Overcap
Help center

How can we help?

Getting started
Install widget in 60 secondsCreate organization and teamImport historical conversationsConfigure greeting
Channels
Connect TelegramWhatsApp Cloud APIInstagram DirectSMTP / IMAP for email
Analytics
Reading heatmapsRage clicks and alertsPage snapshotsSegmentation and filters
Billing
Trial and Pro upgradeChange planRefundsInvoices and corporate billing
JUMP TOAPIChangelogRoadmapSecurityPrivacyTermsDPA
FOR DEVELOPERS
API & Webhooks

A REST API with Bearer tokens issued in Settings → API. All responses are JSON, rate-limited to 60 req/s per key. Webhooks subscribe to events such as inbox.message.created, conversation.assigned, deal.stage.changed.

SEND A MESSAGE
curl https://api.overcap.ru/v1/messages \
  -H "Authorization: Bearer $OC_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "conversationId": "conv_42",
    "text": "Thanks for reaching out!"
  }'
SUBSCRIBE WEBHOOK
curl https://api.overcap.ru/v1/webhooks \
  -H "Authorization: Bearer $OC_TOKEN" \
  -d '{
    "url":   "https://yourapp.com/oc-hook",
    "event": "conversation.assigned"
  }'
REST · v1Bearer authJSON60 RPSidempotency-key
WHAT'S NEW
Changelog
v3.7.0
2026-04-28
  • CRM analytics: funnel, conversion, channel revenue, top leads.
  • Drag-and-drop file upload directly in the inbox.
  • Inline notes and tasks inside the contact card.
v3.6.2
2026-03-15
  • Bulk actions: assign, tag, archive in one click.
  • Saved views and shared filters for the whole team.
  • GDPR endpoints: subject access and deletion on request.
v3.5.0
2026-02-04
  • Realtime presence: heartbeat and automatic offline on close.
  • AI auto-routing by inbound topic.
  • A/B greeting variants in the widget.
WHAT'S NEXT
Roadmap

Our public quarterly plan. We publish priorities here so you can see where the product is going.

Q2 2026
In progress
  • Native iOS / Android apps
  • Voice messages in widget
  • Tables view for CRM deals
Q3 2026
Planned
  • Self-hosted enterprise edition
  • Salesforce / HubSpot two-way sync
  • Multi-brand inboxes
Q4 2026
Exploring
  • On-prem AI co-pilot
  • Voice / video calling
  • Kiosk mode for retail
TRUST
Security

We build Overcap as if we were storing our own support data. Encryption at rest (AES-256) and in transit (TLS 1.3), servers in the EU, access only to MFA-protected admins.

Encryption
AES-256 at rest, TLS 1.3 in transit. Keys rotated every 90 days.
Data isolation
Row-level security via Supabase. Each tenant sees only its rows.
Access
MFA mandatory for all staff. SSO on Business plans.
Backups
Snapshots every 6 hours, 30-day retention. Point-in-time recovery.
Audit
Every operator action is logged with IP and user-agent.
Pen-tests
Yearly third-party security audit. Bug bounty: support@overcap.ru.
GDPREU-only dataSOC 2 (in progress)ISO 27001 (planned)
LEGAL
Privacy policy

Last updated: April 1, 2026.

What we collect
Visitor data on your site (messages, click events, names/emails if you collect them), operator data (email, profile, action logs) and plan metadata (payments, usage of limits).
Why we process it
To deliver the service: route conversations to operators, compute analytics, issue invoices, protect the service from abuse. We do not sell data to third parties and never use it for ads.
Where it lives
Our database (Supabase) and email service sit on EU servers. Backups are encrypted and stay inside the EU. For Russian users 152-FZ applies.
Retention
Active conversations — for as long as you are a customer. Within 30 days of account closure all data is deleted. Security logs are kept for 12 months.
Your rights
You can request export of all your data, rectification, deletion, and portability. These are GDPR rights (Art. 15–20). Email support@overcap.ru — we reply within 30 days.
LEGAL
Terms of service

Last updated: April 1, 2026.

The service
Overcap provides cloud omnichannel chat and analytics. We target 99.9% uptime; an SLA document is available on corporate plans.
Plans and billing
Subscriptions are billed monthly or annually per the price list at /pricing. Card or invoice for corporates. VAT is added per the buyer's country rules.
Refunds
Refunds are processed within 3 calendar days of the subscription payment date. To request a refund, contact support@overcap.ru with your payment reference number.
Acceptable use
You may not use Overcap for spam, phishing, illegal content or violating third-party rights. We may suspend accounts for violations.
Liability
The service is provided as-is. Our liability is capped at fees paid over the prior 12 months. These terms do not limit liability for wilful misconduct or gross negligence.
GDPR ART. 28
Data Processing Agreement (DPA)

When you use Overcap, we act as a data processor and you are the controller. This agreement records our obligations under GDPR Art. 28.

Roles
You are the Controller. We (IE Spiridonov D. V.) are the Processor. Access holders under NDA.
Purpose
Processing is limited to what's required to deliver the service — no profiling, no ads.
Subprocessors
Supabase (DB, EU), Sendersy / Postal (outbound email, EU), Yandex Metrika (optional, consent-only). Full list at support@overcap.ru.
Security
TOMs: AES-256, TLS 1.3, MFA, RBAC, audit log, yearly pen-test.
Data return
On request — export within 14 days. Deletion at contract end — within 30 days.
Notification
Any security incident — within 72 hours.
Request a counter-signed DPA
Still stuck?
Drop us a line — we reply within an hour during business hours.
Contact us