Password (stored as a secure hash — we never see it)
Company name and timezone (optional)
Usage Data
We automatically collect when you use the platform:
IP addresses, browser type, and operating system
Pages visited and time spent on them
Session timestamps and error logs
API usage statistics and message counts
Contact and Message Data
Contacts you import or add manually
Messages sent and received through the platform
Campaign data and delivery statistics
Chatbot conversations and automation flows
Your data, your property. We process it on your behalf and never use it for our own purposes.
Payment Information
Payments are processed directly by Stripe (PCI-DSS certified). We only store:
Stripe customer ID (reference only)
Last 4 digits and expiry date (display only)
Invoice history and status
2. How We Use Your Information
Provide, improve, and maintain WABEK
Send OTP codes and security notifications
Process payments and manage subscriptions
Respond to support requests
Detect and prevent fraud and abuse
Comply with legal and regulatory obligations
Send product updates and necessary notifications
Explicit commitment: We do not sell your personal data or your contacts' data to any third party, and we do not use it for advertising targeting.
3. Data Sharing
We only share your data with:
Stripe — payment processing (PCI-DSS certified)
Meta / WhatsApp — message delivery via Cloud API
Anthropic (Claude) — AI features (no permanent conversation storage)
Law enforcement — upon official legal request only
4. Data Retention
We retain your data as long as your account is active. Upon account deletion:
Personal data deleted within 30 days
Contacts and campaign data deleted within 30 days
Message logs retained up to 90 days for fraud prevention
Billing data deleted after 7 years per legal requirements
5. Your Rights
Right to access: export all your data from Account Settings
Right to rectification: edit your information from your profile
Right to erasure: permanently delete your account and all data
Right to portability: export your data in JSON/CSV
Right to object: unsubscribe from marketing communications
Contact us at privacy@waabek.com — we respond within 72 hours.
6. Security
TLS 1.3 encryption for all data in transit
AES-256 encryption for data at rest
bcrypt password hashing (we never see your password)
Two-factor authentication (2FA)
Regular security audits and continuous monitoring
Daily encrypted backups
7. Cookies
We use only necessary cookies:
Authentication session (expires on logout)
Language preference and interface settings
CSRF token for security protection
We do not use tracking or advertising cookies.
8. Policy Updates
We may update this policy periodically. For significant changes, we will notify you via email and in-app notification 30 days before the changes take effect.
9. Contact Us
Privacy email: privacy@waabek.com
Owner: webek.org
WABEK is owned and operated by webek.org. All legal rights reserved to webek.org.