Privacy Policy

Last updated: June 9, 2026

Overview

NoBusyWork ("we", "our", "us") operates the nobusywork.ai website and the NoBusyWork AI employee platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

Information We Collect

We may collect the following types of information:

  • Contact form submissions - name, email address, phone number, business name, service interest, SMS opt-in preference, and message content when you submit our contact form.
  • Account information - email address, name, and authentication credentials when you create an account.
  • Usage analytics - anonymous, aggregated website usage data collected via Plausible Analytics (no cookies, no personal data, GDPR-compliant by default).
  • Business data - information you provide to configure your AI employee, including knowledge base content, business hours, and service details.

How We Use Your Information

We use the information we collect to:

  • Respond to your inquiries and contact form submissions
  • Provide and maintain our AI employee services
  • Send transactional emails (account confirmations, service updates)
  • Improve our website and services based on aggregated usage patterns
  • Comply with legal obligations and enforce our terms of service

SMS Communications & Consent

If you provide a phone number and expressly opt in, we may send customer-care text messages related to your request, appointments, onboarding, or service updates. Message frequency varies. Message and data rates may apply. Reply HELP for help or STOP to cancel.

Mobile information, SMS opt-in data, and texting consent will not be shared with third parties or affiliates for marketing or promotional purposes. We share this data only with service providers that help us deliver the messaging service, and only for that operational purpose.

Data Storage & Security

Your data is stored on secure servers located in the United States. We use industry-standard encryption (TLS 1.3 in transit, AES-256 at rest) to protect your information. Access to personal data is restricted to authorized personnel only.

We Do Not Sell Your Data

We will never sell, rent, or trade your personal information to third parties for marketing purposes. Period.

Cookies & Tracking

We use Plausible Analytics, a privacy-friendly analytics tool that does not use cookies, does not collect personal data, and is fully GDPR, CCPA, and PECR compliant.

We do use limited first-party cookies and similar storage for essential product behavior. This includes a locale preference cookie so public pages and translations render in your selected language, plus strictly necessary authentication cookies or session tokens when you are signed in. These are not used for behavioral advertising or cross-site tracking.

Our public cookie notice explains this usage at the time of your visit and links back to this policy for more detail.

Third-Party Services

We may share information with the following third-party service providers, solely for the purpose of delivering our services:

  • Cloud hosting - for infrastructure and data storage
  • Email delivery - for transactional emails (contact form confirmations, account notifications)
  • AI/LLM providers - for processing conversations (business data is sent to LLM APIs; no personal customer data is retained by LLM providers beyond the API call)
  • Payment processor - for billing (we do not store credit card information)

GDPR & International Users

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR), including the right to access, correct, delete, and port your personal data. Because we use Plausible Analytics (no cookies, no personal data), our website is GDPR-compliant without requiring cookie consent.

To exercise your data rights, contact us at [email protected].

Data Deletion

You may request deletion of your personal data at any time by emailing [email protected]. We will process your request within 30 days. Upon deletion, your account and all associated data (including knowledge base content, conversation history, and settings) will be permanently removed.

AI Training & Scraping Prevention

We actively block AI training crawlers (including GPTBot, Google-Extended, CCBot, anthropic-ai, and others) from accessing our website content. Our content is not authorized for use in training machine learning models. We enforce this through:

  • robots.txt - disallows known AI training crawlers site-wide
  • ai.txt - declares our AI usage policy at site root
  • HTTP headers - X-Robots-Tag: noai, noimageai on all pages
  • Rate limiting - aggressive rate limits for unidentified bots at the reverse proxy level

Customer data (knowledge bases, conversations, business configurations) is stored behind authentication and is never accessible to any web crawler. Your business data is never used to train AI models; it is processed only to deliver our services and is not retained by LLM providers beyond the API call.

Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date above.

Contact Us

If you have questions about this Privacy Policy, please contact us at [email protected].