Privacy Policy

1. Information We Collect

We collect information you provide directly, information collected automatically as you use the Service, and information from third-party integrations you connect.

A. Information You Provide

Account Information. Name, email, business name, contact details, and password (stored only as a secure hash).
Business Details. Business type, use case, and configuration data you add to your account, such as sender IDs and message templates.
Billing Details. If you load credit or subscribe to a paid plan, we collect payment information via secure third-party processors (Stripe, Paystack, and similar). We do not store full card numbers.
Communications. Messages or requests you send to Wasika support or sales.

B. Information We Collect Automatically

Device & Log Data. IP address, browser type, device model, operating system, time zone, and system activity, used to maintain security and optimise performance.
Usage Analytics. Features used, pages visited, API endpoints called, time spent, and interaction logs for product improvement and troubleshooting.
Cookies & Similar Technologies. Used to remember preferences, enable core functionality, analyse traffic, and support our website.

C. Message & Integration Data

Message Data. To deliver SMS, WhatsApp, and email messages on your behalf, we process recipient identifiers (such as phone numbers and email addresses) and message content. This data is handled solely to provide and log delivery of the Service.
API Tokens & Credentials. When you connect an integration or messaging channel, we securely store the minimum tokens or credentials required to execute actions on your behalf. Tokens are encrypted at rest.

2. How We Use Your Information

Service Delivery. To set up your account, provide platform features, route and deliver messages, and process transactions (including credit top-ups and reconciliation).
Fraud Prevention. To detect, prevent, and respond to fraud, abuse, or suspicious activity across all payment and messaging channels.
Support & Communication. To respond to your questions, notify you about service updates, and send critical alerts.
Product Improvement. To analyse usage and improve platform features, deliverability, automation, and developer experience.
Legal Compliance. To fulfil regulatory, tax, and anti-fraud requirements.

3. How We Share Your Information

With Service Providers. We use trusted partners (cloud hosting, analytics, payment processors, and messaging carriers) to deliver our services. They access your data only as needed to perform their role and must comply with strong privacy and security standards.
With Messaging Channels & Integrations. To deliver messages or power an integration you have enabled, we share the data necessary with the relevant carrier, the WhatsApp Business Platform, email infrastructure, or payment partner.
With Legal Authorities. If required by law, court order, or to protect the rights, property, or safety of Wasika, our users, or the public.
Never for Advertising. We never sell or rent your personal data to third parties for marketing or advertising purposes.

4. Sub-processors

We rely on a small number of trusted sub-processors to operate the Service. Each is bound by contractual obligations to protect your data. We provide at least 30 days' notice of material changes to this list.

Sub-processor	Purpose	Data Location
Amazon Web Services (AWS)	Cloud hosting & infrastructure	Frankfurt, Germany (EU)
OpenAI	Large Language Model processing (AI tasks)	United States
Mixpanel	Analytics & usage tracking	United States
BetterStack	Error monitoring & diagnostics	United States

5. Data Security

Encryption. All data is encrypted in transit (TLS 1.2+) and sensitive data is encrypted at rest (AES-256).
Access Control. Only authorised Wasika personnel may access user data, and only when necessary for support or compliance.
Minimal Retention. We retain data only as long as necessary for service delivery, support, and legal compliance.
Regular Security Audits. Our infrastructure is continuously monitored and tested to prevent unauthorised access or data leaks.

No method of transmission over the internet or electronic storage is 100% secure, so while we strive to protect your data we cannot guarantee absolute security.

6. Data Retention & Deletion

Account Data. Retained while you use Wasika. When you delete your account, your personal and business data are permanently removed from active systems within 30 days.
Integration Tokens. Revoked and deleted immediately when you disconnect an integration or channel.
Payment & Billing. Retained only as needed to comply with tax, anti-fraud, or regulatory laws.
Message & Delivery Logs. Retained as long as needed for delivery, debugging, and analytics, then deleted or anonymised.

You can request deletion at any time via your account settings or by contacting privacy@usewasika.com.

7. Your Rights & Choices

Depending on your jurisdiction (including under GDPR, NDPR, and CCPA), you have the following rights over your personal data:

Access. Request a copy of your data at any time.
Correction. Update or modify inaccurate information.
Deletion. Request account deletion and data removal at any time.
Revoke Permissions. Disconnect any integration or revoke third-party access at any time.
Marketing Preferences. Opt out of marketing emails by clicking "unsubscribe" in any such email.

To exercise any of these rights, use your account settings or contact us at privacy@usewasika.com.

8. International Data Transfers

We may process your data on servers located outside your country (for example, in the EU, the US, or Africa). We comply with the data protection laws applicable to your region and apply appropriate safeguards for international transfers.

9. Cookies & Similar Technologies

We use cookies and similar technologies to remember your preferences, enable core functionality, keep you signed in, and analyse website traffic. You can control or disable cookies through your browser settings, though some features may not function properly without them.

10. Children's Privacy

Wasika is not intended for children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email, in-app notification, or a prominent notice on our website. Your continued use of Wasika after the effective date means you accept the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

privacy@usewasika.com

usewasika.com