Legal

Privacy Policy

Last updated: May 2026

1. Introduction

WhatsLoop (a registered trademark owned by Cloud Payment Communications & Information Technology Co., Commercial Registration No. 7037551590) is committed to protecting the privacy and confidentiality of its users' data.

This policy explains the types of data we collect, how we use, store, protect, and share it.

By using the WhatsLoop platform, you agree to the data collection and usage practices described in this policy.

This policy applies to all WhatsLoop services including the cloud platform, API, and mobile applications.

We comply with applicable regulations in the Kingdom of Saudi Arabia, including the Personal Data Protection Law (PDPL).

2. Data We Collect

We collect various types of data to provide and improve our services:

Registration Data: Name, email, phone number, company name, and country when you create your account.

Billing Data: Payment information and invoice details required to process your subscription. We do not store bank card data directly; payments are processed through certified payment gateways.

Account Data: Account settings, user preferences, team permissions, and activity logs.

Connection Data: WhatsApp numbers linked to the platform, session status, and connection settings.

Support Data: Messages and conversations with the technical support team.

3. Usage Data

We automatically collect usage data to improve the service and ensure its performance:

Browsing Data: IP address, browser type, operating system, and pages visited on the website.

Performance Data: Login times, session duration, features used, and interaction patterns with the platform.

Analytics Data: Number of messages sent and received, delivery rates, and campaign reports.

Cookies: We use cookies to improve the browsing experience and maintain login sessions.

4. WhatsApp & Messaging Data

The nature of data passing through our platform varies depending on the connection method used:

QR Connection: Messages pass through our servers to enable platform features. We retain conversation data (sender, recipient, message content, timestamp) to provide the service.

Cloud API Connection: Messages are sent through Meta's servers directly. We retain conversation logs and incoming notifications (Webhooks) to enable platform features.

We store conversation data only to the extent necessary to operate the service and its features (such as inbox, bots, reports).

We do not use your message content for advertising or marketing purposes and do not sell it to third parties.

You can delete conversation data from your account at any time. Upon account deletion, all messaging data is deleted within 30 days.

5. How We Use Your Data

We use the data we collect for the following purposes:

Providing, operating, maintaining, and improving platform services.

Processing payments and managing subscriptions and billing.

Providing technical support and communicating with you about your account.

Sending service-related notifications (updates, maintenance, terms changes).

Analyzing usage patterns to improve the service and develop new features.

Detecting fraud, abuse, and protecting platform security.

Complying with legal and regulatory requirements.

6. Data Sharing

We do not sell your personal data to third parties. We may share your data only in the following cases:

Service Providers: We share limited data with certified service providers (hosting, payment gateways, email services) to the extent necessary to provide the service, under confidentiality agreements.

Meta/WhatsApp: When using Cloud API, messaging data is shared with Meta servers in accordance with applicable Meta policies.

Legal Requirements: We may disclose your data in response to a court order or official request from a competent governmental authority in the Kingdom of Saudi Arabia.

Rights Protection: We may share data to investigate violations or protect the rights of WhatsLoop, its users, or the public.

Ownership Transfer: In case of a company merger or acquisition, data may be transferred to the new entity while maintaining the same level of protection.

7. Data Storage & Security

Data is stored on secured servers in certified data centers.

We use SSL/TLS encryption to protect data in transit and encryption at rest for sensitive data.

We implement multi-layered security measures including firewalls, intrusion detection systems, and continuous monitoring.

Access to personal data is restricted to authorized personnel only on a need-to-know basis.

Despite taking reasonable security measures, no system can guarantee absolute security over the internet. We disclaim liability for any security breach beyond our control.

8. Data Retention

We retain your account data throughout the duration of your active subscription.

Upon account cancellation or termination, we retain data for 30 days to enable recovery, then permanently delete it.

We may retain certain data for longer periods when legally or regulatory required.

Billing records and financial transactions are retained in accordance with applicable tax and accounting regulations.

You may request deletion of your data at any time, and we will respond within 30 days, subject to legal obligations.

9. Cookies

We use essential cookies to operate the platform and maintain login sessions.

We use analytical cookies to understand how visitors use our website and improve their experience.

You can manage cookie settings through your browser. Disabling some cookies may affect platform functionality.

We do not use third-party advertising cookies.

10. Your Rights

Under applicable regulations, you have the right to:

Access: Request a copy of the personal data we hold about you.

Correction: Request correction of any inaccurate or incomplete data.

Deletion: Request deletion of your personal data, subject to legal obligations.

Restriction: Request restriction of processing your data in certain circumstances.

Portability: Request transfer of your data in a machine-readable format.

Objection: Object to processing of your data for certain purposes.

To exercise any of these rights, contact us at support@whatsloop.com and we will respond within 30 days.

11. Children's Protection

WhatsLoop services are not directed to individuals under 18 years of age.

We do not knowingly collect personal data from children.

If we learn that we have collected data from an individual under 18, we will take immediate steps to delete it.

If you are a parent or guardian and believe your child has provided personal data to us, contact us to take appropriate action.

12. Personal Data Protection Law Compliance

We comply with the provisions of the Personal Data Protection Law (PDPL) in the Kingdom of Saudi Arabia by:

Obtaining user consent before collecting and processing their personal data.

Defining clear and legitimate purposes for data collection and adhering to them.

Not retaining data longer than required by the purpose of collection.

Providing appropriate measures to protect data from unauthorized access or leakage.

Notifying competent authorities and affected individuals in case of data breaches as required by law.

Appointing a data protection officer to oversee compliance.

13. Changes

WhatsLoop reserves the right to modify the privacy policy at any time.

In case of material changes, we will notify you via the registered email or through a prominent notice on the platform.

Your continued use of the platform after posting modifications constitutes acceptance of the updated policy.

We recommend reviewing this policy periodically to stay informed of any updates.

For any inquiries about the privacy policy, contact us at support@whatsloop.com.

Your business deserves smarter communication with WhatsLoop

Thousands of businesses rely on WhatsLoop to manage communication, automate sales, and elevate customer service. Get started today and see the difference from day one.

Start Now
  • Setup in minutes
  • Fully encrypted data
  • 24/7 technical support
  • Official Meta-verified WhatsApp
  • Connects with thousands of apps & platforms
Chat with us on WhatsApp