Whispyr logo

Privacy Policy

Whispyr AI – Privacy Policy

Last updated: 22/11/2025

Whispyr AI (“Whispyr”, “we”, “us”, or “our”) is committed to protecting the privacy of our customers, their teams, and their leads.

This Privacy Policy explains how we collect, use, disclose, and protect personal data when you:

  • use the Whispyr AI CRM and related products (the “Services”);
  • visit our websites or web applications; or
  • otherwise interact with us.

If you do not agree with this Privacy Policy, you should not use the Services.

1. Who We Are and Scope of This Policy

This Privacy Policy applies to personal data processed by Whispyr in connection with:

  • business-to-business use of our CRM and AI tools (including WhatsApp integrations, call features, and analytics); and
  • our marketing websites, landing pages, and support channels.

This policy does not apply to third-party services you connect to Whispyr (for example, WhatsApp, payment processors, or email providers). Those services are governed by their own privacy policies.

2. Key Principles

Whispyr’s data practices follow a few core principles:

  1. No Sale of Lead Data
    We do not sell or rent your leads’ data or any Customer Data to third parties for their own marketing or lead generation.

  2. Strict Tenant Isolation
    We maintain logical separation between organizations. One customer’s data is not visible to another customer, except where you intentionally choose to share data (for example, by exporting it and sending it yourself).

  3. Minimum Necessary Use
    We collect and use only the data we reasonably need to provide, secure, and improve the Services.

  4. Transparency and Control
    We strive to clearly explain our data practices and provide reasonable options for you to access, update, or delete your data, subject to legal and contractual obligations.

3. Definitions

For the purposes of this Privacy Policy:

  • “Customer” or “you” means the business or organization that signs up to use the Services, as well as its authorized users.
  • “Customer Data” means data uploaded to or generated within the Services by or on behalf of a Customer, including lead and contact data, communications, notes, files, configuration settings, and usage data linked to that Customer.
  • “Personal Data” means any information relating to an identified or identifiable natural person (for example, a lead’s name, phone number, or email address).
  • “Lead Data” means personal data of prospects or clients that you store in Whispyr (e.g., real estate leads, buyers, tenants, investors).
  • “Market Data” means project, unit, pricing, and related market-intelligence data provided by Whispyr within the Services.

Customer Data may include Personal Data and Lead Data.

4. What Data We Collect

4.1 Data You Provide Directly

We collect data that you or your users submit directly to the Services, including:

  • Account and organization data

    • Name, business name, job title
    • Email address, phone number
    • Login credentials (stored in hashed form)
    • Language, time zone, and preference settings

  • Lead and contact data (Lead Data)

    • Names, phone numbers, email addresses
    • Communication preferences
    • Property preferences, budgets, timelines
    • Notes, tags, deal stages, and other CRM fields you or your users create

  • Content and communications

    • Messages sent and received through integrated channels (e.g., WhatsApp, SMS, email, in-app chat)
    • Call and meeting metadata (time, duration, participants)
    • Call recordings and transcripts (where enabled and legally permissible)
    • Documents and files you upload (contracts, PDFs, images, etc.)

  • Billing and payment data

    • Company billing details, tax IDs
    • Partial payment information (handled by payment processors)
    • Subscription and transaction history

4.2 Data Collected Automatically

When you use the Services, we automatically collect certain information, such as:

  • Usage and log data

    • IP address, browser type, device type
    • Pages or screens viewed, features used, time spent
    • Log timestamps, error logs, performance metrics

  • Cookies and similar technologies

    • Session cookies to keep you logged in
    • Preferences cookies (language, layout)
    • Analytics cookies to understand how the Services are used
      (See Section 9 for more details on cookies.)

4.3 Data from Integrations and Third Parties

We may receive data about you or your leads from:

  • Connected services (e.g., WhatsApp Business API providers, email inboxes, calendars, lead sources, Meta, or other ad platforms) when you authorize integrations.
  • Payment processors (basic transaction confirmations, fraud screening results).
  • Lead sources or listing platforms that you connect or import from.
  • Publicly available or commercial sources, where allowed by law and by those sources’ terms.

We treat such data as Customer Data when linked to your Account.

5. How We Use Your Data

We use Personal Data and Customer Data for the following purposes:

5.1 Providing and Operating the Services

  • Creating and managing Accounts and organizations
  • Ingesting leads, managing contacts, and maintaining CRM records
  • Powering WhatsApp, SMS, email, and call features (through your chosen third-party providers)
  • Executing automations, rotations, reminders, and AI-powered features
  • Generating dashboards, reports, and analytics for your organization

5.2 AI and Automation Features

Whispyr uses AI models to:

  • Suggest messages, follow-ups, and responses
  • Summarize conversations and calls
  • Recommend projects or units that match a lead’s profile
  • Provide insights and optimization suggestions

We use Customer Data as input to these models primarily to serve your organization. We may also use aggregated and/or de-identified data to improve our AI models and algorithms. We do not use your identifiable Lead Data to build generic marketing databases or to sell to third parties.

5.3 Security, Fraud Prevention, and Abuse Detection

  • Monitoring for suspicious login attempts or patterns
  • Detecting abuse of the platform, including prohibited “bot behavior”
  • Protecting the security and integrity of the Services

5.4 Improving the Services

  • Analyzing usage to understand which features are working
  • Fixing bugs and optimizing performance
  • Developing new features and enhancements

Where feasible, we use aggregated or de-identified data for product analytics.

5.5 Communication with You

  • Sending service-related communications (e.g., onboarding, security alerts)
  • Sending administrative messages about billing, account status, or policy updates
  • Sending marketing communications, where permitted (you can opt out at any time)

5.6 Legal Obligations and Protection

  • Complying with applicable laws and regulations
  • Responding to lawful requests from authorities
  • Enforcing our Terms of Service, preventing misuse, and protecting our rights

6. No Sale of Lead Data & Data Isolation

6.1 No Sale of Lead Data

We do not sell, rent, or trade your Lead Data or your Customer Data to third parties for their independent marketing, lead-generation, or data-brokerage purposes.

We may use service providers (processors) to help deliver the Services (hosting, messaging, payment processing, analytics, etc.), but they are contractually restricted from using Customer Data for their own marketing or resale.

6.2 Organization-Level Isolation

Whispyr is a multi-tenant SaaS platform. This means multiple organizations are hosted on the same infrastructure, but:

  • Each organization’s data is logically segregated and protected with access controls.
  • Authorized Users of one organization cannot access the Customer Data of another organization through the Services.
  • We do not cross-share leads, messages, or CRM data between customers.

The only ways data can leave your organization’s control are:

  • when your users intentionally export or share it; or
  • where we are legally required to disclose it (see Section 7.3).

7. How We Share Personal Data

We share Personal Data only as described below, and never as a “sale” of Lead Data.

7.1 Service Providers (Processors)

We may share data with carefully selected service providers who act on our behalf to:

  • host and operate the Services and databases
  • provide telecommunications and messaging infrastructure
  • process payments and manage subscriptions
  • send transactional and marketing emails
  • provide analytics, monitoring, and security services
  • deliver customer support and ticketing

These providers are authorized to use Personal Data only as necessary to provide their services to us and are subject to contractual confidentiality and data-protection obligations.

7.2 Integrations You Authorize

When you connect Whispyr to external systems (e.g., WhatsApp, Meta, email providers, calendars, or other CRMs), we may share or receive data as required to support the integration.

Any data shared with such Third-Party Services will be governed by those parties’ own privacy policies. You are responsible for reviewing and complying with those policies.