Straightforward compliance for WhatsApp automation.

Meta WhatsApp Business policies

WapiSnap enforces Meta's core rules by design: templates must be approved before broadcasts, the 24-hour customer service window is respected for free-form messages, and opt-out handling is built into the inbox. Your WABA stays with you — you remain the controller of your business account at Meta's end.

GDPR and data protection

We treat customer data as sacred. Only the minimum necessary data is stored (WhatsApp IDs, message content, conversation metadata), encrypted where it matters (API tokens at rest with AES-256-GCM), and scoped by workspace. We don't sell data, share it across customers, or use your conversations to train models.

• Right to access — export all your workspace data on request.
• Right to erasure — deletion of your workspace removes all associated data.
• Data portability — structured export via CSV/JSON is available.

Data processing

We act as a data processor for the customer data you put into WapiSnap. You remain the data controller. A Data Processing Addendum (DPA) is available on request for customers who need one for their own compliance programme — reach out via the contact form and we'll share it.

Customer opt-out and consent

You are responsible for obtaining consent before contacting your customers on WhatsApp. We help you honour opt-outs via tagging and flow logic — when a contact replies with a stop word, a flow can tag them "opted-out" and exclude them from future broadcasts. This is your responsibility to configure correctly; we provide the plumbing.