Privacy Policy - WappNest

Last Updated: February 27, 2026
Data Controller: BRANDNEST SRL (CUI: RO50780530)

1. Introduction

BRANDNEST SRL ("we", "us", "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our WhatsApp Business platform Wappnest ("Service").

Our Service offers two solutions: the official WhatsApp Business API for enterprises and Quick Connect for small businesses. This policy applies to both solutions.

We process personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller Information

Company Name	BRANDNEST SRL
Tax ID (CUI)	RO50780530
Address	Corvinilor 5, bl. Corp D, ap. 8, Satu Mare, Romania
Email	contact@wappnest.com

3. Data We Collect

3.1 Account Information

Full name
Email address
Phone number
Password (encrypted)
Company name and billing information (for business accounts)

3.2 WhatsApp Data

For WhatsApp Business API users:

Business profile information and verification documents
Template messages and approval status
Conversation history and delivery reports

For Quick Connect users:

WhatsApp phone number(s) you connect via QR code
Messages sent and received through our platform
Contact lists and groups you manage
Media files you upload or receive

3.3 Technical Data

IP address
Browser type and version
Device information
Usage logs and analytics

3.4 Payment Data

Billing address
Payment transaction records (processed securely by our payment provider)

4. Legal Basis for Processing

We process your personal data based on the following legal grounds (Article 6 GDPR):

Purpose	Legal Basis
Account creation and service delivery	Contract performance
Payment processing and invoicing	Contract performance & Legal obligation
Customer support	Contract performance & Legitimate interest
Service improvement and analytics	Legitimate interest
Marketing communications	Consent
Legal compliance	Legal obligation

5. How We Use Your Data

To provide and maintain the Service
To process your transactions and send invoices
To communicate with you about your account and the Service
To provide customer support
To detect and prevent fraud or abuse
To improve our Service
To comply with legal obligations

6. Data Sharing

We may share your data with:

Service Providers: Payment processors (MyPOS), invoicing (Oblio), hosting providers
WhatsApp/Meta: When you connect your WhatsApp account
Legal Authorities: When required by law or to protect our rights

We do NOT sell your personal data to third parties.

7. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When this happens, we ensure appropriate safeguards are in place, including:

EU Standard Contractual Clauses
Adequacy decisions by the European Commission

8. Data Retention

Data Type	Retention Period
Account data	Duration of account + 3 years
Message history	90 days (configurable)
Invoices and billing records	10 years (legal requirement)
Support tickets	3 years
Technical logs	30 days

9. Your Rights (GDPR)

Under GDPR, you have the following rights:

Right of Access (Art. 15): Request a copy of your personal data
Right to Rectification (Art. 16): Correct inaccurate data
Right to Erasure (Art. 17): Request deletion of your data ("right to be forgotten")
Right to Restriction (Art. 18): Limit how we process your data
Right to Data Portability (Art. 20): Receive your data in a portable format
Right to Object (Art. 21): Object to processing based on legitimate interest
Right to Withdraw Consent (Art. 7): Withdraw consent at any time

To exercise any of these rights, contact us at contact@wappnest.com. We will respond within 30 days.

10. Data Security

We implement appropriate technical and organizational measures to protect your data:

SSL/TLS encryption for all data in transit
Encrypted database storage
Regular security audits
Access controls and authentication
European server infrastructure

11. Cookies

We use cookies and similar technologies. For details, please see our Cookie Policy.

12. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service.

14. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. In Romania, this is:

Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP)
Website: www.dataprotection.ro

15. Contact Us

For any privacy-related questions or to exercise your rights:

Email: contact@wappnest.com
Address: Corvinilor 5, bl. Corp D, ap. 8, Satu Mare, Romania