AIWhatsApp

Privacy Policy

How we collect, use, and protect your information.

Last updated · May 19, 2026

AIWhatsApp ("we", "our", "the platform") operates the website aionechat.com and the WhatsApp Business API platform at app.aionechat.com(collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information we collect

Information you provide

  • Account data — name, email, password, company name, phone number you provide at sign-up.
  • WhatsApp Business Account data— your WhatsApp Business Account (WABA) ID, phone number ID, display name, and business profile information you authorize us to access via Meta's Embedded Signup flow.
  • Contact list data — phone numbers and metadata you upload to send campaigns or build automations.
  • Payment data — billing details collected and stored by our payment processor (Razorpay). We do not store card numbers.

Information collected automatically

  • WhatsApp messages and metadata— message content, timestamps, delivery and read receipts received via Meta's Cloud API webhooks for accounts you have connected.
  • Usage logs — IP address, browser type, pages viewed, timestamps, and referring URL.
  • Cookies and similar tracking — to keep you signed in and remember preferences.

2. How we use information

  • Operate the Service — onboard WhatsApp accounts, deliver and receive messages.
  • Provide AI auto-reply, automation rules, broadcasts, and analytics features that you explicitly enable.
  • Process payments and prevent fraud.
  • Send service emails (account, billing, security). We will not send marketing emails unless you opt in.
  • Improve product quality, troubleshoot issues, and maintain security.

3. How we share information

We do not sell your data. We share only as required to operate the Service:

  • Meta Platforms, Inc. — message content and metadata required by the WhatsApp Business Cloud API to deliver messages.
  • Razorpay— for payment processing (subject to Razorpay's own privacy policy).
  • OpenAI(if AI Chatbot is enabled by you) — message context shared to generate AI replies. No data is retained for training per OpenAI's API policy.
  • MongoDB Atlas — encrypted-at-rest cloud database for storage.
  • Legal compliance — when required by valid legal process.

4. Data security

  • WhatsApp access tokens are encrypted at rest with AES-256-GCM.
  • All traffic between you and the Service is encrypted via HTTPS / TLS 1.2+.
  • Meta webhook signatures are verified via HMAC-SHA256 before processing.
  • Passwords are hashed with bcrypt (no plaintext storage).
  • Access to production systems is restricted and audited.

5. Data retention

We retain account, message, and billing data while your account is active and for up to 90 days after deletion (unless longer retention is required for legal or compliance reasons). You may request earlier deletion — see our Data Deletion page.

6. Your rights

Subject to applicable law (GDPR, CCPA, India DPDP Act), you have the right to:

  • Access a copy of your data
  • Correct inaccurate information
  • Delete your account and associated data
  • Opt out of marketing communications
  • Port your data to another provider

Email privacy@aionechat.com to exercise any of these rights.

7. Children

The Service is not intended for users under 18. We do not knowingly collect personal information from children.

8. International transfers

Data may be stored or processed in countries other than your own (including the US and EU). Where required, we use standard contractual clauses.

9. Changes to this policy

We may update this policy. Material changes will be notified via email and via a banner on the dashboard 14 days before they take effect.

10. Contact

AIWhatsApp · aionechat.com
Email: privacy@aionechat.com
Data Protection Officer: dpo@aionechat.com