Legal Documentwebek.org

Privacy Policy

This policy describes how WABEK collects, stores, and uses your personal information. We take your privacy seriously.

Last updated: January 1, 2025webek.org
PrivacyTermsRefundLicense
Table of contents
  1. Information We Collect
  2. How We Use Your Information
  3. Data Sharing
  4. Data Retention
  5. Your Rights
  6. Security
  7. Cookies
  8. Policy Updates
  9. Contact Us
1. Information We Collect

Account Information

When you create an account, we collect:

  • Full name and email address
  • Phone number (for OTP verification)
  • Password (stored as a secure hash — we never see it)
  • Company name and timezone (optional)

Usage Data

We automatically collect when you use the platform:

  • IP addresses, browser type, and operating system
  • Pages visited and time spent on them
  • Session timestamps and error logs
  • API usage statistics and message counts

Contact and Message Data

  • Contacts you import or add manually
  • Messages sent and received through the platform
  • Campaign data and delivery statistics
  • Chatbot conversations and automation flows

Your data, your property. We process it on your behalf and never use it for our own purposes.

Payment Information

Payments are processed directly by Stripe (PCI-DSS certified). We only store:

  • Stripe customer ID (reference only)
  • Last 4 digits and expiry date (display only)
  • Invoice history and status
2. How We Use Your Information
  • Provide, improve, and maintain WABEK
  • Send OTP codes and security notifications
  • Process payments and manage subscriptions
  • Respond to support requests
  • Detect and prevent fraud and abuse
  • Comply with legal and regulatory obligations
  • Send product updates and necessary notifications

Explicit commitment: We do not sell your personal data or your contacts' data to any third party, and we do not use it for advertising targeting.

3. Data Sharing

We only share your data with:

  • Stripepayment processing (PCI-DSS certified)
  • Meta / WhatsAppmessage delivery via Cloud API
  • Anthropic (Claude)AI features (no permanent conversation storage)
  • Law enforcementupon official legal request only
4. Data Retention

We retain your data as long as your account is active. Upon account deletion:

  • Personal data deleted within 30 days
  • Contacts and campaign data deleted within 30 days
  • Message logs retained up to 90 days for fraud prevention
  • Billing data deleted after 7 years per legal requirements
5. Your Rights
  • Right to access: export all your data from Account Settings
  • Right to rectification: edit your information from your profile
  • Right to erasure: permanently delete your account and all data
  • Right to portability: export your data in JSON/CSV
  • Right to object: unsubscribe from marketing communications

Contact us at privacy@waabek.com — we respond within 72 hours.

6. Security
  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for data at rest
  • bcrypt password hashing (we never see your password)
  • Two-factor authentication (2FA)
  • Regular security audits and continuous monitoring
  • Daily encrypted backups
7. Cookies

We use only necessary cookies:

  • Authentication session (expires on logout)
  • Language preference and interface settings
  • CSRF token for security protection

We do not use tracking or advertising cookies.

8. Policy Updates

We may update this policy periodically. For significant changes, we will notify you via email and in-app notification 30 days before the changes take effect.

9. Contact Us
  • Privacy email: privacy@waabek.com
  • Owner: webek.org

WABEK is owned and operated by webek.org. All legal rights reserved to webek.org.

© 2025 webek.org — WABEK. All rights reserved.