Privacy Policy for Monggo Pinarak

Last Updated: 12 October 2025

1. Introduction

Monggo Pinarak ("we," "our," or "us") provides messaging services via the WhatsApp Business API. This Privacy Policy explains how we collect, use, store, and protect your personal information.

2. Information We Collect

2.1 Information You Provide

• Phone numbers
• Contact names
• Message content
• Business profile information

2.2 Automatically Collected Information

• Message metadata (timestamps, delivery status)
• Device information
• Usage analytics

3. How We Use Your Information

We use your information to:

• Deliver messages via WhatsApp Business API
• Provide customer support
• Improve our services
• Comply with legal obligations

4. WhatsApp Business API Integration

We use the official WhatsApp Business API provided by Meta Platforms, Inc. Messages sent through our platform are subject to:

• WhatsApp's Terms of Service
• WhatsApp's Privacy Policy

Important: While WhatsApp provides end-to-end encryption for messages, we may have access to message content as part of our service delivery.

5. Data Sharing and Disclosure

We do NOT sell your personal information. We may share data with:

• WhatsApp/Meta: To deliver messages via their API
• Cloud Service Providers: [AWS/Google Cloud/Azure] for hosting
• Analytics Providers: [If applicable]
• Legal Authorities: When required by law

6. Data Storage and Security

6.1 Storage Location

Your data is stored on secure servers located in Indonesia.

6.2 Security Measures

• Encryption in transit (TLS/SSL)
• Encryption at rest (AES-256)
• Access controls and authentication
• Regular security audits

6.3 Data Retention

• Active messages: Retained for 30 days after delivery
• Account data: Retained while account is active + 90 days after account closure
• Deleted data: Permanently removed within 30 days of deletion request
• Backup data: Retained for 90 days in encrypted backups
• Logs and analytics: Retained for 12 months for security and service improvement

7. Your Rights

You have the right to:

• Access: Request a copy of your data
• Correction: Update inaccurate information
• Deletion: Request deletion of your data
• Portability: Receive your data in a machine-readable format
• Objection: Object to certain data processing

To exercise these rights, contact us at: privacy@dwiky.my.id

8. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA):

• Legal basis for processing: Consent, Contract, Legitimate Interest
• Right to lodge a complaint with supervisory authority

9. CCPA Compliance (California Users)

California residents have additional rights under CCPA:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale (we do not sell data)

10. Children's Privacy

Our services are not intended for users under 13 (or 16 in the EU). We do not knowingly collect data from children.

11. International Data Transfers

If you are located outside Indonesia, your data may be transferred to and processed in [Your Country]. We ensure adequate safeguards through:

• Standard Contractual Clauses (SCCs)
• Privacy Shield (if applicable)

12. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Updated" date.

13. Contact Us

For privacy-related questions or requests:

Monggo Pinarak
Address: Jakarta, Indonesia
Email: privacy@dwiky.my.id
Website: dwiky.my.id

---

Effective Date: 12 October 2025