Is the service GDPR-compliant?

Using the WhatsApp On-Premises API, OWA ensures legal and privacy-compliant use of WhatsApp in customer communications. When starting communication with a business, the customer submits consent before using the WhatsApp service. The customer also proactively contacts customer service via WhatsApp and confirms the privacy policy. Also, the customer can unsubscribe at any time with a simple word or command and request that their data be deleted.

WhatsApp messages between the OWA API and customers are end-to-end encrypted. WhatsApp cannot read them. Therefore this solution is more secure than email or many other messengers, that is not encrypted. Our hosting servers (where encryption and decryption happen) are located in certified data centers where our customers need them to be hosted.

What is also to be mentioned for customers using our API: We do not store any message data after messages are retrieved.