Back to home

Privacy Policy

Last updated: March 2026

Authoritative Version

This English text is a convenience translation. In case of any conflict, ambiguity, or inconsistency between this English version and the Arabic version, the Arabic version shall prevail and is the legally binding document. The Arabic version is available at /ar/privacy.

At WhaoApi we are committed to protecting your privacy and personal data. This Privacy Policy describes how we collect, use, and protect your information when you use our WhatsApp Business management platform.

1. Information We Collect

  • Account information: when you sign up we collect your company name, contact name, email, and phone number.
  • WhatsApp Business data: we access your WhatsApp Business API account data — including messages, contacts, and templates — in order to provide the platform.
  • Usage data: we collect information about how you use the platform such as pages visited, actions taken, and timestamps.
  • Technical information: IP address, browser type, operating system, and device identifiers.

2. How We Use Your Information

  • Operate the platform and deliver its services including conversation management and auto-replies.
  • Improve and develop the platform and user experience.
  • Send service-related notifications and important updates.
  • Protect the platform and prevent unauthorized use.
  • Comply with legal and regulatory requirements.

3. Data Sharing

  • We do not sell your personal data to any third party.
  • We may share your data with trusted service providers (such as cloud hosting and email services) who help us operate the platform.
  • We may disclose your data when required by law or by a court order.
  • We use Meta's WhatsApp Cloud API to process messages in accordance with Meta's policies.

4. Data Security

  • We use AES-256 encryption to protect sensitive data such as access tokens.
  • All connections are encrypted over HTTPS/TLS.
  • We apply strict access controls and continuous system monitoring.
  • We keep encrypted backups to ensure service continuity.

5. Your Rights

  • Access: you may request a copy of your personal data held by us.
  • Correction: you may request correction of inaccurate data.
  • Deletion: you may request deletion of your personal data, subject to our legal obligations.
  • Objection: you may object to certain types of data processing.
  • To exercise any of these rights, contact us by email at the address below.

6. Cookies

  • We use strictly necessary cookies to operate the platform and remember your preferences (such as dark/light theme).
  • We use JWT tokens for authentication and to maintain your login session.
  • We do not use cookies for advertising or third-party tracking.

7. Data Retention

  • We retain your account data as long as your account is active or as needed to provide the service.
  • Conversation history remains available according to your subscription plan.
  • When you close your account, we delete your data within 30 days, except where retention is required by law.

8. Changes to This Policy

  • We may update this Privacy Policy from time to time. We will notify you of any material changes by email or via an in-platform notice.
  • Your continued use of the platform after changes constitutes acceptance of the updated policy.

9. Contact Us

  • If you have questions about this Privacy Policy or our data practices:
  • Email: info@whao.tech
  • Website: whaoapi.com