Privacy Policy
Your trust is our priority. Learn how we handle your personal data and protect your business credentials on WaChat.
Last updated: June 23, 2026
Introduction
Welcome to WaChat. We are committed to protecting the privacy and security of your business communications and technical parameters. This Privacy Policy describes how we collect, process, and protect your information when you access or use WaChat (the “Service” or “Platform”), operated as an enterprise WhatsApp Cloud API gateway integration.
By accessing or using WaChat, you agree to the collection and use of information in accordance with this Privacy Policy.
1. Information We Collect
We collect information to provide, secure, and improve our services. We organize this data into the following categories:
Account Information
Name, email address, Clerk authentication ID, and profile picture provided during sign-up.
Meta API Credentials
WhatsApp Business API access tokens, Phone ID, and Business Account ID. Stored securely to authenticate requests to Meta.
Message & Contact Metadata
Contact numbers, broadcast groups, template structures, and message delivery status. We do not permanently store message bodies.
Media Files
Images, audio, videos, and PDF documents uploaded directly to S3 storage for attachment in broadcast messages.
Billing & Subscriptions
Subscription plans and transaction records. Payments are securely routed through Razorpay; card credentials never touch our databases.
2. How We Use Your Information
WaChat utilizes your system data and profile properties for the following core operations:
3. Service Providers & Data Processors
We share your data only with verified service providers to ensure secure app delivery. We do not sell your data under any circumstances.
Clerk
Identity Verification & Sessions
NeonDB
Relational Data & Config Storage
Amazon S3
Media Attachment Hosting
Razorpay
PCI-Compliant Subscriptions
Meta Cloud API
WhatsApp Message Delivery
4. Data Security & Encryption
We employ strict security policies to protect business configurations and access tokens from unauthorized access:
Encrypted API Credentials
WhatsApp access tokens are secured using database environment-level encryption protocols.
Enforced HTTPS/SSL
All active data transmission between browser clients and servers is secure under TLS encryption.
Database Access Control
Database connection visibility is restricted strictly to backend application workflow engines.
Razorpay PCI Isolation
Credit card credentials never hit our servers and are processed securely by Razorpay.
5. Meta Developer Compliance
WaChat operates as an independent service wrapping Meta Cloud API endpoints. You are responsible for ensuring your business broadcasts comply with the WhatsApp Business Policy guidelines.
6. Your Rights & Data Deletion
You retain full control over your business details stored on WaChat. You may clear credentials or download templates directly from settings.
To delete your account and wipe all database configurations and media attachments, send an request email to:
Account Deletion Request
Purges S3 files and NeonDB configurations.
Have questions about our data safety?
Our team is dedicated to transparent credentials storage. Drop us a line.