Valentius Kryptix

Privacy Policy

Last updated: 26 June 2026

This Privacy Policy explains how Valentius Kryptix (“we”, “us”, “our”) collects, uses, stores, and protects information in connection with the VK WhatsApp Gateway (the “Service”) — a messaging platform that sends and receives WhatsApp messages through the official Meta WhatsApp Cloud API on behalf of businesses that use our Service.

Valentius Kryptix is a technology and consulting company based in India (“Transforming Digital Landscapes”) offering software development, management consulting, digital marketing, and EdTech solutions across brands including VirtuoSoft, VitalKonsult, VoxKlick, and VidyaKoshAI. The VK WhatsApp Gateway is the messaging infrastructure that powers WhatsApp communication for these brands and for external client businesses.

By using the Service, or by connecting a WhatsApp Business Account to it, you agree to the practices described in this policy.

1. Who this policy is for

The Service is business infrastructure. There are two groups whose information may be involved:

  • Client businesses — organizations (including Valentius Kryptix’s own brands and external clients) that connect their WhatsApp Business Account to the Service to send and receive messages with their own customers.
  • Message recipients — the end customers who exchange WhatsApp messages with a client business through the Service.

We act as a service provider / data processor for client businesses. Each client business is the data fiduciary / controller for its own customers and is responsible for obtaining the necessary consent from its message recipients.

2. Information we collect

We collect and process only the information needed to operate the Service:

  • Account & configuration data: business name, contact email, WhatsApp Business Account (WABA) ID, phone number ID, display name, and API credentials/access tokens needed to send and receive messages.
  • Message data: the content, metadata, timestamps, and delivery status of WhatsApp messages sent and received through the Service, and the phone numbers involved in those conversations.
  • Contact data: phone numbers, display names, tags, and custom fields that a client business stores about its own contacts within the Service.
  • Technical data: logs, error reports, and usage records generated while operating the Service.

We do not ask for or intentionally collect sensitive personal data (such as government IDs, health, or financial account details) as part of operating the Service.

3. How we use information

We use the information solely to provide and maintain the Service, including to:

  • Send and receive WhatsApp messages on behalf of client businesses via the Meta WhatsApp Cloud API;
  • Deliver inbound replies and delivery/read receipts back to the relevant client business;
  • Manage message templates, broadcasts, automations, conversation flows, and contact records;
  • Provide optional AI-assisted auto-replies when a client business explicitly enables them;
  • Maintain security, prevent abuse, troubleshoot, and meet our legal and platform obligations.

We do not sell personal information, and we do not use message content for advertising.

4. AI-assisted replies

Where a client business enables AI auto-reply, the text of an incoming message may be sent to a third-party AI model provider (such as Anthropic or OpenAI) to generate a suggested reply. This happens only for businesses that opt in. The AI providers process this data under their own terms and do not use it to train their models where their API terms so provide. A client business may instead use its own AI provider account (“bring your own key”).

5. How we share information

We share information only as necessary to run the Service:

  • Meta Platforms — message content and metadata are transmitted through the Meta WhatsApp Cloud API, governed by Meta’s terms and the WhatsApp Business Messaging policies.
  • The owning client business — inbound messages and delivery status for a conversation are returned to the business that owns that WhatsApp number.
  • AI providers — only when AI auto-reply is enabled, as described above.
  • Payment processors — for paid plans, payments are handled by third-party processors such as Razorpay; we do not store full payment-card details.
  • Infrastructure providers — our hosting and database providers, used to operate the Service securely.
  • Legal — where required by law, regulation, or valid legal process.

6. Data storage and security

Information is stored on secured servers. Access tokens and other secrets are encrypted at rest (AES-256-GCM). Access to message data is restricted to the owning client business and to authorized operations personnel. Communications with the Service and with Meta use encryption in transit (HTTPS), and inbound webhooks are signature-verified.

7. Data retention

We retain configuration and contact data for as long as a client business maintains an active relationship with the Service. Message content and media may be automatically deleted after 90 days, and client businesses are encouraged to maintain their own records where longer retention is needed. We may retain certain data longer where required to comply with legal obligations. A client business may request deletion of its data, after which we delete or anonymize it within a reasonable period, except where retention is legally required.

8. Cookies and analytics

Our websites may use cookies and similar technologies to operate the site, remember preferences, and understand usage so we can improve the Service. You can control or disable cookies through your browser settings, though some features may not function correctly without them.

9. Your rights

Depending on your jurisdiction — including under India’s Digital Personal Data Protection Act, 2023 (DPDP Act) and, where applicable, the EU/UK GDPR — you may have rights to access, correct, update, export, or erase personal data we hold, to withdraw consent, and to object to or restrict certain processing. Message recipients should direct such requests to the client business they interact with; we will assist that business in fulfilling them. To make a request directly, contact us using the details below.

10. Opt-out

Message recipients can opt out of WhatsApp communications at any time (for example, by replying to stop, or by contacting the relevant business). The Service enforces opt-outs before sending further messages to a number that has opted out.

11. Meta / WhatsApp platform actions

The Service operates on top of Meta’s WhatsApp Cloud API. Meta may independently suspend, restrict, rate-limit, or ban a WhatsApp number or account for policy reasons outside our control. We are not responsible for such platform actions, and client businesses remain responsible for complying with all Meta and WhatsApp policies.

12. Children’s privacy

The Service is not directed to children and is intended for use by businesses. We do not knowingly collect personal information from children.

13. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last updated” date at the top of this page.

14. Contact us

For questions about this Privacy Policy or our data practices, contact:

Valentius Kryptix
Email: hr@valentiuskryptix.com
Website: https://www.valentiuskryptix.com