Effective Date: 30 August 2024
Last Updated: 29 June 2025

This Privacy & Cookie Policy describes how BBOX AI Limited, a company registered in Malta (company number C 109598) with its registered office at Level 3, Tower Business Centre, Triq IT-Torri, Swatar, Birkirkara, BKR 4013, Malta, (“BBOXAI”, “we”, “our” or “us”) collects, uses, stores, and protects your personal data, including how we use cookies and similar technologies.

This policy applies when you:

• Visit our website: https://b-box.ai

• Use our platform: https://blackbox.business

1. Who We Are

BBOXAI provides enterprise messaging, automation, and data-processing services to business clients. We act as a data controller for data we collect for our own purposes and as a data processor for data we process on behalf of clients.

2. What Personal Data We Collect

You Provide:

• Name, company name, job title

• Email address, phone number

• Messages or requests via forms or email

Automatically Collected:

• IP address, browser type, device, session logs

• Page visits, duration, interaction data

• Cookies and similar technologies

From Third Parties:

• Public business listings and directories (e.g., LinkedIn)

• Events or marketing partners

• Client API integrations or referrals

3. How We Use Personal Data

We use your data to:

• Provide and maintain our website and platform

• Enable delivery of messages through telecom partners

• Validate phone numbers for deliverability

• Handle opt-out preferences and subscription controls

• Respond to inquiries and provide support

• Monitor service performance and prevent abuse

• Fulfil legal, regulatory and contractual obligations

4. Legal Bases for Processing

We process your personal data based on:

• Contractual necessity – to provide our services

• Legitimate interests – e.g., service optimization, B2B marketing

• Consent – for cookies and newsletters

• Legal obligations – including telecom recordkeeping

You may withdraw your consent at any time by contacting info@b-box.ai.

5. Number Validation & Data Quality

To ensure message deliverability, we may process contact data using automated validation tools. This includes checking whether numbers are correctly formatted or reachable. The legal basis is our legitimate interest in maintaining a high-quality communication service.

6. Opt-Out and Subscription Management

Our platform supports unsubscribe mechanisms via links or reply keywords. Opt-out events are handled within 24 hours and may trigger callback events to clients. Opt-out preferences are stored only as long as needed to prevent further messaging.

7. APIs and Callbacks

Our APIs allow clients to:

• Send and receive messages

• Manage delivery reports and opt-outs

• Validate phone numbers

Clients are responsible for securely configuring and protecting API credentials and callback URLs.

8. Data Sharing and International Transfers

We may share personal data with:

• Hosting and cloud infrastructure providers

• Telecom carriers and message aggregators

• CRM, analytics and automation platforms

• Legal or regulatory authorities (where required)

If we transfer data outside the EEA, we ensure protection using Standard Contractual Clauses (SCCs) or other GDPR-compliant mechanisms.

9. Data Retention

We retain personal data only as long as necessary:

10. Your Rights

Under the GDPR, you have the right to:

• Access your personal data

• Correct or delete your personal data

• Object to or restrict processing

• Withdraw consent at any time

• Request data portability

To exercise these rights, contact: info@b-box.ai
You may also contact the IDPC Malta at https://idpc.org.mt

11. Cookie Usage

Cookies are small files stored on your device to improve functionality and performance. We use:

a) Types of Cookies:

• Essential cookies – Required for platform login, security, and core functions

• Functional cookies – Store user settings and preferences

• Analytics cookies – Track website usage (e.g., via Google Analytics)

• Marketing cookies – Track interaction with emails and ads (e.g., LinkedIn)

b) Third-Party Cookies:

Some cookies are set by services such as:

• Google Analytics

• LinkedIn

• CRM or email marketing providers

c) Cookie Management:

You can control or delete cookies via browser settings:

• Chrome

• Firefox

• Safari

• Edge

You can also manage preferences using our cookie banner if enabled.

12. Security

We use industry-standard security measures:

• TLS encryption for data in transit

• Secure access controls and IP restrictions

• Internal logging and regular vulnerability scans

Despite these efforts, no system is immune. We will notify you of any breach as required by law.

13. Support and Communication

Support is available during standard business hours (CET).
We may contact you about:

• Your account or service use

• Responses to inquiries

• Newsletters or updates (if opted in)

To opt out, click unsubscribe links or email us.

14. Policy Changes

We may revise this document periodically. The updated version will be published with a new “Last Updated” date at the top of this page.

15. Contact Information

BBOX AI Limited
Company Number: C 109598
Address:
Level 3, Tower Business Centre
Triq IT-Torri, Swatar
Birkirkara, BKR 4013
Malta

Email: privacy@b-box.ai | info@b-box.ai

16. Disclaimer

The content on our website (b-box.ai) and platform (blackbox.business) is provided for general information purposes only. It is not legal, financial, or professional advice and should not be relied upon as such.

While BBOXAI takes care to ensure accuracy, we do not guarantee the completeness or reliability of any information on the site, platform, or sent via email. We accept no liability for:

• Direct or indirect loss arising from use or reliance

• Errors or omissions in content

• Damage caused by viruses in email transmissions

Users are encouraged to seek professional advice before acting on any content or communication from BBOXAI.