding personal data processing and privacy, you can contact us at: hello@agentbouncer.io.

With respect to account data, support requests, technical Service logs, and agentbouncer.io usage data, we generally act as an independent data controller.

With respect to data of visitors to the Client Website that may be processed when AI analytics is enabled, the Client is usually the data controller, and we may act as a processor acting on the Client’s instructions.

The Client is independently responsible for the legality of installing integrations, notifying website visitors, obtaining necessary consents, and reflecting the use of agentbouncer.io in their privacy policy.

If the Client requires a separate data processing agreement or Data Processing Agreement, they may request it via the contact address.

Account data: email, name or company name, authorization data, account settings, projects, domains, roles, history of actions in the interface.

Scanning data: specified URL or domain, website check results, information about the presence or absence of llms.txt, llms-full.txt, robots.txt, sitemap.xml, ai.txt, security.txt, ai-plugin.json files, and files in the /.well-known/ directory.

Website content and technical information: publicly available pages, headings, metadata, links, text fragments, response codes, redirects, robots rules, and other information necessary for analysis and generation of recommendations.

Generated materials: recommendations, AI-readiness score, file texts, templates, reports, exported archives, and generation history.

AI analytics data: events of requests from bots and AI agents, URL, request date and time, user-agent, IP address, response status, presumed bot type, blocking information, and other technical parameters.

Technical data of the Service user: IP address, user-agent, language, cookies, session identifiers, device and browser data, logs, errors, performance information.

Communications: support messages, email inquiries, consultation requests, commercial requests, and related contact details.

Payment and accounting data: if payment is used in the future or as part of separate services, we may process information about invoices, payments, plans, acts, tax and accounting documents. Full bank card data is generally processed by payment providers, not directly by us.

We receive data directly from the User during registration, use of the Service, launching scans, project setup, contacting support, or ordering additional services.

Some data is collected automatically when using the website and Service: technical logs, cookies, browser information, IP address, security and performance events.

Data about the Client Website may come from publicly available pages and files of the website specified by the User for scanning.

If the Client enables AI analytics, technical events may come from the Client Website or related integrations.

To provide the Service: registration, authorization, project creation, website scanning, file analysis, generation of recommendations and ready-to-publish files.

To operate AI analytics: identifying requests from AI agents and bots, displaying statistics, diagnosing blocks, analyzing technical events.

To support users: processing requests, diagnosing errors, answering questions, and improving service quality.

For security: preventing abuse, protecting accounts, limiting malicious activity, investigating incidents, and ensuring infrastructure stability.

To improve the Service: analyzing aggregated metrics, identifying issues, developing new features, and improving recommendation quality.

To fulfill contractual, accounting, tax, and legal obligations, where applicable.

To communicate with the User regarding Service operation, changes to terms, security, support, and requests for additional services.

We process data based on performance of a contract or user agreement when the data is necessary to provide the Service.

We may process data based on legitimate interest, including ensuring security, preventing abuse, improving the Service, and protecting rights.

In certain cases, processing is carried out to comply with legal requirements, accounting and tax obligations, and to respond to lawful requests from competent authorities.

If applicable law requires consent, processing is carried out on the basis of such consent. On the Client Website, obtaining necessary consents from visitors is usually the responsibility of the Client.

We may share data with providers of infrastructure, hosting, databases, monitoring, analytics, authorization, communications, payment, and accounting services if necessary for the operation of the Service.

For website analysis, generation of recommendations, or preparation of files, the Service may use third-party artificial intelligence models or API providers. In such case, data may be transferred to them to the extent necessary to perform the relevant function.

If the Client orders additional consulting services or integrations, data may be processed by contractors or specialists engaged to perform the work, subject to confidentiality obligations.

We may disclose data upon a lawful request of a court, government authorities, or other competent persons if such disclosure is mandatory under applicable law.

We do not sell personal data or transfer it to third parties for their independent marketing without a legal basis.

Data may be processed in countries other than the User’s country of residence or the Client’s country of registration, since infrastructure providers, cloud services, AI models, and other suppliers may be located in different jurisdictions.

Where necessary, we use reasonable contractual, organizational, and technical measures to protect data during international transfers.

By using the Service, the User understands that cross-border processing may be necessary for the operation of certain features.

We retain data for as long as necessary to provide the Service, support the account, operate projects, comply with law, resolve disputes, ensure security, and protect rights.

Account data is usually stored until account deletion or termination of Service use, unless longer storage is required by law or legitimate interests.

Scanning data, projects, reports, and generated files may be stored in the User’s account until deleted by the User, deletion of the project, or termination of the account.

Technical logs and security events may be stored for a limited period necessary for diagnostics, security, and investigation of abuse.

Some data may be retained longer if required for accounting, compliance with law, protection against claims, or incident investigation.

We apply reasonable technical and organizational data protection measures, including access control, permission limitation, monitoring, connection protection, and other security measures.

We strive to minimize the amount of data processed and limit access to it only to those persons and systems that need it.

Absolute security of data transmission and storage on the internet is impossible. The User and Client are also responsible for the security of their accounts, websites, hosting, CMS, DNS, and integrations.

We may use cookies, localStorage, and similar technologies for authorization, session storage, security, remembering settings, interface analytics, and error diagnostics.

Some cookies are necessary for the operation of the Service. Others may be used for analytics or product improvement if permitted by applicable law.

If the Client connects agentbouncer.io scripts, widgets, or analytics to their website, the Client is independently responsible for displaying necessary cookie notices and obtaining visitor consents if required by law.

Depending on applicable law, a data subject may have the right to access data, correct it, delete it, restrict processing, object to processing, data portability, and withdraw consent.

If you are a Service user or Client representative, you may send a request to hello@agentbouncer.io.

If you are a visitor to a Client website where agentbouncer.io analytics or integration is used, the primary request regarding your data should be addressed to the owner of the relevant website, since they are usually the data controller.

We will help the Client fulfill a lawful data subject request within technical capabilities and applicable obligations.

To protect data, we may request additional information to confirm the identity or authority of the person submitting the request.

The Service is primarily intended for website owners, companies, entrepreneurs, marketing, SEO, development, and AI optimization specialists and is not specifically intended for children.

We do not knowingly seek to collect personal data from children. If you believe that a child’s data has been unlawfully transferred to us, contact us at hello@agentbouncer.io.

The Client is independently responsible for the legality of processing minors’ data on their website if such website is aimed at the relevant audience.

If the Client enables AI analytics, scripts, files, redirects, endpoints, or other agentbouncer.io integrations on their website, the Client must ensure that such connection complies with applicable law.

The Client must update their own privacy policy, cookie notices, and other documents if required to disclose information about the transfer of technical data to agentbouncer.io.

The Client must not transmit through agentbouncer.io integrations data that is not necessary for the operation of the Service, as well as special categories of personal data without proper legal basis.

The Service may use automated algorithms and artificial intelligence models to analyze websites, classify files, identify errors, prepare recommendations, and generate technical files.

Such processing is not intended to make legally significant decisions about the User or visitors to the Client Website.

Results of automated processing may be inaccurate and must be checked by the User before use.

We may periodically update this Privacy Policy.

The current version is published on the agentbouncer.io website. The effective date is indicated at the beginning of the document.

In case of material changes, we will take reasonable measures to notify users if required by applicable law or the nature of the changes.

For questions regarding privacy and personal data processing, please contact us at: hello@agentbouncer.io.