Back to Axilrate

Legal

Data Deletion Instructions & User Data Handling Policy

Last updated: May 2026

  • Data Deletion Instructions & User Data Handling Policy
  • Effective Date: 01 May 2026
  • Last Updated: 01 May 2026

1. Introduction

This Data Deletion Instructions & User Data Handling Policy explains how data deletion requests are managed for users and businesses using our platform.

We provide customer communication, engagement, messaging, campaign management, automation, analytics, and related software services for businesses across multiple communication channels including WhatsApp and other third-party integrations.

This document describes:

  • Our role in processing data
  • How deletion requests are handled
  • How businesses can request deletion
  • How end users may exercise their rights
  • Retention and operational limitations
  • Meta / WhatsApp-related responsibilities

2. Our Role as a Service Provider

Our platform primarily operates as a Data Processor or Service Provider on behalf of our business customers.

Our business customers act as the Data Controllers, meaning they determine:

  • What personal data is collected
  • Why the data is collected
  • How the data is used
  • How long the data should be retained
  • When data should be deleted

We process data solely in accordance with:

  • Customer instructions
  • Applicable agreements
  • Platform operational requirements
  • Applicable laws and regulations

We do not independently determine the purposes for which our customers collect end-user information.

3. End User Data Deletion Requests

If you are an individual who interacted with a business that uses our platform, requests relating to your personal data should generally be directed to that business.

This includes requests for:

  • Data deletion
  • Data correction
  • Data access
  • Consent withdrawal
  • Restriction of processing
  • Communication opt-outs

Because the business customer controls the relationship with the end user, they are responsible for validating and authorizing such requests.

Once we receive valid deletion instructions from the relevant business customer, we will process the deletion request in accordance with our contractual obligations, platform policies, operational procedures, and applicable laws.

4. How Business Customers Can Request Deletion

Authorized business customers may request deletion of data through one or more of the following methods:

  • Platform dashboard controls
  • Administrative tools
  • Authorized APIs
  • Customer support requests
  • Account management representatives
  • Compliance or privacy support channels

Business customers may request deletion of:

  • Individual contacts
  • Contact lists
  • Message records
  • Campaign interaction data
  • Custom attributes
  • Imported datasets
  • User profiles
  • Conversation history
  • Communication preferences

Certain deletion functionality may depend on:

  • Subscription plans
  • Product configuration
  • Integration limitations
  • Regulatory obligations
  • Third-party platform restrictions

5. Data That May Be Stored

Depending on how our platform is used by business customers, we may process or store the following categories of information:

  • Contact Information
  • Phone numbers
  • Email addresses
  • Names
  • External customer identifiers
  • Communication Data
  • Messages
  • Templates
  • Campaign interactions
  • Delivery statuses
  • Engagement activity
  • Technical & Device Information
  • IP addresses
  • Browser details
  • Device identifiers
  • Operating systems
  • Session metadata
  • Usage & Analytics Information
  • Platform interactions
  • User activity logs
  • Campaign performance metrics
  • Event tracking data
  • Customer-Provided Information

Business customers may also store additional data fields or custom attributes through our platform based on their own requirements and lawful basis for processing.

6. Data Deletion Process

Upon receipt of a valid deletion request from an authorized business customer, we may:

  • Remove active records from operational systems
  • Delete associated communication history
  • Remove contact identifiers
  • Anonymize data where appropriate
  • Remove searchable references
  • Restrict further processing

Deletion actions may vary depending on:

  • System architecture
  • Backup processes
  • Fraud prevention requirements
  • Legal obligations
  • Security requirements
  • Third-party integration constraints

7. Retention Periods

Unless otherwise required by law, agreement, or legitimate operational necessity, deletion requests are generally processed within 30 days.

Certain information may be retained for a limited duration for purposes including:

  • Security monitoring
  • Fraud prevention
  • Abuse detection
  • Audit logging
  • Legal compliance
  • Financial recordkeeping
  • Dispute resolution
  • System integrity and recovery

Backup systems may retain encrypted or archived copies for a temporary period before automated deletion cycles are completed.

8. WhatsApp and Meta Platform Data

Businesses using WhatsApp, Meta integrations, or related messaging services through our platform remain responsible for complying with:

  • WhatsApp Business Messaging Policies
  • Meta Platform Terms
  • Applicable privacy and data protection laws
  • Consent and opt-in requirements
  • Customer communication regulations

Business customers are responsible for:

  • Obtaining lawful consent where required
  • Maintaining opt-in records
  • Honoring opt-out requests
  • Managing lawful communication practices
  • Providing required privacy disclosures to their users

We provide infrastructure and tools that enable authorized customers to manage retention and deletion operations.

9. Third-Party Services & Integrations

Our platform may integrate with third-party providers and infrastructure partners for services including:

  • Cloud hosting
  • Messaging delivery
  • Analytics
  • Monitoring
  • Customer support
  • Security services

Deletion requests may require coordinated processing across integrated systems and providers.

Certain third-party platforms may maintain independent retention periods and policies governed by their own legal and operational requirements.

10. Security Measures

We implement reasonable administrative, technical, and organizational safeguards designed to protect data against unauthorized access, misuse, alteration, disclosure, or destruction.

These measures may include:

  • Access controls
  • Encryption
  • Logging and monitoring
  • Authentication systems
  • Role-based permissions
  • Infrastructure security controls

No system or transmission method can be guaranteed to be completely secure.

11. Limitations & Exceptions

We may decline, delay, or limit deletion requests where:

  • Required by applicable law
  • Necessary for legal defense
  • Required for fraud prevention
  • Needed for security investigations
  • Necessary for financial or tax compliance
  • Required to enforce contractual rights
  • Technically infeasible within reasonable limits

Where possible, processing may instead be restricted or anonymized.

12. Policy Updates

We may update this document from time to time to reflect:

  • Regulatory changes
  • Platform updates
  • Operational changes
  • Compliance requirements
  • Third-party platform requirements

Updated versions will be published on this page with a revised effective date.

13. Contact Information

For privacy, compliance, or data deletion inquiries, contact:

  • Website
  • https://www.axilrate.com
  • Business Name
  • Akarai Technologies LLP
Terms & ConditionsPrivacy PolicyAcceptable Use PolicyCookie PolicyData Deletion