Trust

Security practices for business messaging.

WAchat uses minimum necessary access, clear data retention, and operational controls for WhatsApp Business Platform workflows.

Role-based access, admin-managed users, and workspace separation for each onboarded business.

TLS in transit, encrypted secrets, token rotation procedures, and limited storage of identifiers and message metadata.

AUD

Operational logs for onboarding, token exchange, template actions, outbound messages, and webhook events.

CON

Businesses must collect valid opt-in before sending messages and must honor opt-out requests.

DEL

Customers can request deletion through the public Data Deletion page.

INC

Security issues can be sent to security@serves.in and are reviewed as soon as possible.