Privacy Policy

Last updated: April 2026

1. Controller

VebiSoft · Owner Vebi Korbi · Germany · info@chatblitz.de.

2. Purposes & legal basis

We process personal data to operate ChatBlitz, a multi-tenant SaaS for automated WhatsApp communication. Legal basis: Art. 6(1)(b) GDPR (contract), (f) (legitimate interest) and (a) where consent is required.

3. Data residency

All personal data is stored in the European Union (Supabase EU region).

4. AI processing & training

We use external LLM providers (DeepSeek, OpenAI, Anthropic, Google, Mistral, Groq, Microsoft Azure OpenAI) to generate replies. Your data is NOT used to train any model.Where the provider offers zero-retention modes, we enable them. A current list of sub-processors is available on request.

5. Meta WhatsApp Cloud API

We connect via the official Meta Cloud API (Coexistence Mode). Meta's policies apply in addition to ours.

6. Cookies

Only strictly necessary cookies (session, language). No tracking or profiling.

7. Your rights

GDPR Art. 15–21: access, rectification, erasure, restriction, objection, portability. JSON export is available in the dashboard. Account deletion triggers a 30-day soft-delete then full removal.

8. Data Processing Agreement

A DPA (Art. 28 GDPR) is available in the dashboard.