Privacy Policy

Last updated: 2026-05-14

1. Who we are

iAdam ("we", "us") operates the WhatsApp Business Platform service available at wa.iadam.nl. We are an official Tech Provider with Meta Platforms Ireland Limited.

2. What data we process

• Account data you provide on sign-up: email, name, password (stored bcrypt-hashed), workspace name.
• Meta credentials: business access tokens granted by you through the Embedded Signup flow. These are encrypted with AES-256-GCM at rest.
• WhatsApp messages sent to or from your connected phone numbers. Stored encrypted at rest, retained for 13 months unless you request deletion sooner.
• Operational logs: IP addresses, user agents, timestamps of authentication and credential events. Retained 24 months for security forensics.

3. Why we process it

• To provide the contracted service (Art. 6(1)(b) GDPR).
• To meet legal obligations including Meta's platform terms.
• For security monitoring and fraud prevention.

4. Sub-processors

• Meta Platforms Ireland Ltd. — message delivery infrastructure
• Stripe Payments Europe Ltd. — billing
• Hosting provider on EU infrastructure

5. Your rights (GDPR)

Access, rectification, erasure, restriction, portability, objection. Email privacy@iadam.nl. We respond within 30 days.

6. Data deletion

Meta-initiated deletion requests are processed via our /api/meta/data-deletion endpoint. You may also delete your workspace from the dashboard at any time.

7. Contact

Data Protection contact: privacy@iadam.nl