Legal

Privacy Policy

Last updated: 2 July 2026

This Privacy Policy explains what information Wonestop collects, how we use and share it, and the choices and rights you have. It applies to the Wonestop platform operated by Sagar Tech – Technical Solutions.

01Who we are

Wonestop is a SaaS product owned and operated by Sagar Tech – Technical Solutions, a partnership firm registered in India.

Registered address: Dhudwala Complex, D/1304, Bellasis Rd, RBI Staff Colony, Mumbai Central, Mumbai, Maharashtra 400008

Contact email: [email protected]

Phone: +91 98203 88810

We are the data controller for account and billing information you provide to us, and a data processor for the customer/contact data you upload and the messages you send through the Platform (where you are the controller).

02The information we collect

2.1 Information you provide to us (account & business data)

  • Account details: name, business name, email address, phone number, password (stored in hashed form).
  • WhatsApp Business account details: WhatsApp Business Account ID, phone number ID, display name, and access tokens you connect through Meta.
  • Team member details: names, email addresses, and roles/permissions of teammates you invite.
  • Support communications: information you share when you contact us.

2.2 Customer / contact data you upload ("Your Data")

When you use Wonestop, you upload and process data about your own customers and contacts, such as:

  • Contact names, phone numbers, tags, custom fields, and list memberships;
  • Message content, templates, forms and flow responses, and conversation history;
  • Delivery, read, and engagement status of messages.

You are responsible for this data and for having a lawful basis (including consent and opt-in, as required by WhatsApp/Meta and applicable law) to process it. We process Your Data only to provide the Platform to you, on your instructions.

2.3 Payment information

When you purchase message credits, payments are processed by our payment gateway, Razorpay Software Private Limited ("Razorpay"). We collect and store:

  • Transaction amount, GST, currency, number of credits purchased, invoice ID, payment status, and buying rate;
  • Razorpay order and payment identifiers.

We do not store your full card, UPI, or bank credentials. Those are collected and processed directly by Razorpay under its own privacy policy and PCI-DSS-compliant systems. See Razorpay's privacy policy at razorpay.com/privacy.

2.4 Information collected automatically

  • Usage and log data: IP address, browser type, device information, pages viewed, and actions taken on the Platform.
  • Cookies and similar technologies: used to keep you logged in, remember preferences, and measure usage.
  • Analytics: we use Google Analytics (Google Tag Manager) to understand site usage. This may set cookies and collect device/usage data governed by Google's privacy policy.

03How we use information

We use information to:

  • Create and manage your account and authenticate you;
  • Provide, operate, and maintain the Platform's features (broadcasts, inbox, automation, flows, forms, templates, AI chatbot, contact management, team management);
  • Process payments, add message credits to your wallet, issue GST invoices, and maintain billing history;
  • Send transactional communications (OTPs, verification emails, invoices, service notices);
  • Provide customer support and respond to your requests;
  • Monitor, secure, debug, and improve the Platform;
  • Detect and prevent fraud, abuse, and violations of our Terms or of WhatsApp/Meta policies;
  • Comply with legal obligations.

We do not sell your personal information or Your Data.

05How we share information

We share information only as needed to run the Platform:

  • Meta / WhatsApp: message content, recipient numbers, and template data are transmitted to the Meta WhatsApp Business Platform (Cloud API) to deliver your messages. Your use is also subject to Meta's/WhatsApp's terms and policies.
  • Razorpay: payment and billing data, to process transactions and issue invoices.
  • Service providers / sub-processors: hosting, database, email delivery (for transactional email), and analytics providers who process data on our behalf under confidentiality obligations.
  • Third-party integrations you enable: e.g. Shopify or WooCommerce webhooks, or your own systems via our Developer API — data flows only where you configure it.
  • AI features: if you enable the AI WhatsApp Chatbot with your own AI provider key (e.g. OpenAI), relevant message content is sent to that provider to generate responses, governed by that provider's terms. This is optional and controlled by you.
  • Legal and safety: where required by law, court order, or to protect our rights, users, or the public.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, subject to this Policy.

06Data retention

  • Account and billing records are retained for as long as your account is active and thereafter as required for tax, accounting, and legal purposes (e.g. GST/invoice records under Indian law).
  • Your Data (contacts, messages) is retained while your account is active. On account closure, you may request deletion; we will delete or de-identify it within a reasonable period, except where retention is legally required.
  • Message credits you have purchased do not expire; they remain in your paid wallet until used (see the Terms of Service). Complimentary/free credits may reset periodically.

07Data security

We use reasonable technical and organisational measures to protect information, including encrypted transport (HTTPS), hashed passwords, access controls, and signature verification for payments. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

08Your rights and choices

Subject to applicable law, you may:

  • Access, correct, or update your account information from your dashboard or by contacting us;
  • Request deletion of your personal data;
  • Export your contact data;
  • Withdraw consent where processing is based on consent;
  • Opt out of non-essential cookies/analytics via your browser settings.

To exercise these rights, contact us at [email protected]. We may need to verify your identity before acting on a request.

Your customers' rights: requests from your contacts (data subjects whose data you uploaded) should be directed to you as the controller; we will assist you as your processor.

09Children

The Platform is intended for businesses and is not directed to individuals under 18. We do not knowingly collect personal data from children.

10International transfers

Data may be processed on servers located in India or other countries where our service providers operate. Where data is transferred across borders, we take steps to ensure an appropriate level of protection consistent with applicable law.

11Grievance Officer (India)

In accordance with the Information Technology Act, 2000 and applicable rules, and the Digital Personal Data Protection Act, 2023, you may contact our Grievance Officer:

Email: [email protected]

Address: Sagar Tech – Technical Solutions, Dhudwala Complex, D/1304, Bellasis Rd, RBI Staff Colony, Mumbai Central, Mumbai, Maharashtra 400008

We will acknowledge grievances within the timelines prescribed by applicable law.

12Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated version here with a revised "Last updated" date, and where changes are material, notify you by email or in-app. Continued use after changes constitutes acceptance.

13Contact us

Questions about this Policy or our data practices: Sagar Tech – Technical Solutions · [email protected] · +91 98203 88810 · Mumbai, India.

Chat with us