Texnity processes two different categories of personal data, and our role is different for each:
- Customer Account Data – information about the business that signs up for Texnity and the individual users who log in. For this data, Texnity is the data controller.
- End-User Messaging Data – the WhatsApp messages, phone numbers, contact lists, media f iles, and conversation history that flow through your Texnity account between your business and your own customers. For this data, you are the controller and Texnity is the data processor, acting on your instructions.
2. Information we collect
2.1 From you, the account holder
- Account data: name, email address, phone number, business name, country, role, and password (hashed).
- WhatsApp Business Account (WABA) data: the Meta Business Manager ID, WhatsApp Business Account ID, phone number IDs, display names, and access tokens you authorise through Meta’s Embedded Signup flow.
- Billing data: invoicing details and transaction records. Payment card or bank details are handled by our payment processors; we do not store full card numbers.
- Support data: messages, attachments, and context you share when you contact support.
2.2 Processed on behalf of your business
- End-user contacts: phone numbers, display names, custom attributes, and tags of the people your business communicates with on WhatsApp.
- Message content: template messages, free-form replies, images, documents, audio, video, location, and any other content sent or received through the WhatsApp Cloud API via your account.
- Conversation metadata: timestamps, delivery and read receipts, message status, conversation category, and error codes returned by Meta.
- Opt-in records: where you log them in Texnity, the proof that your end-users consented to receive messages.
2.3 Collected automatically
- Usage data: IP address, browser and device type, pages viewed, actions taken in the app, and timestamps.
- Cookies and local storage: strictly-necessary cookies that keep you signed in and protect your session, plus optional analytics cookies (see Section 11).
3. How we use information
We use the data above to:
- provide, maintain, and secure the Service, including routing messages between your business and Meta’s WhatsApp Cloud API;
- authenticate users, enforce account-level limits, prevent abuse and fraud, and investigate security incidents;
- send transactional emails about your account, invoices, outages, and policy changes;
- respond to your support requests;
- improve the Service by analysing aggregated usage to fix bugs and prioritise features;
- comply with legal obligations and Meta’s WhatsApp Business Platform requirements.
We do not sell personal data. We do not use the content of your end-users’ WhatsApp messages to train AI models or for any purpose other than delivering the Service you’ve asked us to deliver.
4. Legal bases for processing (GDPR / similar laws)
Where data-protection law requires a legal basis, we rely on: (a) performance of a contract with you; (b) our legitimate interests in operating, securing, and improving the Service; (c) compliance with legal obligations; and (d) your consent, where required. For end-user data, your business is responsible for establishing the legal basis to message its own customers, including obtaining opt-in as required by the WhatsApp Business Messaging Policy.
5. Sharing your data
We share personal data only with the parties below, and only as needed:
- Meta Platforms, Inc. – all WhatsApp messages, phone numbers, templates, and webhook events necessarily flow through Meta’s WhatsApp Cloud API, governed by WhatsApp’s Business Terms and Privacy Policy.
- Cloud infrastructure providers – used to host the Service, store data, and send transactional email.
- Payment processors – to collect subscription fees and conversation-based usage fees.
- Professional advisors and authorities – lawyers, auditors, or regulators where required by law or to protect our rights, users, or the public.
- Successors in interest – if Texnity is involved in a merger, acquisition, or sale of assets, your data may be transferred subject to this Policy.
6. International data transfers
Texnity operates globally and serves customers primarily in South Asia and the MENA region. Personal data may be processed in countries other than the one where you live. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.
7. Data retention
- Account data – retained while your account is active and for up to 12 months after closure, unless a longer period is required by law.
- End-user messaging data – retained according to your settings. You can delete contacts, conversations, and media at any time. When your account is closed, we delete or anonymise this data within 90 days, except where retention is required by law.
- Logs and security records – typically kept for up to 12 months.
- Backups – rotated on a regular schedule; deleted data is removed over the same rotation cycle
8. Your rights
Subject to applicable law (including GDPR, UK GDPR, and similar regimes), you may have the right to access your personal data, correct inaccuracies, request deletion, restrict or object to processing, withdraw consent, and request portability. To exercise these rights, email privacy@texnity.com. We will respond within the timeframe required by law (typically 30 days).
If you are an end-user messaging a business that uses Texnity and you want your data accessed, corrected, or deleted, please contact that business directly. As a processor, we will support them inresponding.
9. Security
We apply industry-standard practices, including encryption in transit (TLS), encryption at rest for sensitive data, access controls on the principle of least privilege, audit logging, regular dependency and vulnerability patching, and hardened authentication for staff access. No system is perfectly secure; if you discover a vulnerability, report it to support@texnity.com.
10. Children
The Service is intended for businesses and adults acting on their behalf. It is not directed at children under 16, and we do not knowingly collect personal data from anyone under 16.
11. Cookies and tracking
We use strictly-necessary cookies to keep you signed in and protect your session. With consent (where required), we may use a small number of analytics cookies. We do not use cross-site advertising trackers in the product.
12. Third-party links
The Service and our website may link to third-party sites. Those sites have their own privacy policies; this Policy does not cover them.
13. Changes to this policy
If we make material changes, we will notify you by email or in-app notice at least 14 days before the change takes effect. Minor edits will be reflected in the “Last updated” date. Continued use after the effective date constitutes acceptance.
14. Contact us
Support: hello@texnity.com