Hi,

EU based here
You said AnyChat is GDPR compliant, but could you please clarify a few points that are still unanswered?

[1] Where is customer data stored and processed? Is any data stored or accessed outside the EU/EEA, including by your team or any subprocessors? Is any personal data accessed from Ukraine or other non-EU countries?

[2] Do you provide a DPA for EU customers, and can it be reviewed before purchase?

[3] Do you have a public list of subprocessors, including hosting providers, AI providers, analytics tools, support tools, and messaging infrastructure?

[4] If data leaves the EU/EEA, what safeguards do you use, such as SCCs, transfer impact assessments, or other mechanisms?

[5] For AI features, is customer data sent to third-party AI providers, used to train models, or stored for later use? Can AI features be disabled?