SRSite Rep

Site Rep Privacy and Data Handling

These notes describe the current Site Rep product behavior and should not be read as a compliance certification.

What Site Rep collects

How Site Rep uses this data

Customer controls

Visitor-facing behavior

Site Rep should make the data boundary visible in the answer flow. If a visitor asks a question that the approved

sources do not prove, the assistant should ask for follow-up instead of inventing a policy, price, timeline, or support answer.

If the visitor asks for human follow-up, the lead form collects only the details needed for the customer team to reply.

Operational data

The service keeps setup state, install checks, source health, answer feedback, and team follow-up items so a customer

can see what worked and what needs repair. Those records are product operations data, not public search content.

Sub-processors

Site Rep relies on these providers to run the service. They process customer and visitor data only to deliver Site Rep:

What the widget stores on a visitor's device

The chat widget sets no cookies and no persistent local storage. It uses session-only storage for a random session id, which the browser clears when the tab closes. Visitor IP addresses are used only transiently in memory for rate limiting and abuse prevention; they are not stored with conversations or leads.

Current limits

Site Rep does not currently include SOC 2, GDPR, HIPAA, zero-retention, or no-training-on-data certification. Customers who need those commitments should request a written review before buying.