Privacy Policy
Last updated: July 2, 2026
CXGear (“we”, “us”, or “our”) operates the CXGear platform at https://cxgear.ai and related services (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our website, application, and integrations — including WhatsApp Business messaging through Meta’s Cloud API.
By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.
1. Information we collect
We may collect the following categories of information:
- Account information: name, email address, organization name, role, and authentication credentials when you register or are invited to an organization.
- Business and campaign data: contact lists, phone numbers, email addresses, custom fields, dispositions, and other data you upload or connect to CXGear for use in spinners, jobs, and campaigns.
- Communication metadata and content: when you use messaging or voice features, we process message templates, delivery status, timestamps, call records, recordings (where enabled), and related metadata required to operate campaigns.
- WhatsApp and Meta platform data: if you connect a WhatsApp Business Account (WABA), we receive and store identifiers such as phone number ID, WABA ID, webhook events, message status, and template names as permitted by Meta’s terms and your authorization. We do not sell WhatsApp user data.
- Technical and usage data: IP address, browser type, device information, log files, API usage, and analytics about how you interact with the Service.
- Waitlist and marketing: email address if you subscribe on our landing page for product updates.
2. How we use information
We use collected information to:
- Provide, operate, maintain, and improve the Service;
- Execute spinners, jobs, and customer communication workflows you configure;
- Send WhatsApp, SMS, email, and voice communications on your behalf, as directed by you;
- Authenticate users and enforce security and access controls;
- Provide support, respond to inquiries, and send service-related notices;
- Comply with legal obligations and enforce our Terms of Use;
- Send product updates and marketing communications where you have opted in.
3. WhatsApp and third-party platforms
CXGear integrates with third-party providers including Meta (WhatsApp Business Platform), SMS carriers, email providers, and telephony platforms. When you connect these integrations:
- You are responsible for obtaining valid consent from end users before messaging them, in compliance with applicable law and Meta’s WhatsApp Business Messaging Policy;
- Data is processed according to your instructions and our agreements with subprocessors;
- Meta’s own privacy practices apply to data processed on Meta’s infrastructure — see WhatsApp Business Messaging Policy and Meta Privacy Policy.
4. Legal bases (EEA/UK users)
Where GDPR or similar laws apply, we process personal data based on: performance of a contract (providing the Service), legitimate interests (security, improvement, fraud prevention), consent (marketing, where required), and legal obligation.
5. Sharing and disclosure
We may share information with:
- Service providers and subprocessors who assist with hosting, messaging delivery, analytics, and support — under contractual confidentiality and data protection obligations;
- Your organization — data uploaded to a CXGear organization is visible to authorized members of that organization;
- Legal and safety — when required by law, court order, or to protect rights, safety, and integrity of the Service;
- Business transfers — in connection with a merger, acquisition, or sale of assets, with notice where required by law.
We do not sell personal information.
6. Data retention
We retain information for as long as your account is active or as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods for campaign and message data may be configurable within your organization settings. You may request deletion subject to legal and operational requirements.
7. Security
We implement administrative, technical, and organizational measures designed to protect information, including encryption of credentials in our secured vault, access controls, and audit logging. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
8. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or port your personal data, and to object to or withdraw consent for certain processing. End users who receive messages through CXGear should contact the business that sent the message (our customer) in the first instance. You may also contact us at privacy@cxgear.ai.
9. International transfers
Information may be processed in countries other than your own. Where required, we use appropriate safeguards such as standard contractual clauses for cross-border transfers.
10. Children
The Service is not directed to individuals under 16. We do not knowingly collect personal information from children.
11. Changes to this policy
We may update this Privacy Policy from time to time. We will post the revised version on this page and update the “Last updated” date. Material changes may be communicated by email or in-app notice.
12. Contact us
For privacy questions or requests:
CXGear
Email: privacy@cxgear.ai
Website: https://cxgear.ai