beta
Privacy Policy
Terms of Service
BOTHUB MICA Statement
Cookie Policy
Data Breach Policy
Data Request Policy
Data Subject Request Form
Disclaimer
General Terms and Conditions
Payment and Refund Policy
Security Policy

Security Policy

Last Updated: 26 September 2025

1. Introduction

Bothub Global AB (company number: 5594314493), registered at Kungsgatan 32, 111 35 Stockholm, Sweden, is committed to ensuring the security and privacy of customer data. This Security Policy describes the measures we take to protect the data you provide to us and how we ensure our products remain safe and reliable.

2. Data Protection

  • We implement industry-standard security controls, including encryption of sensitive data (in transit and at rest).
  • We comply with GDPR and other applicable data protection laws.
  • Access to services and accounts is secured by strong authentication, including two-factor authentication (2FA) where applicable.
  • Our systems are regularly monitored and reviewed for vulnerabilities, and security updates are applied promptly.
  • All financial transactions are processed through PCI-compliant payment gateways, ensuring your payment data is securely handled.

3. User Responsibility

  • You are responsible for safeguarding your login credentials and must not share them with others.
  • If you suspect your account has been compromised or detect suspicious activity, you must notify our support team immediately.

4. Third-Party Security

  • We work only with trusted third-party providers (e.g., hosting, payment, integrations).
  • All third parties must comply with strong security and data protection standards.
  • We conduct regular security assessments of our partners.

5. Incident Response

  • In the event of a security incident or data breach, we will:
    • Investigate and contain the issue immediately.
    • Notify affected users without undue delay.
    • Cooperate with regulatory authorities as required by law.

6. Data Retention & Disposal

  • Personal data is retained only as long as necessary for service delivery or legal obligations.
  • Once no longer needed, data is securely deleted or anonymized.
  • Both physical and electronic data disposal follow strict, irreversible destruction methods.

7. Security Audits & Testing

  • We perform regular security audits and penetration tests conducted by certified third-party experts.
  • Continuous internal monitoring is maintained to detect and prevent unauthorized access or suspicious activity in real time.

8. Employee Training & Awareness

  • All employees receive regular security and privacy training.
  • Access to sensitive data is limited strictly to authorized personnel under confidentiality agreements.

9. Secure Software Development

  • Security is integrated into the software development lifecycle (SDLC).
  • Code is reviewed, tested, and updated to prevent vulnerabilities.
  • Regular patches and updates ensure protection against evolving threats.

10. Privacy by Design

  • We follow Privacy by Design and Privacy by Default principles.
  • Security and privacy are considered at every stage of product design and implementation.

11. Monitoring & Suspicious Activity

  • We continuously monitor our systems and user activities to identify suspicious or unauthorized behavior.
  • Users are encouraged to report suspicious activity to our support team for immediate investigation.

12. Miscellaneous

  • Effective Date: This policy is valid from the date stated above.
  • Changes: We may update this policy to reflect technological, legal, or business changes. The latest version will always be available on our Website.
  • Governing Law: This policy is governed by Swedish law. Disputes shall first be resolved through 30 days of good-faith negotiations, after which they may be submitted to Swedish courts, with Stockholm District Court as the first instance.
  • Interpretation: Headings are for convenience only and do not affect interpretation. Terms not defined here have the same meaning as in the Privacy Policy and Terms of Service.
  • Languages: This Security Policy is available in English. In case of conflict with translations, the English version prevails.

13. Contact Information

If you have questions about this Security Policy, please contact us: [email protected].

Consent to the use of cookies

🍪 Our website uses cookies

This site uses tracking technologies. You can control how we use this information. We use cookies to improve our product and your experience on our website according to our Cookie Policy.