Wapikon Privacy Policy
Last Updated: Sept 5th, 2024
1. Introduction
When you use our services, you’re trusting us with your information. We understand this is a big responsibility, and we work hard to protect your information and put you in control.
This Privacy Policy is meant to help you understand what information we collect, why we collect it, how we retain and delete it, and what you can do to protect your information.
Key Terms:
- Kredmaxx Technologies (“Wapikon”, “we”, “us”, or “our”) is the company that collects and processes Personal Data for the purposes described in this Policy.
- Personal Data is any information relating to an identified or identifiable natural person (“Data Subject”).
- Customer or Client is a legal business entity with whom Wapikon has an agreement to provide the Services.
2. What is Wapikon?
Wapikon is a WhatsApp Business CRM tool provided by Kredmaxx Technologies. The product offers a “Conversation Cloud Platform” integrated with WhatsApp Business, allowing our Customers to store, manipulate, analyze, and transfer messages between their business systems and their customers on various Wapikon-provided and third-party messaging channels (the “Service”).
Wapikon is committed to protecting Personal Data, including data that we use for our own purposes and that we maintain on behalf of our Clients.
3. Collection and Use of Personal Data
Wapikon collects information, including Personal Data, for the following purposes:
- Providing and managing the Service
- Internal business purposes
- Communicating with you and marketing
- Recruiting and managing personnel
- Collecting payment for the Service
- Understanding and improving our Service and Website
- Login with Facebook and Embedded Signup for WABA: We utilize Facebook Login to authenticate users and facilitate the creation of a WhatsApp Business Account (WABA) as part of our embedded signup process. During this process, we request certain Facebook OAuth scopes necessary for creating and managing the WABA, as well as for handling messaging permissions. The specific scopes used include:
- public_profile: Allows access to the user’s basic profile information such as name and profile picture. This is used to personalize the user’s experience within Wapikon.
- email: Accesses the user’s primary email address, which is used for account communication and support purposes.
- business_management: This scope allows Wapikon to manage and create business assets on behalf of the user, necessary for associating their WABA with their Facebook Business account.
- whatsapp_business_management: Required for creating and managing the user’s WhatsApp Business Account (WABA) within the Wapikon platform.
- whatsapp_business_messaging: Allows Wapikon to send and manage WhatsApp messages on behalf of the user’s business, adhering to WhatsApp’s policies and guidelines.
For a better experience and to provide our Service, we may require you to provide us, either directly or indirectly, with certain personally identifiable information, including but not limited to the user name and OAuth2 credentials. The information that we request will be retained by us and used as described in this Privacy Policy.
4. Google Sheets™ Plugin Privacy Statement
We have an integration with Google Sheets™ listed on the Google Workspace Marketplace. This plugin allows users to send WhatsApp Messages to their Contacts from Google Sheets.
a. Information We Collect via Google Sheets™ Plugin
When you use the Wapikon Connect Google Sheets™ add-on, we access the following Google user data:
- Google Account Email: We access your Google account email address for the purpose of authenticating your use of the Wapikon Connect add-on. This email address is used solely for authentication and is not stored or shared with any third parties.
- Google Sheets™ Data: Wapikon Connect accesses the data within the Google Sheets™ where the add-on is used. This includes:
- Phone Numbers: Used to send WhatsApp messages through the Wapikon API.
- Template Variables: Used to customize the messages sent through the Wapikon API.
- Status Columns: Used to track the status of sent messages (e.g., “Sent”, “Failed”).
- Sheet Metadata: Basic information about the spreadsheet (e.g., sheet names) is accessed to ensure proper functionality.
This data is accessed in real-time and is not stored on our servers. All data processing occurs within your Google Sheet.
b. OAuth Scopes and Their Use
Wapikon Connect requires certain OAuth scopes to function correctly. Below is an explanation of the OAuth scopes used and why they are necessary:
- https://www.googleapis.com/auth/spreadsheets: Allows Wapikon Connect to access and modify the content of your Google Sheets™ It is necessary to read data (such as phone numbers and template variables) and update status columns after messages are sent.
- https://www.googleapis.com/auth/script.scriptapp: Provides access to Google Apps™ Script runtime services, allowing Wapikon Connect to manage triggers such as onChange and onFormSubmit. These triggers automate the process of sending messages when data in the sheet is updated.
- https://www.googleapis.com/auth/script.external_request: Permits Wapikon Connect to make external HTTP requests, specifically to the Wapikon API. It is necessary for sending WhatsApp messages based on the data in your Google Sheets™.
- https://www.googleapis.com/auth/script.storage: Allows the add-on to store user settings (such as API keys, template names, and column mappings) securely within the Google Apps Script™ environment, ensuring that your settings persist across sessions.
- https://www.googleapis.com/auth/drive.file: Enables Wapikon Connect to create and manage files in your Google Drive™. It is used if the add-on needs to create logs, backups, or other files related to the add-on’s operation.
- https://www.googleapis.com/auth/script.container.ui: Enables Wapikon Connect to create and manage custom user interface elements within Google Sheets™, such as the sidebar. The sidebar is used to configure settings like API keys, template names, and column mappings.
c. Use of Google APIs
Our plugin’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. All contacts or data sent from Google Sheets™ are stored in the user’s Wapikon account only and are not shared with any other user or account.
5. Retention and Deletion of Data
We retain Personal Data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Specifically:
- Account Information: Retained for as long as the account is active. If you choose to deactivate your account, your Personal Data will be deleted within 30 days of deactivation.
- Service Data: Retained for up to 90 days after the termination of the contract with our Customers, after which it will be securely deleted.
- Other Personal Data: Retained for up to 30 days after the purpose for which it was collected has been fulfilled or as required by applicable law, whichever is longer.
Upon the conclusion of these retention periods, Personal Data is securely deleted in accordance with our data retention policies.
6. Disclosure of Your Personal Data
Wapikon does not disclose, trade, rent, sell, or otherwise transfer Personal Data, except as set out in this policy. We may transfer or disclose Personal Data under specific circumstances, such as:
- Service Provider Arrangements
- Changes to Our Business Structure
- Compliance with Laws
- Enforcing Our Rights, Preventing Fraud, and Safety
Data Sale to Third Parties: Wapikon does not sell Google user data or any other Personal Data to third parties.
7. Your Rights
You have the right to access and correct your Personal Data. If you submit Personal Data via our Website or provide us with your Personal Data, you may request access, updating, or correction of your Personal Data by submitting a written request to us at support@wapikon.com.
8. How We Protect Personal Data
Wapikon takes the security of user data seriously. We take various steps to protect the information you provide to us from loss, misuse, and unauthorized access or disclosure.
9. Updates to this Privacy Policy
This Privacy Policy may be updated periodically to reflect changes to our Personal Data handling practices. The revised Privacy Policy will be posted on the Website. Continued use of the Service or the Website after the changes are in effect constitutes your acceptance of the revised Notice.
10. Contact Us
If you have any questions or comments about this Privacy Policy, wish to access, update, and/or correct inaccuracies in your Personal Data, or have a question or complaint about how we or our service providers treat your Personal Data, please contact Wapikon Compliance Officer:
Email: compliance@wapikon.com