How we handle data: yours, and your customers'.

Auphere is the controller of the personal data described in this policy. For any privacy question, write to contacto@auphere.com. We read every message and reply within 30 days.

If you are a resident of the European Economic Area, the United Kingdom or Switzerland, you have the right to lodge a complaint with your local supervisory authority. We'll cooperate fully.

We collect only what we need to run the site, evaluate fit on a diagnostic call, deliver the service, and meet legal obligations. Three groups of people, three buckets of data:

Site visitors

Privacy-respecting analytics (Plausible): no cookies, no cross-site tracking, no personal identifiers. We aggregate page views, referrers and country (never IP).

People who book a call or email us

Name, work email, company, the message you sent, and the call recording if you opt in. We use it to evaluate fit and reply. We never sell it.

Active clients and their end-users

Whatever your contract says we process on your behalf: conversation logs, integration metadata, configuration. We are a processor for this data; you are the controller. A DPA is signed before any real data is touched. When the channel is WhatsApp, we are an authorized Tech Provider of Meta Platforms, Inc. and we process data obtained from the WhatsApp Business Platform: end-user phone number (E.164), profile name, message content (text, voice, media, location, reactions), message identifiers (wamid) and Business-Scoped User ID (BSUID) — only to operate the agent you contracted us for.

Consent

You give it when you opt into a call recording or subscribe to anything we offer. You can withdraw it at any time.

Performance of a contract

To deliver the diagnostic, the agent setup and the ongoing managed service we agreed in writing.

Legitimate interest

To run the website, fight abuse, evaluate inbound leads, and improve the agents we operate, provided your fundamental rights are not overridden.

Legal obligation

Tax, accounting, regulatory inquiries. We retain only what the law requires, only for as long as it requires.

Site analytics: aggregated, no expiry.

Diagnostic call data (notes, recording if you opted in): 12 months, then deleted unless we sign an agreement.

Client production data: for the duration of the contract, plus a 30-day window after termination for export, then permanent deletion (audit log retained as required by law).

Regardless of jurisdiction, we will honour the following on request. Write to contacto@auphere.com.

Access

Get a copy of everything we hold on you.

Rectification

Correct anything that's wrong.

Erasure

Have it deleted, subject to legal retention requirements.

Portability

Get your data in a standard, machine-readable format.

Objection

Tell us to stop processing data under legitimate interest.

Do Not Sell (CCPA)

We don't sell personal information. You can confirm this in writing on request.

When data leaves the EU, we rely on Standard Contractual Clauses (SCCs) and on each vendor's transfer mechanism. EU clients can request EU-only processing, and we honour it for everything except providers without an EU region (clearly listed above).

auphere.com sets only strictly necessary cookies. Plausible uses no cookies at all. If we ever change that, you'll see a consent banner before anything is dropped.

Questions, requests, complaints, data deletion requests: contacto@auphere.com. We acknowledge within 5 business days and reply within 30 days, often the same week.