Privacy & Compliance
Ce contenu n’est pas encore disponible dans votre langue.
Privacy & Compliance
Section titled “Privacy & Compliance”Clienta.ai gives you and your customers full control over conversation-memory data, with tooling aligned to global privacy regulations.
Supported regulations
Section titled “Supported regulations”The compliance model is designed to satisfy the requirements of:
- PDPA (Thailand)
- GDPR (EU)
- CCPA (California)
- APPI (Japan)
- SG-PDPA (Singapore)
- PIPA (Korea)
Consent management
Section titled “Consent management”Memory collection is off by default for every organization and uses strict opt-in — an admin must enable it, and each customer must grant consent before anything is stored.
- Grant: a customer accepts the memory consent prompt in the widget.
- Withdraw: at any time, withdrawal is recorded immutably and triggers an immediate wipe of that contact’s memories (not deferred).
- The consent mode cannot be weakened by jurisdiction override — the system rejects downgrading from opt-in to opt-out.
Data export (Right of Access — Art.15)
Section titled “Data export (Right of Access — Art.15)”A contact (or an agent on their behalf) can export everything held about them in a single bundle:
- Contact profile
- All stored memories
- Conversations (metadata + AI summary)
- The full consent event log
Data erasure (Right to Erasure — Art.17)
Section titled “Data erasure (Right to Erasure — Art.17)”Erasure comes in two scopes:
- Erase all memories — hard-deletes every
CustomerMemoryrow for the contact. - Full erasure — additionally hard-deletes the message content, anonymizes conversations (unlinked from the contact), and deletes the contact record.
Retention & automatic cleanup
Section titled “Retention & automatic cleanup”- Each memory carries an expiry based on your retention period (default 365 days, configurable under Settings → AI Settings).
- A daily cleanup job hard-deletes expired memories, batched per organization.
- Erasure is always hard-delete — never soft-delete.
Admin compliance dashboard
Section titled “Admin compliance dashboard”Administrators can monitor privacy posture from Settings → Compliance:
- Consent overview — grants vs. withdrawals, active consents.
- Memory overview — total stored memories, expired count.
- Retention settings — retention period and consent mode.
- Audit log — the admin action trail for compliance.