Uau! Emoji of happy man Mediu sandbox complet pentru dezvoltatori — gratuit pentru totdeauna! Înregistrați-vă acum
Privacy Policy

Privacy Policy Whapi.Cloud

PRIVACY POLICY

Last Updated: 12/17/2024

Our privacy policy governs the ways in which we collect, use, maintain, and disclose information collected from users of our website, application, or other interactions with us. Please note that this privacy policy may be updated periodically. Any changes made to this privacy policy become effective 30 days after the updated policy is posted, as indicated by the revised date at the top of this page. We encourage you to review our privacy policy regularly to stay informed about how we handle your information and what you can do to safeguard your privacy.

Collection of Information

Information You Provide to Us

We collect information that you willingly provide to us. This includes information you provide when you participate in our services' interactive features, fill out a form, request customer support, provide any contact or identification details, or communicate with us in any other manner. The information we collect may include your name, email address, postal address, credit card details, and other contact or identification information that you decide to provide.

Automatically Collected Information

When you access or use our services, we automatically gather information about you:

  • Log Information: We record details about your use of our services, including the type of browser you use, access times, pages viewed, your IP address, and the webpage you were on before navigating to our services.

  • Device Information: We gather information about the device you use to access our services, including details about the device’s model and operating system.

  • Information Gathered by Cookies and Other Tracking Technologies: We use different technologies to collect information, including using cookies on your computer or device. Cookies are small data files that are stored on your hard drive or device memory to help us improve our services and your user experience, identify popular areas and features of our services, and track user visits. We may also gather information using web beacons (also referred to as 'tracking pixels'). Web beacons are electronic images that may be used in our services or emails to track visits and understand usage and campaign effectiveness.

Information Collected From Other Sources

To provide you with access to our Service, or to enhance our service quality, we may combine information gathered from other sources (for instance, a third-party service that you have authorized or used to sign in) with the information we collect through our services.

Use of Information

We utilize the information about you for multiple purposes, including to:

  • Deliver, maintain, and enhance our services;

  • Provide requested services, process transactions, and send relevant information;

  • Deliver technical notices, updates, security alerts, as well as support and administrative messages;

  • Respond to your comments, inquiries, and requests, and provide customer service;

  • Communicate with you about news and updates related to our service;

  • Monitor and analyze usage trends and activities in connection with our services;

  • Personalize and enhance our services.

By accessing and using our services, you consent to the processing and transfer of your information within the United States and to other countries.

Sharing of Information

We may share your personal information under the following circumstances:

  • With third-party vendors and other service providers who require access to your information to carry out tasks on our behalf;

  • If we believe disclosure is reasonably necessary to comply with any applicable law, regulation, legal process, or governmental request;

  • To enforce applicable user agreements or policies, including our Terms of Service;

  • To protect us, our users, or the public from harm or illegal activities;

  • In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company;

  • If we notify you through our services (or in our privacy policy) that the information you provide will be shared in a specific way and you provide such information.

We may also share aggregated or anonymized information that does not directly identify you.

Data Security and Retention

When you connect a WhatsApp account to our service, we provide you with a unique, encrypted API Token. This token enables direct communication between your device and the WhatsApp API to retrieve data, while ensuring maximum privacy and security.

We do not store or retain any data retrieved via the API Token, such as messages, chats or contacts. The only information we retain is the phone number of the connected account, which is essential for operating the service.

If you disable a channel or disconnect your WhatsApp account from our service, all associated access is immediately revoked, and no information about the account remains on our servers.

By using our service, you acknowledge that all data retrieval and management through the API Token are under your sole responsibility. Our role is limited to facilitating the connection between your phone and the WhatsApp API.

Third-Party Analytics

We may allow third parties to provide analytics services. These third parties may use cookies, web beacons, and other technologies to collect information about your use of the services and other websites, including your IP address, web browser, pages viewed, time spent on pages, links clicked, and conversion information.

This information may be used by us and third parties to analyze and track data, determine the popularity of certain content and other websites, and better understand your online activity. Our privacy policy does not apply to third-party cookies, web beacons, or other tracking technologies, and we encourage you to review the privacy policies of these third parties to learn more about their privacy practices.

Security

We take reasonable steps to help protect personal information from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction.

The operators of this website and its pages take the protection of your personal data very seriously. Hence, we handle your personal data as confidential information and in compliance with the statutory data protection regulations and this Data Protection Declaration.

Whenever you use this website, a variety of personal information will be collected. Personal data comprises data that can be used to personally identify you. This Data Protection Declaration explains which data we collect as well as the purposes we use this data for. It also explains how, and for which purpose the information is collected.

We herewith advise you that the transmission of data via the Internet (i.e., through e-mail communications) may be prone to security gaps. It is not possible to completely protect data against third-party access.

What Rights Do You Have as Far as Your Information Is Concerned?

You have the right to receive information about the source, recipients, and purposes of your archived personal data at any time without having to pay a fee for such disclosures. You also have the right to demand that your data are rectified or eradicated. If you have consented to data processing, you have the option to revoke this consent at any time, which shall affect all future data processing. Moreover, you have the right to demand that the processing of your data be restricted under certain circumstances.

What Rights Do You Have Under GDPR?

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access: You can request information about the personal data we store and process.
  • Right to Rectification: You have the right to request corrections to inaccurate or incomplete data.
  • Right to Erasure: You can request that we delete your personal data under certain circumstances.
  • Right to Restrict Processing: You may request the limitation of data processing under specific conditions.
  • Right to Data Portability: You have the right to receive your data in a commonly used, machine-readable format.
  • Right to Object: You can object to data processing based on legitimate interests, including for direct marketing purposes.
  • Right to Withdraw Consent: You can withdraw your consent to data processing at any time.

To exercise these rights, please contact us at the contact details provided in this Privacy Policy.

Storage Duration

Unless a more specific storage period has been specified in this privacy policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will take place after these reasons cease to apply.

Analysis Tools and Tools Provided by Third Parties

There is a possibility that your browsing patterns will be statistically analyzed when you visit this website. Such analyses are performed primarily with what we refer to as analysis programs.

Hosting and Content Delivery Networks (CDN)

Hetzner

We host our website with Hetzner. The provider is the Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany (hereinafter referred to as Hetzner). For details, please view the data privacy policy of Hetzner: https://www.hetzner.com/de/rechtliches/datenschutz.

We use Hetzner on the basis of Art. 6(1)(f) GDPR. We have a legitimate interest in the most reliable depiction of our website possible. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG.

Firebase

We use Firebase, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Firebase”), for user authentication and registration on our service.

Firebase Authentication allows users to sign up and log in securely using methods such as email/password or third-party authentication providers. Firebase processes certain personal data (e.g., email address, authentication tokens, and related metadata) as part of the authentication process.

The use of Firebase is based on our legitimate interest in providing a secure and user-friendly registration and login system (Art. 6(1)(f) GDPR). If explicit consent is obtained during registration, processing is additionally based on Art. 6(1)(a) GDPR.

Data transmission to Google’s servers in the United States occurs under the Standard Contractual Clauses (SCC) of the European Commission to ensure an adequate level of protection for personal data. Further details on Firebase’s privacy and security measures can be found here: https://firebase.google.com/support/privacy.

Cloudflare

We use the “Cloudflare” service provided by Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter referred to as “Cloudflare”). Cloudflare offers a content delivery network with DNS that is available worldwide. As a result, the information transfer that occurs between your browser and our website is technically routed via Cloudflare’s network. This enables Cloudflare to analyze data transactions between your browser and our website and to work as a filter between our servers and potentially malicious data traffic from the Internet.

In this context, Cloudflare may also use cookies or other technologies deployed to recognize Internet users, which shall, however, only be used for the herein described purpose. The use of Cloudflare is based on our legitimate interest in a provision of our website offerings that is as error free and secure as possible (Art. 6(1)(f) GDPR).

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.cloudflare.com/privacypolicy/.

For more information on Cloudflare’s security precautions and data privacy policies, please follow this link: https://www.cloudflare.com/privacypolicy/.

Wasabi

In certain cases, you may make your own decisions about file storage when using our service. If you enable this setting, the files and media we process are stored for 30 days on the “Wasabi” service provided by Wasabi Technologies LLC, 75 Arlington Street, Suite 810, Boston, MA 02116 (hereinafter referred to as “Wasabi”).

For more information on Wasabi’s security precautions and data privacy policies, please follow this link: https://wasabi.com/legal/privacy-policy.

Amazon S3

As a backup option, we may store files and media on the Amazon Simple Storage Service (“Amazon S3”) if Wasabi experiences any service interruptions or malfunctions. Amazon S3 is a storage service provided by Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109-5210, USA (hereinafter referred to as “Amazon S3”).

The use of Amazon S3 is based on our legitimate interest in ensuring the reliability and redundancy of our file storage services (Art. 6(1)(f) GDPR). Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details about Amazon S3’s security measures and data privacy can be found here: https://aws.amazon.com/compliance/data-privacy/.

Server Log Files

When you access our website, certain technical information is automatically recorded in server log files. This data includes:

  • The type and version of your browser
  • Your operating system
  • Referrer URL (the previously visited page)
  • Hostname of the accessing device
  • The time of the server request
  • Your IP address

This data is stored to ensure the stability, security, and proper functioning of our website. The legal basis for this processing is Art. 6(1)(f) GDPR, as we have a legitimate interest in maintaining the performance and security of our services. Server logs are automatically deleted after [specify time, e.g., 30 days].

Data Processing Agreement

We have concluded Data Processing Agreements (DPA) with all third-party providers mentioned in this section. These agreements are mandated by data privacy laws and ensure that all personal data is processed exclusively based on our instructions and in full compliance with the GDPR.

General Information and Mandatory Information

The operators of this website and its pages take the protection of your personal data very seriously. Hence, we handle your personal data as confidential information and in compliance with the statutory data protection regulations and this Data Protection Declaration. Whenever you use this website, a variety of personal information will be collected. Personal data comprises data that can be used to personally identify you.

This Data Protection Declaration explains which data we collect as well as the purposes we use this data for. It also explains how, and for which purpose the information is collected. We herewith advise you that the transmission of data via the Internet (i.e., through e-mail communications) may be prone to security gaps. It is not possible to completely protect data against third-party access.

The controller is the natural person or legal entity that single-handedly or jointly with others makes decisions as to the purposes of and resources for the processing of personal data (e.g., names, e-mail addresses, etc.).

Information on Data Transfer to the USA and Other Non-EU Countries

Among other things, we use tools of companies domiciled in the United States or other from a data protection perspective non-secure non-EU countries. If these tools are active, your personal data may potentially be transferred to these non-EU countries and may be processed there.

We must point out that in these countries, a data protection level that is comparable to that in the EU cannot be guaranteed. For instance, U.S. enterprises are under a mandate to release personal data to the security agencies, and you as the data subject do not have any litigation options to defend yourself in court. Hence, it cannot be ruled out that U.S. agencies (e.g., the Secret Service) may process, analyze, and permanently archive your personal data for surveillance purposes. We have no control over these processing activities.

SSL and/or TLS Encryption

For security reasons and to protect the transmission of confidential content, such as purchase orders or inquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption program.

You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line. If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.

Encrypted Payment Transactions on This Website

If you are under an obligation to share your payment information (e.g., account number if you give us the authority to debit your bank account) with us after you have entered into a fee-based contract with us, this information is required to process payments.

Payment transactions using common modes of paying (Visa/MasterCard, debit to your bank account) are processed exclusively via encrypted SSL or TLS connections. You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line. If the communication with us is encrypted, third parties will not be able to read the payment information you share with us.

Analysis Tools and Advertising

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store cookies, and does not carry out any independent analyses. It only manages and runs the tools integrated via it.

However, the Google Tag Manager does collect your IP address, which may also be transferred to Google’s parent company in the United States. The Google Tag Manager is used on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and administration of various tools on the website. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s end device. This consent can be revoked at any time.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system, and the user’s origin.

Google Analytics uses technologies such as cookies or device fingerprinting to recognize users and analyze their behavior patterns. The information is usually transferred to a Google server in the United States and stored there. The use of Google Analytics is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in analyzing user patterns to optimize both the website and advertising activities. If consent has been obtained, processing is carried out based on Art. 6(1)(a) GDPR and § 25 (1) TTDSG. This consent can be revoked at any time.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here.

Google Analytics E-Commerce-Tracking

This website uses the “E-Commerce Tracking” function of Google Analytics. With E-Commerce Tracking, the website operator can analyze purchasing patterns of visitors to improve marketing campaigns. Information such as orders placed, average order values, shipping costs, and the time between viewing a product and purchasing it is tracked. These data are consolidated under a transaction ID and assigned to the user or user’s device.

Google Ads

The website operator uses Google Ads, an online advertising program by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads allows targeted ads to be displayed in Google search results or on third-party websites. Data such as search terms, clicks, and conversions are analyzed to optimize advertising campaigns.

The use of Google Ads is based on Art. 6(1)(f) GDPR. The operator has a legitimate interest in effective marketing of services and products. Data transmission to the US is based on the Standard Contractual Clauses (SCC). Further details can be found here and here.

Google reCAPTCHA

We use “Google reCAPTCHA” on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. reCAPTCHA is used to verify that data entered on our website (e.g., forms) is from a human and not an automated program. reCAPTCHA analyzes the behavior of website visitors, including IP address, time spent on site, and mouse movements.

The data collected is sent to Google. reCAPTCHA runs in the background, and users are not notified of the analysis. Data are processed on the basis of Art. 6(1)(f) GDPR, as the operator has a legitimate interest in protecting the website against automated abuse. If consent has been obtained, processing is based on Art. 6(1)(a) GDPR and § 25 (1) TTDSG, which can be revoked at any time.

For more information, please refer to the Google Privacy Policy and Terms of Use.