Inmedoc

Privacy Policy

Last updated: 20 February 2026

1. Introduction

Inmedoc ("we", "our", or "us") operates the inmedoc.com platform and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our WhatsApp Business SaaS platform. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

  • Name, email address, and phone number
  • Business name, subdomain, and workspace details
  • Login credentials (passwords are hashed and never stored in plain text)
  • Payment information processed through Razorpay (we do not store card details)

2.2 Usage Data

  • WhatsApp conversations and messages sent/received through the platform
  • Contact lists and customer data you upload or manage
  • Analytics data including message volumes, response times, and campaign metrics
  • Log data including IP addresses, browser type, and access timestamps

2.3 Cookies & Tracking

We use essential cookies for authentication and session management. We may use analytics cookies to improve our service. You can manage cookie preferences through our cookie consent banner.

3. How We Use Your Information

  • To provide and maintain our WhatsApp Business SaaS platform
  • To process payments and manage subscriptions via Razorpay
  • To send WhatsApp messages on your behalf through the Meta Business API
  • To provide AI-powered features (message suggestions, chatbot, auto-replies)
  • To generate analytics and reports for your workspace
  • To send transactional emails (verification, password reset, billing notifications)
  • To improve our services and fix technical issues

4. Data Isolation & Multi-Tenancy

All data is strictly isolated per workspace. Each workspace's contacts, conversations, messages, and settings are completely separated. No workspace can access another workspace's data. Our platform enforces workspace-level data isolation at the database query level.

5. Data Sharing

We do not sell your data. We share data only with:

  • Meta (WhatsApp): To deliver WhatsApp messages via the Business API
  • Razorpay: To process payments securely
  • AI providers: To power AI features (messages are processed without storing personal identifiers)
  • Email services: To send transactional emails via Mailgun

6. Data Security

We implement industry-standard security measures including: SSL/TLS encryption in transit, password hashing with bcrypt, JWT-based authentication with short-lived access tokens, rate limiting, input sanitization, and regular security audits. Data is stored on secured servers with restricted access.

7. Data Retention

We retain your data for as long as your account is active. Upon account deletion or workspace termination, we will delete your data within 30 days, except where retention is required by law. Backups are retained for up to 14 days and then permanently deleted.

8. Your Rights

You have the right to:

  • Access your personal data stored on our platform
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your data (contacts, conversations) in standard formats
  • Withdraw consent for non-essential data processing

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. Continued use of the platform after changes constitutes acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy or your data, please contact us at support@inmedoc.com.