Data minimisation
BotLinkd collects and processes data needed to operate accounts, messaging, support, security, billing and requested integrations.
Data protection and transparency
This Privacy Policy explains how BotLinkd collects, uses, shares, protects and retains personal and business data across the BotLinkd website, business messaging platform, Android application, connected integrations and support services.
Last updated:
BotLinkd collects and processes data needed to operate accounts, messaging, support, security, billing and requested integrations.
Business customers control the customer contacts, messages and business content they submit to BotLinkd.
BotLinkd does not sell personal information for monetary consideration.
Verified account and data deletion requests are handled subject to legal, security, fraud, billing and operational retention requirements.
BotLinkd is an independent business messaging platform built on the official WhatsApp Business Platform Cloud API. BotLinkd is not owned or operated by Meta. Use of WhatsApp and connected third-party services is also subject to the privacy terms and policies of those providers.
This policy applies to personal data processed through:
This policy does not replace the privacy notice of a BotLinkd business customer. Businesses using BotLinkd remain responsible for providing appropriate notices and obtaining required permissions from their own customers, contacts, employees and other data subjects.
BotLinkd may act in different privacy roles depending on the data and processing activity:
Enterprise customers may contact BotLinkd to discuss data-processing terms relevant to their account and use case.
The categories depend on the products and features used.
BotLinkd does not intentionally store complete payment-card details when payment is handled by an external payment processor.
BotLinkd may receive data:
BotLinkd uses data to:
Where applicable law requires a legal basis, processing may rely on performance of a contract, legitimate interests, consent, compliance with legal obligations or another basis permitted by law.
BotLinkd connects eligible businesses to the official WhatsApp Business Platform Cloud API. Message delivery and related platform events involve Meta and are subject to Meta and WhatsApp terms, privacy practices and technical requirements.
Business customers are responsible for:
BotLinkd does not own customer contacts or message content submitted by a business customer. Access and use are limited to operating, securing, supporting and improving the contracted service, complying with customer instructions and meeting legal or platform obligations.
Learn more from Meta’s official WhatsApp Business Platform privacy and security documentation.
When a customer enables AI features, BotLinkd may process message content, conversation history, instructions, uploaded documents and approved business knowledge to generate responses, summaries, classifications or other requested outputs.
Depending on the configured feature, selected content may be processed by an AI infrastructure or model provider acting as a service provider. Provider, region and enterprise data-handling options may vary by configuration. Customers with specific requirements should contact BotLinkd before enabling the feature.
This policy applies to the BotLinkd Chat Android application, including its WebView-based access to chat.botlinkd.com.
Depending on the application version and configuration, the app may use Google Mobile Ads, Firebase and Google Play services. These services may process data such as:
Google processes data under its own terms and privacy policy. Advertising may be personalised or non-personalised depending on consent, user settings, legal requirements and app configuration. Users may manage advertising and privacy settings through their device and Google account controls.
Review the Google Privacy Policy and Google’s explanation of data from partner apps and sites.
When a merchant installs or connects the BotLinkd Shopify app, BotLinkd may process store, order, product, customer and configuration data required to provide the WhatsApp notifications and workflows requested by that merchant.
Depending on permissions and features, this may include:
BotLinkd limits Shopify data use to providing, securing, supporting and improving the installed app and complying with legal or platform obligations. Merchants remain responsible for their store privacy notice, customer permissions and use of WhatsApp notifications.
Similar principles apply to CRM, WooCommerce, OpenCart, Magento, WHMCS and other supported integrations: BotLinkd processes connected data only as needed for the configured workflow and authorised service.
BotLinkd may use cookies, local storage, pixels, tags and similar technologies for:
Browser controls can block or remove cookies, but essential functionality may not work correctly without required storage. Where legally required, BotLinkd may request consent before enabling non-essential analytics or advertising technologies.
BotLinkd does not disclose data indiscriminately. Data may be shared with:
Service providers are expected to process data only for authorised purposes and under applicable contractual, security and confidentiality obligations.
The Android app or website may use analytics, advertising or measurement services. Under some privacy laws, certain disclosures of identifiers to advertising or analytics providers may be described as “sharing” or targeted advertising even when no money is received for personal information.
Where required, BotLinkd will provide applicable consent, opt-out or settings controls. Users may also manage advertising identifiers, permissions and personalised-ad settings through their browser, device or Google account.
BotLinkd uses reasonable technical and organisational safeguards designed to protect data against unauthorised access, loss, misuse, alteration and disclosure. Measures may include:
No internet service can guarantee absolute security. Customers are responsible for protecting account credentials, limiting user permissions, maintaining secure devices and promptly reporting suspected account compromise.
BotLinkd retains data for as long as reasonably needed to provide the service, maintain security, resolve disputes, enforce agreements and meet legal, tax, accounting and compliance requirements.
Retention periods vary according to the data category:
Where an export feature is available, account administrators may export supported contacts, conversations or records from the dashboard.
A verified account or data deletion request can be submitted through the Data Deletion Instructions page or by contacting [email protected]. Eligible deletion requests are normally completed within 30 days after identity and authority are verified, except where data must be retained for legal, tax, billing, fraud, security, dispute or compliance purposes.
Deleting a BotLinkd account does not automatically delete data held independently by Meta, WhatsApp, Google, Shopify, payment providers or another connected service. Requests relating to those providers may need to be submitted directly to them.
BotLinkd and its service providers may process data in countries other than the country where a user or customer is located. Privacy laws and government-access rules may differ between jurisdictions.
Where required, BotLinkd uses contractual, organisational or other lawful safeguards intended to support international data transfers. Customers with data-location or transfer requirements should contact BotLinkd before purchasing or enabling relevant integrations.
Depending on location and applicable law, a person may have rights to:
BotLinkd may need to verify identity, account ownership or authority before acting on a request. Requests can be limited or declined where permitted by law, including where they affect another person’s rights, conflict with legal obligations or cannot be reliably verified.
When BotLinkd processes customer contact or message data solely on behalf of a business customer, the request should normally be directed first to that business. BotLinkd will support verified customer instructions where required.
BotLinkd is a business platform and is not directed to children. Users must have legal authority to enter into the applicable agreement and operate a business account.
Business customers must not knowingly use BotLinkd to collect or process children’s personal data without an appropriate lawful basis, required notices and parental or guardian permission where applicable. Contact BotLinkd if you believe children’s data has been submitted improperly.
BotLinkd may update this policy to reflect changes in services, technologies, integrations, legal requirements or provider rules. The latest version will be published on this page with an updated revision date.
Where appropriate, material changes may also be communicated through email, account notices or an in-product message. Continued use after an effective update is subject to the revised policy and applicable Terms & Conditions.
Contact BotLinkd for privacy questions, data requests, account deletion, security concerns or clarification about a connected service.
Include the registered account email, business name and a clear description of the request. Do not email passwords, complete payment-card details or unnecessary sensitive data.
Account and data controls
Review the deletion instructions or contact BotLinkd support with the registered account details needed to verify your request.