Terms of Use – PAbot.dk

Terms of Use for PAbot.dk

Last updated: July 2025

1. Introduction

These Terms of Use (“Terms”) govern your access to and use of the PAbot services (“PAbot”, “we”, “us”, “our”), operated by Zosani Co., Ltd., a company incorporated in the Kingdom of Thailand, via pabot.dk and related domains and interfaces (the “Services”).

By creating an account, connecting any channels or otherwise using the Services, you confirm that you are acting on behalf of a business and have authority to bind that business to these Terms, and that you agree to be bound by these Terms. If you do not accept these Terms, you must not use the Services.

2. Service Description

PAbot provides AI-powered communication and automation solutions for business users, including but not limited to:

Chatbots and AI assistants for websites, landing pages and booking flows.
Message and comment handling on Facebook Pages and Instagram Business accounts.
Inbox automation, templated replies and routing of messages to staff.
Integration with third-party systems and APIs configured by you (e.g. Meta, email providers, CRM or booking systems).
Analytics and reporting relating to conversations, leads and performance, where available.

The exact scope of functionality depends on your subscription plan and the modules enabled for your account. We may improve, change or add features from time to time in accordance with Section 19.

3. Account Registration & Eligibility

Business Use Only. The Services are provided solely for business (B2B) use and not for consumers.
Registration. You must register an account with a valid email address and password to use the Services.
Accurate Information. You agree to provide accurate and complete information and to keep it updated (e.g. billing details, company information, contact persons).
Access & Credentials. You are responsible for keeping your login credentials confidential and for any activity that occurs under your account.
Security Incidents. You must notify us immediately at hallo@pabot.dk if you suspect unauthorised access or a security incident related to your account or connected channels.

4. Acceptable Use & User Responsibilities

You are solely responsible for all content, prompts, configurations and data that you or your users send, receive or process via the Services.
You must ensure that your use of PAbot complies with all applicable laws and regulations, including (as relevant) the Thai Personal Data Protection Act B.E. 2562 (PDPA), the EU General Data Protection Regulation (GDPR), marketing and consumer protection laws, and intellectual property laws.
You may not use the Services for:
- Sending spam, unsolicited commercial communications or bulk messages in violation of applicable law;
- Harassment, discrimination, defamation, hate speech or other harmful activities;
- Unlawful tracking, profiling or data collection without a legal basis;
- Any activity that attempts to bypass or interfere with security, rate limits or access controls of PAbot or any third-party provider.
You are responsible for ensuring that you have a valid legal basis for processing personal data through PAbot (e.g. performance of a contract, legitimate interest, consent).

5. Data Protection & Privacy – General

PAbot processes personal data in accordance with our Privacy & Security Policy, which forms an integral part of these Terms. For customers and data subjects in Thailand, we comply with the Thai PDPA. For customers and end users in the European Economic Area (EEA) or where GDPR applies extraterritorially, we aim to align our processing with GDPR principles and requirements where reasonably applicable in a B2B SaaS context.

You are responsible for providing your own privacy notices to your customers and users and for fulfilling your obligations as data controller under applicable data protection law.
You must ensure that the content you process through PAbot does not violate the privacy or data protection rights of third parties.
We may update our Privacy & Security Policy from time to time to reflect changes in law, best practices or our Services.

6. Data Processing Roles, Instructions & Sub-Processors

Controller / Processor Roles.
- For personal data relating to your own customers, prospects and end users, you act as the data controller.
- For such data, PAbot (Zosani Co., Ltd.) acts as a data processor (or similar role under PDPA) and processes the data on your documented instructions as described in these Terms and in our Privacy & Security Policy.
- For personal data relating to your administrative users (e.g. billing contacts, logins), PAbot may act as an independent controller for limited purposes such as account management, billing and platform security.
Customer Instructions.
- By using the Services, you instruct us to process personal data as necessary to provide the Services you have activated, including storage, transmission, automated analysis and display in dashboards.
- You may provide additional documented instructions (e.g. in writing) that are technically feasible and compliant with applicable law. If we reasonably believe an instruction violates applicable law, we may refuse to follow it and will inform you if appropriate.
Sub-Processors.
- We may engage sub-processors (e.g. cloud hosting providers, email services, AI infrastructure, monitoring tools) to process personal data on our behalf.
- Sub-processors are bound by contractual obligations to protect personal data with at least the same level of protection as described in these Terms.
- Where legally required, we can provide an overview of key sub-processors upon request.
Assistance & Data Subject Requests.
- Where feasible and taking into account the nature of the Services, we will provide reasonable assistance to help you respond to data subject requests (e.g. access, correction, deletion) where we are a processor and you are the controller.
- We may direct data subjects who contact us directly to you as the controller, and cooperate in good faith to resolve the request.

7. Data Security – Technical & Organisational Measures

We implement commercially reasonable technical and organisational measures designed to protect personal data and other sensitive information processed through the Services against unauthorised or unlawful processing and accidental loss, destruction or damage. These measures may include:

Encryption in Transit: Use of HTTPS (TLS) for external communication with the platform and APIs, where applicable.
Access Control: Role-based access control (RBAC) for administrative functions; access to production systems restricted to authorised personnel with a business need-to-know.
Password Protection: Storage of user passwords using industry-standard hashing mechanisms; no storage of plaintext passwords.
Segregation of Environments: Logical separation between production and test/development environments, where applicable.
Logging & Monitoring: Logging of relevant system events to support security monitoring, troubleshooting and incident analysis.
Backups & Continuity: Regular backups of key data and configurations, with procedures for restore and continuity where commercially reasonable.
Least Privilege: Principle of least privilege applied to user permissions, access keys and administrative accounts.
Change Management: Reasonable procedures for testing and deploying changes to the platform to reduce the risk of downtime or security regressions.
Employee Controls: Internal guidelines for staff handling of customer data and access rights, including confidentiality obligations.
Vulnerability Management: Use of updates, patches and security improvements on a recurring basis to mitigate known vulnerabilities where reasonably practicable.

No security measures can be guaranteed to be 100% effective, but we endeavour to maintain a level of security appropriate to the risks associated with the Services.

8. Security Incidents & Data Breach Notification

A “Security Incident” means a breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data processed on your behalf.
In the event of a Security Incident affecting data where we act as processor, we will:
- Investigate the incident and assess its scope and impact;
- Use commercially reasonable efforts to contain and remediate the incident;
- Inform you without undue delay after becoming aware of a confirmed incident that is likely to pose a risk to data subjects’ rights; and
- Provide you with information reasonably available to help you meet any direct legal obligations you may have to notify authorities or data subjects.
You are responsible for fulfilling any legal obligations to notify supervisory authorities or data subjects, as the controller, unless otherwise agreed in writing.

9. Data Retention & Deletion

We retain data processed on your behalf only for as long as necessary to provide the Services, fulfil contractual obligations or comply with applicable law.
Upon termination or expiry of the agreement, we will, within a reasonable period, anonymise or delete personal data processed on your behalf, unless we are legally required or permitted to retain it longer (e.g. for accounting, fraud prevention or legal claims).
You are responsible for exporting any data you wish to keep before the end of the retention period. After deletion or anonymisation, data cannot be restored.

10. Third-Party Services & APIs

The Services rely on integrations with third-party platforms (e.g. Meta, email providers, CRM tools) over which we have no control.

Your use of such third-party services is governed by their own terms and privacy policies.
We are not responsible for availability, changes, limitations or failures of any third-party services or APIs.
If a third-party provider restricts or terminates your access, this may impact the Services, and we are not liable for related limitations or downtime.

11. Intellectual Property

All intellectual property rights in and to the Services (including software, algorithms, designs, templates, documentation, branding and know-how) are and remain the exclusive property of Zosani Co., Ltd. or its licensors.

You receive a limited, non-exclusive, non-transferable, revocable licence to use the Services during the active subscription term for your internal business purposes.
You may not copy, modify, translate, reverse-engineer, decompile or otherwise attempt to derive source code from any part of the Services, except to the extent explicitly permitted by mandatory law.
Nothing in these Terms shall be interpreted as transferring ownership of any intellectual property rights to you.

12. Subscription Term, 12-Month Commitment & Automatic Renewal

Initial Term. Unless otherwise agreed in writing, the subscription starts on the date the Services are first made available to you (the “Start Date”) and runs for an initial fixed term of twelve (12) months (“Initial Term”).
Binding Period. During the Initial Term you are committed for the full 12 months and cannot terminate for convenience (ordinary termination) before the end of the Initial Term.
Automatic Renewal. After the Initial Term, the subscription automatically renews for successive periods of twelve (12) months each (“Renewal Term”), unless properly terminated in accordance with these Terms.
Notice of Non-Renewal – Month 11 Rule. If you do not wish to renew for a new 12-month period, you must give written notice of non-renewal no later than the end of month eleven (11) of the current term. If such notice is not received in time, the subscription automatically renews for another 12-month Renewal Term.
Form of Notice. Notices of non-renewal must be sent by email to hallo@pabot.dk from your registered account email or another formally registered contact.
Termination for Cause. Either party may terminate the agreement with immediate effect if the other party materially breaches these Terms and fails to remedy the breach within thirty (30) days of receiving written notice describing the breach.

13. Fees, Invoicing & Payment

Fees. You agree to pay the fees for the chosen subscription plan and any additional services as set out in your order, proposal or online plan selection.
Billing. Unless otherwise agreed, fees are billed in advance per month, quarter or year. Invoices may be issued in THB, EUR or another agreed currency, plus applicable VAT or other taxes.
Payment Terms. Invoices are payable within the payment term stated on the invoice. Late payments may lead to interest and collection costs in accordance with applicable law.
Suspension. We reserve the right to suspend or limit access to the Services in case of overdue amounts, after reasonable notice, until payments are brought up to date.
No Refunds. Fees already paid for the current term are non-refundable, except where required by law or explicitly agreed in writing.

14. Service Levels, Availability & Support

We aim to provide a stable and reliable platform, but unless a separate Service Level Agreement (SLA) has been concluded, no specific uptime guarantee is given.
We may perform planned maintenance and updates, typically scheduled to minimise impact. Emergency maintenance may be carried out without prior notice if necessary for security or stability.
Support channels and response times depend on your subscription plan and may include email, web forms or in-app chat.

15. Confidentiality

Each party must keep confidential any non-public information received from the other party that is marked as confidential or should reasonably be understood as confidential (“Confidential Information”).
Confidential Information may only be used for purposes directly related to these Terms and the provision or use of the Services.
Confidential Information may only be disclosed to employees, contractors or advisors who have a need to know and are bound by similar confidentiality obligations.
Confidentiality obligations survive termination or expiry of the agreement.

16. Warranties & Disclaimers

The Services are provided “as is” and “as available”. To the maximum extent permitted by applicable law, we disclaim all warranties, whether express, implied or statutory, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement.

We do not warrant that the Services will be uninterrupted, error-free, or completely secure.
We do not guarantee that AI-generated content will always be correct, lawful or appropriate in all contexts. You remain responsible for reviewing and supervising critical AI outputs.

17. Limitation of Liability

To the maximum extent permitted by applicable law, Zosani Co., Ltd. and its directors, officers, employees and agents shall not be liable for any indirect, incidental, special, consequential or punitive damages, including but not limited to loss of profit, revenue, goodwill, data or business interruption, arising out of or in connection with the use or inability to use the Services, even if advised of the possibility of such damages.

Our total aggregate liability for all claims arising out of or related to the Services and these Terms, whether in contract, tort or otherwise, shall be limited to the total amount you have paid to us for the Services in the twelve (12) months immediately preceding the event giving rise to the claim.

18. Indemnification

You agree to indemnify, defend and hold harmless Zosani Co., Ltd., its affiliates and their respective directors, officers and employees from and against any claims, damages, losses, liabilities, costs and expenses (including reasonable legal fees) arising out of or related to:

Your breach of these Terms or any applicable law or regulation;
Your misuse of the Services or any content processed through your account;
Any claim that your content or use of the Services infringes the rights of a third party.

19. Suspension & Termination

We may temporarily suspend or limit access to the Services if:
- Necessary for security, maintenance or system integrity; or
- You are in material breach of these Terms (including non-payment); or
- Your use of the Services causes risk or harm to the platform, other customers or third parties.
We may terminate the agreement with immediate effect in case of serious or repeated breaches by you.
Upon termination or expiry, your right to access the Services ceases. Data will be handled as described in Sections 8 and 9.

20. Changes to Services & Terms

We may update or modify the Services, for example to add features, improve performance or comply with changes in third-party APIs or legal requirements.
We may revise these Terms from time to time. Material changes will be notified in advance, for example by email or by notice on pabot.dk.
Your continued use of the Services after the effective date of updated Terms constitutes your acceptance of the changes.

21. Governing Law & Jurisdiction

These Terms and any dispute or claim arising out of or in connection with them or the use of the Services shall be governed by and construed in accordance with the laws of the Kingdom of Thailand, without regard to conflict of law principles.

Any disputes that cannot be resolved amicably shall be submitted to the competent courts of Thailand.

22. Miscellaneous

Force Majeure. Neither party shall be liable for failure or delay in performance caused by events beyond its reasonable control, such as natural disasters, war, terrorism, labour disputes, governmental actions, power failures or failures of third-party networks or services.
Assignment. You may not assign or transfer your rights or obligations under these Terms without our prior written consent. We may assign our rights and obligations to an affiliate or in connection with a merger, acquisition or sale of assets.
Severability. If any provision of these Terms is held invalid or unenforceable, the remaining provisions shall remain in full force and effect.
Entire Agreement. These Terms, together with any order forms, data processing provisions and our Privacy & Security Policy, constitute the entire agreement between you and us regarding the Services and supersede any prior agreements or understandings.

23. Contact

If you have any questions about these Terms, data protection or security in relation to PAbot, please contact us at hallo@pabot.dk.