Privacy Policy

Last updated: December 24, 2025

Short summary: We process only what’s needed to message you and do the tasks you request. We do not sell personal data. We do not message people without valid opt-in where required. If you choose to provide sensitive info (like credentials) or ask us to store session data, we process it only to execute your explicit request and only for that purpose.

1) Who We Are (Data Controller)

AwareYou LLC (“AwareYou”, “we”, “us”) is the controller of personal data processed under this Policy.

Address: 0186, Vazha-Pshavela ave., 22b, N41a, Tbilisi, Georgia
Email:
Phone:

2) Scope

This Policy applies to:

our website: awareyou.com
our messaging-based AI assistant service offered via supported platforms (e.g., Telegram and WhatsApp)
optional automation executed in a cloud browser session when you explicitly request it

3) Personal Data We Process (Data Minimization)

3.1 Messaging data

messaging platform user ID and basic account identifiers provided by the platform
message content and attachments you send to the service
delivery and technical metadata needed to provide messaging (e.g., timestamps, message status)

3.2 Contact and support data

your email address and the content of your support request when you contact us via the website form or email
any information you choose to include in your message to support

3.3 Automation / cloud browser session data

When (and only when) you explicitly request automation, we may execute steps in an isolated cloud browser session on your behalf. Depending on your instructions, we may process:

webpage content needed to complete the task you requested
form inputs you provide
session state (e.g., cookies, local/session storage) required for the requested workflow

4) Data We Do Not Request (Meta/WhatsApp-safe)

We do not request or encourage you to share sensitive identifiers such as full payment card numbers, bank account numbers, government ID numbers, or health information in chat.

5) User-Provided Sensitive Information (Explicit-user-action only)

Important: You may choose to provide sensitive information (including credentials) only at your own initiative and only if you want us to execute a specific task you requested.

If you choose to provide sensitive information:

we process it only to execute your explicit instruction (purpose limitation)
we do not use it for advertising, profiling, or unrelated analytics
we do not share it with other users

You are responsible for deciding what information to provide and for ensuring that your use of third-party websites complies with their terms and applicable law.

6) Session Persistence and Storage

Default: automation sessions are designed to be temporary and isolated.

Exception - only if you explicitly request it: we may store or reuse certain session data (including cookies, form inputs, tokens, or credentials) to enable you to repeat or continue the workflow you requested.

We will store session data only when you explicitly instruct us to do so.
Stored session data is used only to provide the requested service to you.
You may request deletion of stored session data at any time (see Section 11).

7) Purposes of Processing

We process personal data only for the following purposes:

to provide the messaging service and respond to your messages
to execute tasks you explicitly request (including optional automation)
to provide support and handle your inquiries
to maintain security, prevent abuse, and ensure service reliability
to comply with legal obligations

8) Legal Bases (GDPR)

For users in the EEA/UK (and where GDPR applies), our legal bases include:

Contract (GDPR Art. 6(1)(b)): providing the service you request (messaging, automation, support).
Consent (GDPR Art. 6(1)(a)): where you explicitly request optional features (e.g., storing session data) or provide specific data for a task.
Legitimate interests (GDPR Art. 6(1)(f)): security, abuse prevention, service diagnostics (balanced against your rights).
Legal obligation (GDPR Art. 6(1)(c)): where applicable.

If we rely on consent, you can withdraw it at any time by contacting us (see Section 11). Withdrawal does not affect processing already performed.

9) AI and Automated Processing

AwareYou uses automated systems and AI models to generate responses and execute user-requested tasks.

Processing is initiated by your messages and instructions.
We do not make solely automated decisions that produce legal or similarly significant effects about you.
AI outputs may be inaccurate; you should verify important information independently.

10) Messaging Platform Rules

When you use AwareYou services via a messaging platform:

your use is also subject to that platform’s own terms and privacy policy
we use data obtained from the platform only as reasonably necessary to support messaging with you
where required, we message users only after valid opt-in and we respect opt-out/stop requests
we do not share one customer’s chat content with another customer

11) Sharing and Processors

We may use trusted service providers (“processors”) to operate the service (e.g., cloud hosting, monitoring, AI infrastructure). Processors act only on our instructions and under confidentiality and security obligations.

We do not sell personal data.

12) Third-Party Websites You Visit

If you instruct AwareYou to interact with external websites, information you provide (including sensitive data) may be transmitted to those websites as part of executing your explicit request. We do not control third-party websites and are not responsible for their privacy practices.

13) International Transfers

We may process data using infrastructure located in different countries. Where GDPR applies, we take reasonable steps to use appropriate safeguards for international transfers (for example, contractual protections with service providers).

14) Retention

We retain messaging and support data only as long as necessary for the purposes described above, including security and support.
Automation session data is temporary by default; if you request persistence, we retain it until it is no longer needed for the requested service or until you request deletion.

15) Security

We use reasonable technical and organizational measures, which may include isolation of automation sessions, access controls, and monitoring for abuse. However, no system can guarantee absolute security.

16) Your Rights (GDPR)

Where GDPR applies, you may have the right to request:

access to your personal data
correction or deletion
restriction of processing
objection to processing based on legitimate interests
data portability (where applicable)
withdrawal of consent (where applicable)
to lodge a complaint with a supervisory authority

To exercise rights, contact . We may ask for reasonable information to verify your identity.

17) Children

AwareYou is not intended for users under 18, and we do not knowingly collect personal data from minors.

18) Changes

We may update this Policy from time to time. The latest version will be posted on this page with an updated “Last updated” date.

19) Contact

If you have questions or requests, contact:

Email:
Phone: