Skip to main content

Privacy Policy

Effective Date: January 1, 2025•Last Updated: January 23, 2025

Our Commitment to Your Privacy

At Saga Labs, we take your privacy seriously. This policy explains how we collect, use, and protect your information when you use our WhatsApp AI Assistant platform.

1. Information We Collect

Account Information

  • Name and email address
  • Password (encrypted using industry-standard methods)
  • Authentication credentials (including WebAuthn/Passkey data)
  • Account verification tokens

Business Information

  • Company name and details
  • Business phone numbers and addresses
  • Industry and business type
  • Business hours and timezone
  • Subscription tier and billing information

WhatsApp Integration Data

  • WhatsApp Business Account (WABA) identifiers
  • Phone number verification status
  • Access tokens (encrypted)
  • Webhook configuration

Customer Conversation Data

  • Customer phone numbers and names
  • Message content and metadata
  • Conversation history and context
  • Customer interaction patterns

AI Assistant Configuration

  • Agent persona settings and personality
  • Custom instructions and responses
  • Communication style preferences
  • FAQ items and knowledge base content

Technical Data

  • IP addresses and device information
  • Browser type and version
  • Usage patterns and analytics
  • Error logs and debugging information

2. How We Use Your Information

We use the information we collect to:

  • Provide our services: Enable your AI assistant to respond to customer inquiries via WhatsApp
  • Account management: Authenticate users and manage account access
  • Service improvement: Analyze usage patterns to enhance our platform
  • Customer support: Respond to your inquiries and provide technical assistance
  • Security: Detect and prevent fraud, abuse, and unauthorized access
  • Legal compliance: Meet our legal obligations and enforce our terms of service
  • Communication: Send service updates, security alerts, and important notices

3. Data Storage and Security

Security Measures

  • Encryption: All sensitive data is encrypted using multi-layer, company-specific encryption keys
  • Row Level Security (RLS): Complete tenant isolation ensures your data is separated from other users
  • Secure Storage: API keys, tokens, and credentials are stored using industry-standard encryption
  • Access Controls: Strict authentication and authorization mechanisms
  • Regular Audits: Comprehensive logging and monitoring of all data access

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

4. Third-Party Services

We integrate with select third-party services to provide our platform functionality:

Meta/WhatsApp

For WhatsApp Business API integration and message delivery

OpenAI/LLM Providers

For AI language processing and response generation

Google Calendar (Optional)

For calendar integration and scheduling features

Supabase

For database and storage infrastructure

ChatWoot (Optional)

For customer support dashboard integration

These services have their own privacy policies and we encourage you to review them.

5. Your Rights

Under applicable data protection laws (including GDPR and LGPD), you have the following rights:

Right to Access

Request a copy of the personal data we hold about you

Right to Rectification

Correct any inaccurate or incomplete personal data

Right to Erasure

Request deletion of your personal data in certain circumstances

Right to Data Portability

Receive your data in a structured, machine-readable format

Right to Object

Object to certain types of processing of your personal data

To exercise any of these rights, please contact us using the information provided below.

6. Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations.

  • Account data: Retained while your account is active
  • Conversation data: Retained according to your subscription plan and preferences
  • Technical logs: Retained for up to 90 days for security and debugging purposes
  • Billing records: Retained as required by applicable tax and accounting laws

You may request deletion of your data at any time, subject to our legal obligations to retain certain information.

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and authentication state
  • Remember your preferences and settings
  • Analyze usage patterns to improve our service
  • Ensure security and prevent fraud

You can control cookies through your browser settings, but disabling certain cookies may limit functionality.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses approved by data protection authorities
  • Ensuring recipients maintain appropriate security measures
  • Compliance with applicable data transfer regulations

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.

10. Updates to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date at the top of this policy
  • Sending you an email notification (for material changes)

We encourage you to review this policy periodically.

11. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

Saga Labs

Email: privacy@sagalabs.ai

Support: support@sagalabs.ai

For data protection inquiries or to exercise your rights, please include "Privacy Request" in your email subject line.