Waslo

Privacy Policy

Last updated: February 7, 2026

Waslo ("we", "us", or "our") operates the Waslo platform at waslo.io. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

1. Information We Collect

Account Information

When you create an account we collect your name, email address, and password (hashed). If you sign in with Google OAuth we receive your Google profile name, email, and profile image.

WhatsApp Data

When you connect a WhatsApp number via QR code, we store the encrypted authentication state required to maintain the connection. We process incoming and outgoing WhatsApp messages to provide AI responses, lead classification, and conversation history. Message content is stored securely to power conversation features and is associated with your organization.

Lead Data

We store lead information including phone numbers, names, conversation history, classification status, and any data imported from Google Sheets or CRM integrations.

Usage Data

We automatically collect information about how you interact with the platform, including pages visited, features used, and timestamps.

2. How We Use Your Information

  • Provide, maintain, and improve the Waslo platform
  • Generate AI-powered responses to WhatsApp messages
  • Classify leads and trigger automated follow-ups
  • Send notifications via Telegram when configured
  • Sync data with Google Sheets and CRM webhooks as configured
  • Process billing and manage your subscription
  • Send service-related communications
  • Detect and prevent fraud or abuse

3. Third-Party Services

We may share limited data with trusted third-party service providers that help us operate the platform. These include services for:

  • AI processing — to generate responses and classify leads
  • Payment processing — to handle subscriptions and billing
  • Cloud hosting — to securely store and serve your data
  • Integrations you enable — such as Google Sheets and Telegram, which only activate when you configure them

Each third-party service has its own privacy policy. We only share the minimum data necessary for them to perform their function.

4. Data Storage and Security

Your data is stored in encrypted databases hosted on secure, enterprise-grade cloud infrastructure. WhatsApp authentication state is encrypted using industry-standard authenticated encryption. All data is transmitted over HTTPS/TLS. We implement rate limiting, security headers, and token-based authentication to protect access.

5. Data Retention

We retain your account and conversation data for as long as your account is active. If you delete your account, we will delete your personal data and conversation history within 30 days, except where we are required to retain it by law.

6. Data Isolation

Waslo is a multi-tenant platform. Each organization's data is strictly isolated — you can only access data belonging to your own organization. All queries are scoped by organization to prevent cross-tenant data access.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your lead and conversation data
  • Withdraw consent for data processing

To exercise any of these rights, contact us at hello@waslo.io.

8. Cookies

We use essential cookies for authentication and session management. We may use analytics cookies to understand platform usage. You can disable non-essential cookies through your browser settings.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy, please contact us at: hello@waslo.io