Back to Home

Privacy Policy

Last Updated: December 3, 2025

At App-ening, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our WhatsApp Business Platform service.

Please read this Privacy Policy carefully. By using our Service, you consent to the data practices described in this policy.

1. Information We Collect

1.1 Information You Provide

We collect information you directly provide to us, including:

  • Account Information: Name, email address, phone number, company name, and password when you create an account
  • Billing Information: Payment method details, billing address, and transaction history (payment processing is handled by Razorpay)
  • Business Information: Company details, WhatsApp Business account information, and business verification documents
  • Contact Data: Information about your customers/contacts that you upload or input into our system
  • Message Content: WhatsApp messages, templates, and media you send through our platform
  • Support Communications: Information you provide when contacting our support team

1.2 Information Collected Automatically

When you use our Service, we automatically collect:

  • Usage Data: Features used, actions taken, timestamps, and session duration
  • Device Information: Browser type, operating system, device type, and unique device identifiers
  • Log Data: IP address, access times, pages viewed, and referring URL
  • Cookies and Tracking: See Section 6 for details on cookies

1.3 Information from Third Parties

  • WhatsApp/Meta: Message delivery status, read receipts, and conversation data via the WhatsApp Business API
  • Payment Processors: Transaction confirmation and billing information from Razorpay
  • Analytics Providers: Aggregated usage analytics

2. How We Use Your Information

We use the information we collect to:

Purpose Legal Basis
Provide and maintain our Service Contract performance
Process payments and billing Contract performance
Send transactional emails (receipts, updates) Contract performance
Provide customer support Contract performance
Improve and personalize our Service Legitimate interest
Send marketing communications (with consent) Consent
Detect and prevent fraud Legitimate interest
Comply with legal obligations Legal requirement

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We share data with third-party vendors who assist in providing our Service:

  • WhatsApp/Meta: To send and receive messages via the WhatsApp Business API
  • Razorpay: To process payments
  • Cloud Hosting (AWS): To host and store data
  • Analytics Services: To understand usage patterns

3.2 Legal Requirements

We may disclose information if required by law or in response to valid legal requests from public authorities.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

3.4 With Your Consent

We may share information for other purposes with your explicit consent.

4. Data Retention

We retain your information for as long as necessary to:

  • Provide our Service to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

Specific retention periods:

  • Account Data: Until account deletion + 30 days
  • Message Content: 90 days (or as required by WhatsApp policies)
  • Billing Records: 7 years (legal requirement)
  • Usage Logs: 12 months

5. Data Security

We implement appropriate technical and organizational security measures:

  • Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Role-based access control and multi-factor authentication
  • Infrastructure: Hosted on AWS with enterprise-grade security
  • Regular Audits: Security assessments and vulnerability testing
  • Employee Training: Security awareness training for all staff

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Cookies and Tracking

6.1 Types of Cookies We Use

  • Essential Cookies: Required for the Service to function (authentication, security)
  • Analytics Cookies: Help us understand how users interact with our Service
  • Preference Cookies: Remember your settings and preferences

6.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect Service functionality.

7. Your Rights

Depending on your location, you may have the following rights:

7.1 Access and Portability

You can request a copy of your personal data in a machine-readable format.

7.2 Correction

You can request correction of inaccurate personal data.

7.3 Deletion

You can request deletion of your personal data, subject to legal retention requirements.

7.4 Objection and Restriction

You can object to processing based on legitimate interests or request restriction of processing.

7.5 Withdraw Consent

Where processing is based on consent, you can withdraw consent at any time.

7.6 Exercising Your Rights

To exercise these rights, contact us at privacy@app-ening.com. We will respond within 30 days.

8. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) with service providers
  • Data processing agreements with all vendors
  • Compliance with applicable data protection laws

9. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us.

10. GDPR Compliance (EU Users)

For users in the European Economic Area (EEA):

  • We process data based on the legal bases outlined in Section 2
  • You have all rights under GDPR as described in Section 7
  • You have the right to lodge a complaint with your local data protection authority

11. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt out of sale (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification for significant changes

13. Contact Us

For questions about this Privacy Policy or our data practices: