GDPR & Your Data
Awentail is built and operated in the EU. We give you full control over your data — export it anytime, delete it whenever you decide to leave.
What we store
| Type | Where | Why |
|---|---|---|
| Account info | PostgreSQL | Authenticate you, send billing receipts |
| Bot configs | PostgreSQL | Run your assistants |
| Uploaded documents | PostgreSQL (text) + pgvector (embeddings) | Knowledge base for RAG |
| Conversations | PostgreSQL | Show chat history, train AI optimization |
| Voice call recordings + transcripts | PostgreSQL + object storage | Call log, AI summary |
| Leads / bookings | PostgreSQL | CRM, reservation system |
| Subscription / invoices | Stripe (not us) | Billing |
Everything is encrypted in transit (TLS 1.2+) and at rest (disk-level encryption on the database).
Export your data
- Go to Settings → Privacy → Export my data
- Choose what to include — conversations, leads, bookings, documents, voice calls
- We assemble a ZIP and email you a download link (link expires after 24 hours)
The export contains JSON files per table plus the original uploaded documents.
Delete a single document or conversation
- Documents — Bot detail → Knowledge → trash icon. Removes the source, embeddings, and any indexed chunks immediately.
- Conversations — Conversations view → select → delete. Removes the conversation and its messages.
- Bookings — Reservations view → cancel or delete. A cancelled booking is kept for analytics; a deleted booking is gone.
Delete your account
- Settings → Privacy → Delete account
- Confirm with your password
- Within 30 days, we delete:
- Your user record
- All accounts you own (and everything in them)
- All Stripe customer references (you’ll get the final invoice if applicable)
Backup snapshots are purged on rolling 30-day rotation, so all traces are gone within ~60 days.
How long we keep conversation data
Retention depends on your plan:
| Plan | Conversations | Analytics |
|---|---|---|
| Starter | 30 days | 30 days |
| Pro | 90 days | 90 days |
| Business | 180 days | 180 days |
After the retention window, conversations are deleted automatically. Leads and bookings are kept until you delete them — they’re typically business records you want to keep.
Sub-processors
| Service | Purpose | Location |
|---|---|---|
| Hetzner Cloud | App + DB hosting | Germany / Finland |
| OpenAI | Embeddings + chat completions | EU/US |
| ElevenLabs | Voice synthesis + speech recognition | EU/US |
| Twilio | Phone numbers + voice routing | Global |
| Stripe | Payments | EU/US |
We have data-processing agreements (DPAs) in place with all sub-processors that touch customer data.
Questions
Email privacy@awentail.com for any data-protection request that the self-service tools don’t cover (DPO contact, supervisory authority complaints, copies on physical media).