How bont handles your data
A plain-language summary of where bont stores your data, what we encrypt, who can access it, and what we promise.
Where your data lives
- Customer data (contacts, deals, activities) — stored in bont's primary database, encrypted at rest and in transit.
- Connected CRM — your CRM remains the source of truth. bont syncs in both directions but doesn't replace the CRM's storage.
- Email and calendar — your personal mailbox stays where it is (Google Workspace, Microsoft 365). bont reads via OAuth and caches what's needed to render the inbox / calendar inside the app.
- Backups — encrypted backups are retained on a rolling window for disaster recovery.
What we encrypt
- In transit — TLS 1.2+ end-to-end.
- At rest — application database, file storage and backups.
- Secrets — API keys, OAuth tokens and credentials are stored in a managed secrets service, not the application database.
Who can access it
- Your workspace — only users invited to the workspace, scoped by role.
- bont staff — only while the Allow bont support to access my account toggle on your profile is on, and only to resolve an open support case.
- Sub-processors — bont uses a small list of cloud and operations sub-processors (hosting, monitoring, billing). The current list is published at trust.bontsos.com.
What we promise
- We only use European-headquartered data sub-processors. The full supply chain stays inside the EU / EFTA.
- We do not train AI models on your customer data.
- We do not sell or share your data with third parties for marketing.
- You can export everything you put into bont and request deletion at any time. See Requesting a data export and Requesting account deletion.
Compliance
bont is GDPR-aligned. Detailed terms, sub-processor lists and DPAs are available — email privacy@bont.ai.