Privacy policy.
Last updated 24 May 2026. PromotionBot is GDPR-compliant. This page explains what we collect, why, and how long we keep it.
What we collect
- Account data — email, display name, password hash (bcrypt), timezone preference, org name.
- Linked WhatsApp account — phone number, profile name, and session login credentials (stored locally on the server).
- Messages you send — body, attachments, target groups, scheduled time. Retained 90 days for delivery + audit purposes, then auto-deleted.
- Messages you receive — when you enable the Monitor feature, incoming group messages that match your keyword filters. Retained 180 days.
- Click logs — when you opt into link tracking, the timestamp and country (geolocated from IP, never stored) of each click. Retained 180 days.
- Operational metadata — login IPs (for fail2ban / audit), API access logs (30 days), error logs (14 days).
What we don't collect
- Plain IP addresses of message recipients or link-clickers.
- The content of WhatsApp messages outside the groups you've configured for monitoring.
- Behavioural / advertising tracking. No third-party trackers, no Google Analytics, no Facebook Pixel.
How we use it
Strictly to deliver the service: deliver your messages, render your dashboard, send you billing emails, and respond to support requests. We do not sell, rent, or share your data with anyone except the processors listed below.
Sub-processors
- Creem.io (EU) — merchant of record. Handles checkout and stores your billing details (card number, billing address) under their own privacy policy. We receive only the subscription status, plan tier, and customer ID.
- Resend (US/EU) — transactional email delivery (signups, password resets, invites). They process recipient email + body for the duration of the send.
- Cloudflare (global) — tunnel/CDN in front of the app. Cloudflare may see request IPs for DDoS protection; they don't store request bodies.
Your rights (GDPR)
- Access — export everything we hold about you via the dashboard's Account → Export button or by emailing us.
- Correction — edit your profile, org name, and notification preferences from Settings.
- Deletion — close your account from the billing portal, or email us. We delete within 30 days.
- Objection / restriction — email [email protected].
Cookies
We use one essential cookie (connect.sid) to keep you signed in. No analytics, no advertising cookies. The theme toggle stores a preference in localStorage; this never leaves your browser.
Children
PromotionBot isn't intended for users under 16. We don't knowingly collect data from anyone under that age.
Changes
Material changes are announced via in-app banner and email at least 30 days before they take effect.
Contact
Email [email protected] with any privacy-related question. We respond within 7 days.