.png)
Merchant Privacy Policy
Effective Date: 16.06.2025
This Merchant Privacy Policy explains how Spotted App a product of AAR Tech Ventures Pvt. Ltd. ("Spotted", "we", "our", or "us") collects, uses, stores, and shares data when merchants use our platform, including our integrations with Meta, MetaOS, Bell Signup, WhatsApp Business API, and third‑party e‑commerce platforms like Shopify. This policy applies only to merchants, businesses, and teams using Spotted’s merchant dashboard, APIs, WhatsApp automation, social content automation, and analytics tools. For customer (end‑user) privacy, please see our separate User Privacy Policy.
1. What Data We Collect
We collect the following categories of data when you connect your Meta accounts, WhatsApp Business API, or e‑commerce platforms to Spotted.
A. Merchant Account Data
Business name
Business address and contact details
Business email and phone
Team member names and emails
Billing information (if applicable)
B. Meta & WhatsApp Data
When you connect your Meta account, Facebook Page, Instagram account, or WhatsApp Business API using MetaOS or Bell Signup, we may collect:
Page ID, Page name, Page access tokens
WhatsApp Business number & WhatsApp Business profile details
Templates created, edited, submitted, approved, or rejected
Template metadata (name, variables, categories)Message delivery data (sent, delivered, read, failed)Messaging account limits & quality rating
Opt‑in/opt‑out events
Meta permissions you grant to Spotted
We do not collect personal login credentials. All access is through secure Meta OAuth.
C. Customer Data From Shopify & Other Platforms
When merchants connect their online store, we collect customer information strictly for the services we provide:
Customer name
Contact details (email, phone)Order history
Wishlist or browsing data (if supported)Tags, segments, or customer groups
D. Messaging & Content DataTemplates you create or uploadVariable values inside templates (e.g., customer name, order number)Messages sent (content + dynamic values)A/B testing versions and performance data
E. Analytics Data
Delivery reports
Read and engagement metrics
Conversion tracking (clicks, revenue, ROI)Campaign performance
F. Technical Data
Device and browser data
IP address
Usage logs
Error reports and diagnostic logs
2. How We Use the Data
We use merchant and customer data to provide the services below.
A. Creating Customer Personas & Understanding Behavior
We analyze message interactions to help merchants understand their customers better. This may include:
Building customer personas based on responses, non-responses, purchase patterns, and message history
Identifying which types of messages customers engage with
Helping merchants refine their outbound communication
Understanding behaviour trends to improve campaign performance
This analysis is automated, privacy-safe, and designed only to support merchant marketing insights.
We use merchant and customer data to provide the services below.
A. WhatsApp Messaging Services
Creating, submitting, and managing WhatsApp templates
Sending automated or manual WhatsApp messages
Filling templates with customer-specific data
Running A/B tests on different content versions
Delivering order updates, offers, promotions, and service alerts
B. Customer Segmentation & Personalization
Creating segments from Shopify or CRM data
Sending targeted WhatsApp messages based on past actions
Using data variables inside templates
C. Analytics & Reporting
Tracking message delivery, failures, reads, and engagement
Showing campaign performance
Showing template approval and rejection reasons
Revenue and ROI analytics
D. Platform Functionality
Authenticate merchant accounts via MetaOS / Bell Signup
Maintain account security
Prevent misuse, spam, or policy violations
Provide customer support
E. Compliance & Safety
Follow Meta policies
Prevent unauthorized use of WhatsApp Business API
Detect abuse or harmful activities
We never sell merchant data or customer data.
3. When We Share Data
We share data only with:
A. Meta Platforms (Facebook, Instagram, WhatsApp)
To: Authenticate merchant access via OAuth
Create and manage WhatsApp templates
Send WhatsApp messages
Get message delivery and quality reports
B. E-Commerce Platforms (e.g., Shopify)
To: Fetch customer lists
Sync orders and purchase events
Process segments and triggers
C. Service Providers
We use third-party vendors for:
Hosting (cloud servers)
Analytics
Database storage
Security & fraud detection
Customer support software
All vendors follow strict confidentiality and data-protection rules.
D. Legal Compliance
We may share data if required by law or to prevent fraud, harm, or abuse.
4. What Permissions We Request From Meta
Depending on your setup, we may request:
Manage WhatsApp templates
Send WhatsApp messages to your
customers
Retrieve message delivery and error reports
Access your business page settings to verify identity
We do not post content on your pages without your permission.
5. How Long We Store DataTemplate logs: up to 3 yearsMessaging logs: up to 2 yearsAnalytics data: up to 3 yearsCustomer data from Shopify: stored only while your store is connectedYou may request deletion at any time.
6. How You Can Access, Update, or Delete DataMerchants can:
Access and update business info in the dashboard
Request deletion of customer data
Disconnect Meta or Shopify integrations at any time
Request full account deletion by emailing support@tryspotted.com
When a merchant disconnects Meta:Access tokens are revoked
We stop fetching Meta data immediatelyHistorical logs remain unless deletion is requested
When a merchant disconnects Shopify:Syncing stops immediatelyWe delete synced customer data within 7 days
7. User Opt-In / Post-Transaction Messaging:
All messages sent via Spotted are post-transaction and only to customers who have completed a purchase with the merchant. No unsolicited or spam messages are sent, and customers can choose not to receive these communications.
8. AI-Generated Content Sharing:
Some messages may include AI-generated content created by Spotted. Customers can optionally share this content with friends on Instagram, WhatsApp, or Facebook.
9. Compliance Statement:
All messages sent through Spotted comply with WhatsApp policies, Indian data protection regulations (IT Act 2000 and rules on sensitive personal data), and telecom messaging regulations (TRAI TCCCPR).
10. Security Measures:
We follow industry-standard practices:
HTTPS encryptionToken-based Meta OAuthRole-based access control
Audit loggingFirewall and network isolation
PCI and GDPR aligned safeguards Children’s Data
Spotted does not provide tools for children under 13 and does not knowingly collect data about minors.
Changes to This Policy: We may update this policy for legal or operational reasons. Substantial changes will be posted on this page.
Contact Us: For privacy-related questions or deletion requests:
Email: support@tryspotted.com
Website: https://www.tryspotted.com
By continuing to use the Spotted Platform, you acknowledge that you have read and understood this Privacy Policy.
10. Contact Us: For privacy-related questions or deletion requests:
AAR Tech Ventures Pvt. Ltd.
Email: support@tryspotted.com
Website: https://www.tryspotted.com
By continuing to use the Spotted Platform, you acknowledge that you have read and understood this Privacy Policy.
This Merchant Privacy Policy explains how Spotted App a product of AAR Tech Ventures Pvt. Ltd. ("Spotted", "we", "our", or "us") collects, uses, stores, and shares data when merchants use our platform, including our integrations with Meta, MetaOS, Bell Signup, WhatsApp Business API, and third‑party e‑commerce platforms like Shopify. This policy applies only to merchants, businesses, and teams using Spotted’s merchant dashboard, APIs, WhatsApp automation, social content automation, and analytics tools. For customer (end‑user) privacy, please see our separate User Privacy Policy.
1. What Data We Collect
We collect the following categories of data when you connect your Meta accounts, WhatsApp Business API, or e‑commerce platforms to Spotted.
A. Merchant Account Data
Business name
Business address and contact details
Business email and phone
Team member names and emails
Billing information (if applicable)
B. Meta & WhatsApp Data
When you connect your Meta account, Facebook Page, Instagram account, or WhatsApp Business API using MetaOS or Bell Signup, we may collect:
Page ID, Page name, Page access tokens
WhatsApp Business number & WhatsApp Business profile details
Templates created, edited, submitted, approved, or rejected
Template metadata (name, variables, categories)Message delivery data (sent, delivered, read, failed)Messaging account limits & quality rating
Opt‑in/opt‑out events
Meta permissions you grant to Spotted
We do not collect personal login credentials. All access is through secure Meta OAuth.
C. Customer Data From Shopify & Other Platforms
When merchants connect their online store, we collect customer information strictly for the services we provide:
Customer name
Contact details (email, phone)Order history
Wishlist or browsing data (if supported)Tags, segments, or customer groups
D. Messaging & Content DataTemplates you create or uploadVariable values inside templates (e.g., customer name, order number)Messages sent (content + dynamic values)A/B testing versions and performance data
E. Analytics Data
Delivery reports
Read and engagement metrics
Conversion tracking (clicks, revenue, ROI)Campaign performance
F. Technical Data
Device and browser data
IP address
Usage logs
Error reports and diagnostic logs
2. How We Use the Data
We use merchant and customer data to provide the services below.
A. Creating Customer Personas & Understanding Behavior
We analyze message interactions to help merchants understand their customers better. This may include:
Building customer personas based on responses, non-responses, purchase patterns, and message history
Identifying which types of messages customers engage with
Helping merchants refine their outbound communication
Understanding behaviour trends to improve campaign performance
This analysis is automated, privacy-safe, and designed only to support merchant marketing insights.
We use merchant and customer data to provide the services below.
A. WhatsApp Messaging Services
Creating, submitting, and managing WhatsApp templates
Sending automated or manual WhatsApp messages
Filling templates with customer-specific data
Running A/B tests on different content versions
Delivering order updates, offers, promotions, and service alerts
B. Customer Segmentation & Personalization
Creating segments from Shopify or CRM data
Sending targeted WhatsApp messages based on past actions
Using data variables inside templates
C. Analytics & Reporting
Tracking message delivery, failures, reads, and engagement
Showing campaign performance
Showing template approval and rejection reasons
Revenue and ROI analytics
D. Platform Functionality
Authenticate merchant accounts via MetaOS / Bell Signup
Maintain account security
Prevent misuse, spam, or policy violations
Provide customer support
E. Compliance & Safety
Follow Meta policies
Prevent unauthorized use of WhatsApp Business API
Detect abuse or harmful activities
We never sell merchant data or customer data.
3. When We Share Data
We share data only with:
A. Meta Platforms (Facebook, Instagram, WhatsApp)
To: Authenticate merchant access via OAuth
Create and manage WhatsApp templates
Send WhatsApp messages
Get message delivery and quality reports
B. E-Commerce Platforms (e.g., Shopify)
To: Fetch customer lists
Sync orders and purchase events
Process segments and triggers
C. Service Providers
We use third-party vendors for:
Hosting (cloud servers)
Analytics
Database storage
Security & fraud detection
Customer support software
All vendors follow strict confidentiality and data-protection rules.
D. Legal Compliance
We may share data if required by law or to prevent fraud, harm, or abuse.
4. What Permissions We Request From Meta
Depending on your setup, we may request:
whatsapp_business_management
whatsapp_business_messaging
pages_show_listbusiness_management
catalog_management
These permissions allow us to: Manage WhatsApp templates
Send WhatsApp messages to your
customers
Retrieve message delivery and error reports
Access your business page settings to verify identity
We do not post content on your pages without your permission.
5. How Long We Store DataTemplate logs: up to 3 yearsMessaging logs: up to 2 yearsAnalytics data: up to 3 yearsCustomer data from Shopify: stored only while your store is connectedYou may request deletion at any time.
6. How You Can Access, Update, or Delete DataMerchants can:
Access and update business info in the dashboard
Request deletion of customer data
Disconnect Meta or Shopify integrations at any time
Request full account deletion by emailing support@tryspotted.com
When a merchant disconnects Meta:Access tokens are revoked
We stop fetching Meta data immediatelyHistorical logs remain unless deletion is requested
When a merchant disconnects Shopify:Syncing stops immediatelyWe delete synced customer data within 7 days
7. User Opt-In / Post-Transaction Messaging:
All messages sent via Spotted are post-transaction and only to customers who have completed a purchase with the merchant. No unsolicited or spam messages are sent, and customers can choose not to receive these communications.
8. AI-Generated Content Sharing:
Some messages may include AI-generated content created by Spotted. Customers can optionally share this content with friends on Instagram, WhatsApp, or Facebook.
9. Compliance Statement:
All messages sent through Spotted comply with WhatsApp policies, Indian data protection regulations (IT Act 2000 and rules on sensitive personal data), and telecom messaging regulations (TRAI TCCCPR).
10. Security Measures:
We follow industry-standard practices:
HTTPS encryptionToken-based Meta OAuthRole-based access control
Audit loggingFirewall and network isolation
PCI and GDPR aligned safeguards Children’s Data
Spotted does not provide tools for children under 13 and does not knowingly collect data about minors.
Changes to This Policy: We may update this policy for legal or operational reasons. Substantial changes will be posted on this page.
Contact Us: For privacy-related questions or deletion requests:
Email: support@tryspotted.com
Website: https://www.tryspotted.com
By continuing to use the Spotted Platform, you acknowledge that you have read and understood this Privacy Policy.
10. Contact Us: For privacy-related questions or deletion requests:
AAR Tech Ventures Pvt. Ltd.
Email: support@tryspotted.com
Website: https://www.tryspotted.com
By continuing to use the Spotted Platform, you acknowledge that you have read and understood this Privacy Policy.
