Effective Date: 01 December 2055
Last Updated: 31 December 2025
WhatsCRM (“we”, “our”, “us”) respects your privacy and is committed to protecting personal data. This Privacy Policy explains how we collect, use, store, disclose, and protect information when you use our website, applications, and services (collectively, the “Service”).
By accessing or using WhatsCRM, you agree to the terms of this Privacy Policy.
1. Information We Collect
We may collect the following categories of information:
1.1 Information You Provide
Name, email address, phone number
Business name and business details
Account credentials
Billing and subscription information
Support requests and communications
1.2 Customer Data
When you use WhatsCRM to communicate with your customers, we may process:
Customer phone numbers
Message content
Contact names and metadata
You remain the data controller for customer data. WhatsCRM acts as a data processor.
1.3 Automatically Collected Information
IP address
Browser type and device information
Usage logs and activity data
Cookies and similar tracking technologies
2. How We Use Information
We use collected information to:
Provide and operate the Service
Manage user accounts and subscriptions
Enable WhatsApp messaging and automation features
Improve performance, security, and usability
Communicate service updates and support responses
Comply with legal and regulatory obligations
We do not sell personal data.
3. Legal Basis for Processing (GDPR)
Where applicable, we process personal data based on:
Performance of a contract
Legitimate business interests
Compliance with legal obligations
User consent (where required)
4. Data Sharing and Disclosure
We may share information with:
Trusted service providers (hosting, analytics, payment processing)
Meta Platforms, Inc. (WhatsApp Cloud API) as required for messaging services
Legal authorities when required by law
All third parties are required to protect data and use it only for specified purposes.
5. Data Retention
We retain personal data only for as long as necessary to:
Provide the Service
Meet legal, accounting, or regulatory requirements
You may request deletion of your account and associated data, subject to legal obligations.
6. Data Security
We implement appropriate technical and organizational measures to protect data, including:
Access controls
Encryption where applicable
Secure hosting environments
However, no system is 100% secure, and we cannot guarantee absolute security.
7. User Rights
Depending on your jurisdiction, you may have the right to:
Access your personal data
Correct inaccurate information
Request deletion of data
Restrict or object to processing
Data portability
Withdraw consent
Requests can be made by contacting us using the details below.
8. Cookies and Tracking
WhatsCRM uses cookies and similar technologies to:
Maintain sessions
Improve user experience
Analyze platform usage
You may control cookies through your browser settings.
9. International Data Transfers
Your information may be processed and stored in countries outside your own. We ensure appropriate safeguards are in place to protect transferred data.
10. Third-Party Services
The Service may contain links to third-party websites or services. We are not responsible for their privacy practices.
11. Children’s Privacy
WhatsCRM is not intended for use by individuals under the age of 18. We do not knowingly collect data from children.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date.
13. Contact Information
If you have questions or requests regarding this Privacy Policy, please contact us at:
Email: support@whatscrm.co.ke
Company Name: WhatsCRM - FortyHives Innovations Ltd
Website: whatscrm.co.ke