Privacy Policy

Last Updated: July 10, 2025
  1. Introduction
    We respect your privacy. This Privacy Policy explains how WA‑Links (“we”, “us”, “our”) collects, uses, stores, and shares personal data when you use our WhatsApp-based services, in accordance with:

    • WhatsApp Business Data Processing Terms
    • WhatsApp’s general Privacy Policy
    • Data protection laws (GDPR, CalOPPA, etc.)
  2. Data We Collect & Purposes
    We may collect:
    • Contact Data: phone numbers, names, business info (for messaging)
    • Messaging Data: content of messages sent via WA‑Links
    • Metadata: timestamps, usage logs, device IDs—essential for routing and analytics

    Why we collect it:
    • To enable WhatsApp messages and notifications
    • To store message history and analytics
    • To comply with legal, security, and anti-abuse obligations
  3. Legal Basis & Consent
    You explicitly consent to your data being processed under this policy.

    Our lawful purpose includes contract performance and compliance with WhatsApp’s Business Data Processing Terms.

    Users must be informed and may consent to marketing, analytics, or profiling uses. Consent must be optional, clear, and withdrawable.
  4. Data Processing & WhatsApp Terms
    WA‑Links operates as a Linked/Territorial Controller, and WhatsApp/Meta acts as a Processor under the WhatsApp Business Data Processing Terms.

    We implement technical and organizational safeguards, including encryption and secure hosting, consistent with WhatsApp’s Data Security Terms.

    WhatsApp notifies of data breaches within 72 hours and supports your rights per GDPR and similar laws.
  5. Sharing & Sub-processors
    We may use third-party processors (e.g., CRM, analytics, cloud).

    Sub-processors are contractually required to align with our data protection standards.

    WhatsApp may transfer data to third-country locations per its Data Transfer Addendum.
  6. Data Retention & Deletion
    Conversations are retained according to your selected retention period.

    On termination, personal data is deleted unless:
    • Required to retain by law
    • WhatsApp or Meta requires storage per contract (e.g., audit)
  7. User Rights
    As applicable (GDPR, CalOPPA, etc.), users have the right to:
    • Access, correct, and delete their personal data
    • Withdraw consent
    • Restrict or object to processing
    • Access data portability
    • Lodge a complaint with a supervisory authority

    We commit to addressing all valid requests within applicable legal timeframes.
  8. Cookies & Analytics
    We use cookies and scripts to monitor usage, performance, and diagnostics.

    Users may opt out via cookie preferences.

    Compliance with CalOPPA ensures U.S. users can access and modify their personal information.
  9. Children & Sensitive Data
    Our services are not intended for individuals under 18.

    We do not knowingly collect health, biometric, or special category data without explicit consent.
  10. Security
    We use:
    • Encryption in transit (TLS)
    • Optional end-to-end encryption for message backups
    • Access controls, pseudonymisation, regular audits
    • Incident response plan aligned with WhatsApp’s breach notification process
  11. Third-Party Links & Ads
    WA‑Links doesn’t place ads in WhatsApp; however, WhatsApp may display ads in the "Updates" tab—none access personal message contents, but metadata may be used.

    We may link to external services; once you leave WA‑Links, their privacy policies apply.
  12. Policy Updates
    We reserve the right to update this policy.

    We will notify users and clearly publish new effective dates.
  13. Contact Information
    Have questions or want to exercise your rights?