Privacy Policy

Effective date: Jul 12, 2026

Omixo AI ("we", "us", "the Platform") provides communication services — WhatsApp messaging, voice/telephony, and AI assistants — to businesses ("Merchants"). This policy explains what personal data we process, why, and how we protect it. For data we process on a Merchant's behalf (their customers' data), the Merchant is the data controller and Omixo AI is the data processor; that relationship is governed by our Data Processing Agreement.

1. Personal data we process

We process the minimum data needed to deliver the service:

We process only what is required to provide value, we tell Merchants what we process and why, and we limit our use of that data strictly to those purposes.

2. How we use it

We do not sell personal data, and we do not use customer data for advertising.

3. Third parties

We share data only with sub-processors strictly necessary to deliver the service — e.g. Meta (WhatsApp Business Platform), telecom carriers, AI model providers, and our hosting provider — each bound by their own data-protection terms. When a Merchant connects an integration (such as Shopify), data flows between that platform and Omixo AI only as the Merchant directs.

4. Consent

Merchants are responsible for having a lawful basis and, where required, consent to contact their customers. We honour opt-out and unsubscribe signals and stop messaging a customer on request.

5. Retention

We keep personal data only as long as needed to provide the service, meet legal obligations, and resolve disputes. Merchants can request deletion at any time; on account closure or a verified erasure request, data is deleted or irreversibly anonymised. Integration data is deleted when a Merchant uninstalls (see the DPA).

6. Security

Data is encrypted in transit (TLS) and sensitive credentials/tokens are encrypted at rest; backups are encrypted; access is role-restricted and logged. Full details are in our Security & Incident Response statement.

7. Your rights

Data subjects may request access, correction, deletion, or restriction of their personal data. Merchant customers should contact the Merchant (the controller); we assist Merchants in fulfilling these requests. To reach us directly, use the contact details in the footer.

8. Changes

We may update this policy; material changes will be posted here with a new effective date.