Industrial IoT Solution for Smarter Manufacturing Operations
Welcome to the Arthix Privacy Policy. Arthix is a Software-as-a-Service platform operated by Arthix Technologies, based in Surat, Gujarat, India. We provide businesses with tools to manage their WhatsApp Business API communications, including message broadcasting, workflow automation, contact management, and real-time analytics.
This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our website, web application, APIs, and related services. It applies to all users of the Arthix platform, including account administrators, team members, and visitors to our website.
By creating an account or using any part of the Arthix platform, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our data practices as described here, please do not use our services. We encourage you to review this policy periodically, as it may be updated from time to time to reflect changes in our practices or applicable regulations.
Personal Information: When you register for an Arthix account, we collect your name, business email address, company name, phone number, and billing information. If you invite team members, we collect their names and email addresses. We may also collect information you voluntarily provide when contacting our support team or participating in surveys.
Usage Data: We automatically collect information about how you interact with our platform, including pages visited, features used, workflow configurations created, campaigns sent, login timestamps, session duration, and click patterns. This data helps us understand how our platform is being used and identify areas for improvement.
Device and Technical Information: When you access Arthix, we collect device-level information such as your IP address, browser type and version, operating system, screen resolution, time zone, and language preferences. This information is used for security monitoring, fraud prevention, and optimizing the platform experience for your device.
Cookies and Similar Technologies: We use cookies, local storage, and similar tracking technologies to maintain your session, remember your preferences, analyze traffic patterns, and deliver relevant content. For more details on the specific cookies we use and how to manage them, please refer to Section 9 of this policy.
Service Delivery: We use your information primarily to provide, maintain, and improve the Arthix platform. This includes processing your WhatsApp messages through Meta's Cloud API, managing your contact databases, executing automated workflows, generating analytics reports, and facilitating team collaboration within your organization's shared inbox.
Platform Improvement: We analyze aggregated and anonymized usage data to understand how businesses use our features, identify performance bottlenecks, prioritize product development, and enhance the overall user experience. We may use this data to develop new features, optimize existing workflows, and improve our onboarding processes.
Communication: We use your email address and, where applicable, your phone number to send you essential service communications such as account verification emails, billing receipts, security alerts, and platform update notifications. With your consent, we may also send you marketing communications about new features, tips, and promotional offers. You can opt out of marketing emails at any time.
Legal Compliance: We may process your information as required to comply with applicable laws, regulations, and legal processes, including responding to lawful requests from public authorities, enforcing our Terms and Conditions, protecting against fraudulent or illegal activity, and safeguarding the rights, property, and safety of Arthix, our users, and the public.
As a platform built on the WhatsApp Business API, Arthix processes certain messaging data on your behalf. This includes the content of messages you send and receive through our platform, phone numbers of your WhatsApp contacts, conversation metadata such as timestamps, delivery and read receipts, and media files shared within conversations. We act as a Data Processor for this information, meaning we process it solely on your instructions and for the purpose of providing our services to you.
Message content is transmitted through Meta's Cloud API infrastructure using end-to-end encryption in transit. We store conversation logs and contact data in your organization's isolated database schema to enable features like the shared inbox, analytics, and workflow triggers. We do not independently mine, analyze, sell, or share the content of your WhatsApp conversations with any third parties for their own purposes.
Our handling of WhatsApp Business API data strictly adheres to Meta's Platform Terms, Business Messaging Policy, and Commerce Policy. You, as the business account holder, remain the Data Controller for your customer conversations and are responsible for obtaining appropriate consent from your end users before messaging them through the platform. We provide tools to help you manage opt-in and opt-out preferences within your contact lists.
Third-Party Service Providers: We share your information with carefully selected third-party service providers who assist us in operating the Arthix platform. These include cloud hosting providers for infrastructure, payment processors for billing, email delivery services for transactional notifications, and analytics platforms for monitoring service performance. All third-party providers are contractually obligated to protect your data and may only process it in accordance with our instructions.
Meta and WhatsApp: By using Arthix, your WhatsApp messaging data is processed through Meta's Cloud API infrastructure. Meta's handling of this data is governed by their own privacy policies and terms of service. We encourage you to review Meta's privacy documentation to understand how they process data on their end.
Legal Requirements: We may disclose your information if required to do so by law, regulation, or valid legal process, such as a court order or government request. We may also disclose information when we believe in good faith that disclosure is necessary to protect our rights, prevent fraud, address security concerns, or protect the safety of our users or the public.
Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your information.
We retain your personal information and account data for as long as your Arthix account is active or as needed to provide you with our services. If you choose to close your account, we will delete or anonymize your personal information within 90 days, except where we are required to retain certain data for legal, regulatory, or legitimate business purposes such as resolving disputes, enforcing our agreements, or complying with tax and accounting obligations.
WhatsApp conversation logs and contact data stored within your organization's database are retained for the duration of your active subscription. Upon account termination, this data is queued for permanent deletion and is purged from our systems within 90 days. Backup copies may persist in our encrypted backup infrastructure for an additional 30 days before being permanently destroyed.
Aggregated and anonymized data that cannot be used to identify you may be retained indefinitely for statistical analysis, product improvement, and research purposes. You may request earlier deletion of your data at any time by contacting our privacy team, and we will process your request in accordance with applicable data protection laws.
We implement robust technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. All data transmitted between your browser and our servers is encrypted using TLS 1.3 (Transport Layer Security). Data stored on our servers is encrypted at rest using AES-256 encryption, and database access is restricted through role-based access controls and multi-factor authentication for administrative access.
Our infrastructure is hosted on enterprise-grade cloud providers that maintain SOC 2 Type II compliance, ISO 27001 certification, and physical security controls including biometric access, 24/7 surveillance, and environmental protections. We conduct regular security audits, vulnerability assessments, and penetration testing to identify and remediate potential security risks.
We maintain real-time monitoring and alerting systems to detect suspicious activity, unauthorized access attempts, and potential data breaches. In the event of a confirmed data breach that affects your personal information, we will notify you and the relevant supervisory authorities within the timeframes required by applicable law, along with details of the breach and the steps we are taking to mitigate its impact.
Depending on your jurisdiction, you may have certain rights regarding your personal information. These rights may include the right to access your personal data and obtain a copy of the information we hold about you, the right to correct inaccurate or incomplete personal data, the right to request deletion of your personal information, the right to data portability and to receive your data in a structured and machine-readable format, and the right to object to or restrict certain processing activities.
If you are located in the European Economic Area (EEA) or the United Kingdom, you have rights under the General Data Protection Regulation (GDPR) and the UK GDPR respectively. If you are located in India, you have rights under the Digital Personal Data Protection Act. We are committed to honoring these rights regardless of your location, to the extent technically feasible and not in conflict with our legal obligations.
To exercise any of these rights, please contact our privacy team using the details provided in Section 13. We will respond to your request within 30 days. In some cases, we may need to verify your identity before processing your request. If you believe that we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection authority.
Arthix is headquartered in India, and your data is primarily stored on servers located in India and other regions where our cloud infrastructure providers operate. If you are accessing our services from outside India, please be aware that your information may be transferred to, stored, and processed in India or other countries where our servers or service providers are located.
When we transfer personal data across international borders, we ensure that appropriate safeguards are in place to protect your information in compliance with applicable data protection laws. These safeguards may include Standard Contractual Clauses approved by relevant authorities, adequacy decisions, binding corporate rules, or your explicit consent to the transfer.
Our cloud infrastructure providers maintain data centers across multiple geographic regions with certifications including SOC 2, ISO 27001, and GDPR compliance. Regardless of where your data is stored, we apply the same level of protection and security measures as described in this Privacy Policy.
The Arthix platform is designed for business use and is not directed at individuals under the age of 18. We do not knowingly collect, solicit, or maintain personal information from children under 18 years of age. If we become aware that we have collected personal information from a child under 18, we will take immediate steps to delete that information from our systems.
If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately using the details in Section 13. We will work with you to ensure the information is promptly removed and that the account, if any, is terminated.
We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or business operations. When we make material changes, we will notify you by posting the updated policy on our website with a new "Last updated" date, and for significant changes, we will provide additional notice through email or an in-app notification.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Arthix platform after the effective date of any changes constitutes your acceptance of the revised Privacy Policy. If you do not agree with any changes, you should discontinue use of our services and contact us to delete your account.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact our privacy team through any of the following channels:
Email: aiarthix@gmail.com
Address: 322-B,Deepkamal-1, Varachha Main Rd, near Zoo Nature Park, Sarthana Jakat Naka, Surat, Gujarat 395013
We aim to respond to all privacy-related inquiries within 30 days of receipt. For urgent security concerns or data breach reports, please include "URGENT" in the subject line of your email so that our team can prioritize your request accordingly.