Operator: walink.world is operated by ABHISHAK MITTAL HUF ("we", "us"). WALink is our product brand. We provide B2B software subscriptions only; payments are processed by Razorpay. See also our Terms of Service and Cookie Policy.
1. Information We Collect
1.1 Personal Data
We collect personal information that you voluntarily provide to us when you:
- Register for an account (email address)
- Contact us through our support forms (name, email, phone number, message content)
- Make a purchase (billing information, transaction details)
- Create WhatsApp links (phone numbers, pre-filled messages)
- Sign up for newsletters or marketing communications
1.2 Usage Data
We automatically collect certain information when you visit, use, or navigate the Service. This information does not reveal your specific identity but may include:
- Device and browser information (IP address, browser type, operating system)
- Usage patterns (pages visited, time spent, clicks)
- Referring URLs and exit pages
- Approximate geographic location (country, city)
- Device identifiers and diagnostic data
1.3 Link Analytics Data
When your WhatsApp links are clicked or QR codes are scanned, we collect:
- Click/scan timestamps
- Device type and browser used by visitors
- Approximate geographic location of visitors
- Referrer information (where the visitor came from)
- Unique visitor identifiers (anonymized)
1.4 WhatsApp Content
When you create WhatsApp links, you may provide:
- Phone numbers (stored in our database for link functionality)
- Pre-filled message content
- Business names and branding information
Important: We do not store or access the actual WhatsApp conversations that occur after a link is clicked. Our Service only facilitates the connection to WhatsApp.
2. How We Use Your Information
2.1 Service Provision
We use your information to:
- Create and manage your WhatsApp links and QR codes
- Provide analytics and statistics for your links
- Process your payments and maintain billing records
- Provide customer support and respond to inquiries
- Send important service-related notifications
- Authenticate your identity for account access
2.2 Analytics and Improvement
We use aggregated usage data to:
- Understand how users interact with our Service
- Identify trends and improve user experience
- Monitor and analyze usage patterns
- Develop new features and functionality
- Troubleshoot technical issues
2.3 Communication
We may use your contact information to:
- Respond to your inquiries and support requests
- Send transactional emails (payment confirmations, account updates)
- Send marketing communications (only with your consent)
- Send important legal or policy updates
You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or contacting us directly.
2.4 Legal Compliance
We may use or disclose your information to:
- Comply with applicable laws and regulations
- Respond to legal process or government requests
- Enforce our Terms and Conditions
- Protect our rights, property, or safety
- Prevent or investigate fraud or abuse
3. Data Storage & Security
3.1 Data Storage
Your data is stored securely using:
- MongoDB Atlas: For secure database storage with automatic backups
- Cloud Infrastructure: Hosted on secure cloud servers with redundancy
- Geographic Distribution: Data centers in secure locations with compliance certifications
3.2 Security Measures
We implement comprehensive security measures including:
- Encryption: All data in transit uses TLS/SSL encryption (HTTPS). Sensitive data at rest is encrypted using industry-standard algorithms.
- Access Controls: Role-based access controls limit who can access your data. Multi-factor authentication for administrative access.
- Regular Security Audits: We conduct periodic security assessments and vulnerability scans.
- Monitoring: 24/7 monitoring for suspicious activities and potential breaches.
3.3 Data Retention
We retain your information for as long as necessary to:
- Provide our Service to you
- Comply with legal obligations
- Resolve disputes
- Enforce our agreements
Specific retention periods:
- Active accounts: Data retained while your account is active
- Deleted accounts: Data removed within 30 days of account deletion (except where legally required)
- Payment records: Retained for 7 years for tax and legal compliance
- Analytics data: Aggregated data may be retained indefinitely (anonymized)
3.4 Data Breach Procedures
In the event of a data breach, we will:
- Notify affected users within 72 hours of discovery
- Report to relevant authorities as required by law
- Take immediate steps to contain and remediate the breach
- Provide guidance on protective measures you can take
4. Third-Party Services
4.1 Service Providers
We may share your information with trusted third-party service providers who assist us in operating our Service:
| Provider | Purpose | Data Shared |
|---|---|---|
| Cloudflare | CDN, DDoS protection, security | IP addresses, usage data |
| Render/Cloud Hosting | Server hosting, infrastructure | All service data (encrypted) |
| MongoDB Atlas | Database hosting | User data, link data |
| Razorpay | Subscription and payment processing | Billing name, email, transaction IDs (we do not store full card numbers) |
| Email Service Providers | Transactional emails | Email addresses, message content |
| Analytics Providers | Usage analytics | Anonymized usage data |
4.2 WhatsApp Integration
Our Service integrates with WhatsApp (owned by Meta Platforms, Inc.). When users click your WhatsApp links, they are directed to WhatsApp, which operates under its own privacy policy. We are not responsible for WhatsApp's data practices.
4.3 Analytics and Cookies
We use third-party analytics tools (such as Google Analytics) to understand how visitors use our site. These services may use cookies and similar technologies to collect information about your browsing behavior.
4.4 Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).
6. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
6.1 Right to Access
You have the right to request copies of your personal data. We may charge a small fee for this service if requests are excessive.
6.2 Right to Rectification
You have the right to request that we correct any information you believe is inaccurate or incomplete.
6.3 Right to Erasure (Right to be Forgotten)
You have the right to request that we erase your personal data, under certain conditions. This includes:
- Deleting your account and all associated data
- Removing specific links or content you've created
- Unsubscribing from marketing communications
6.4 Right to Restrict Processing
You have the right to request that we restrict the processing of your personal data, under certain conditions.
6.5 Right to Object to Processing
You have the right to object to our processing of your personal data, under certain conditions.
6.6 Right to Data Portability
You have the right to request that we transfer the data we have collected to another organization, or directly to you, in a structured, commonly used, machine-readable format.
6.7 Right to Withdraw Consent
Where we rely on consent to process your data, you have the right to withdraw that consent at any time.
6.8 Exercising Your Rights
To exercise any of these rights, please contact us at hello@propotech.com with the subject line "Privacy Rights Request." We will respond within 30 days.
7. GDPR Compliance (for EU Users)
For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR).
7.1 Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Contractual Necessity: Processing necessary to fulfill our contract with you (providing the Service)
- Consent: Where you have given explicit consent (e.g., marketing emails)
- Legitimate Interests: Processing necessary for our legitimate business interests (e.g., analytics, security)
- Legal Obligation: Processing necessary to comply with legal requirements
7.2 Data Transfers
As an India-based company, we may transfer your data outside the EEA. When we do, we ensure appropriate safeguards are in place:
- Standard Contractual Clauses approved by the European Commission
- Data processing agreements with third-party providers
- Adequate protection in recipient countries where applicable
7.3 Data Protection Officer
While we are not legally required to appoint a Data Protection Officer (DPO) under GDPR Article 37, we have designated a privacy team to handle all data protection matters. Contact them at hello@propotech.com.
7.4 Right to Lodge a Complaint
You have the right to lodge a complaint with a supervisory authority in your EU member state if you believe our processing of your personal data violates GDPR.
8. Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.
If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us immediately at hello@propotech.com. If we become aware that we have collected personal information from children under 13 without verification of parental consent, we will take steps to remove that information from our servers.
For users between 13 and 16 years of age, we recommend parental guidance when using our Service and creating links that may be publicly accessible.
9. Contact for Privacy Concerns
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Privacy Team Email: hello@propotech.com
- General Support: hello@propotech.com
- Postal Address: ABHISHAK MITTAL HUF, Cyber City, Gurgaon, Haryana - 122002, India
We aim to respond to all privacy-related inquiries within 48 hours.