Privacy Policy

This Privacy Policy explains how Typro ("we", "us", "our") collects, uses, stores, and protects your information when you interact with our WhatsApp-based document management service (the "Service"). We are committed to protecting your privacy and ensuring your data is handled securely. By using the Service, you agree to the data practices described in this policy.

To provide and improve our Service, we collect the following types of information:

2.1 User Information

• Contact Details: Your WhatsApp phone number, which serves as your primary account identifier.
• Account Affiliation: The specific organization or organizations linked to your account.

2.2 Usage Data and Interactions

• Communications: Text messages you send to our service number.
• Service Interactions: Menu selections, button clicks, and command inputs used to navigate the Service.
• Technical Identifiers: Message IDs, session data, and timestamps required for delivery tracking, deduplication, and service stability.

2.3 User Content and Files

• Uploaded Documents: Files you transmit through the Service, including PDFs, images, text documents, and spreadsheets.
• Contextual Information: Any captions, notes, or descriptions provided alongside uploaded files.

2.4 System Metadata

• File properties (e.g., file names, formats, and sizes).
• Cryptographic hashes generated solely for verifying file integrity and detecting corruption.
• Timestamps associated with uploads and interactions.

We strictly use the collected data for the following operational purposes:

• Service Delivery:To receive, securely store, and route your documents to your organization's designated management system.
• Authentication and Routing: To match your phone number with the correct organizational environment and ensure secure access.
• Security and Integrity: To verify that files have not been tampered with or corrupted during transit.
• Customer Support: To troubleshoot issues, respond to inquiries, and maintain the reliability of the Service.

We implement industry-standard security measures to protect your information:

• Infrastructure: Document files and metadata are stored using secure, industry-leading cloud infrastructure and managed database providers.
• Encryption: All data transmitted between your device, our servers, and our database providers is secured using standard encryption protocols (e.g., TLS/SSL).
• Access Controls: Internal access to operational environments is strictly managed, authenticated, and limited to necessary personnel.
• Data Anonymization: Files are stored using randomized, unique identifiers rather than their original, user-provided file names to prevent unauthorized exposure.
• Session State: Temporary interaction data (such as pending upload states) is held dynamically in memory and is automatically discarded once the session concludes.

To operate the Service effectively, we rely on trusted third-party infrastructure. These sub-processors are contractually obligated to protect your data and include:

• Messaging Platforms: Used to facilitate the sending and receiving of messages and media (e.g., WhatsApp Business API).
• Cloud Storage Providers: Used for the secure, scalable storage of uploaded document files.
• Database Hosting Services: Used to securely maintain metadata, user records, and organizational routing information.

We retain your data only for as long as necessary to fulfill the purposes outlined in this policy:

• Organizational Data:Uploaded documents and associated metadata are retained for the duration of your organization's active relationship with us, or until authorized deletion is requested by you or your organization's administrator.
• Operational Logs: System logs containing message metadata may be retained for a limited period solely for security, debugging, and operational diagnostics before being securely deleted.

Depending on your jurisdiction, you may have specific rights regarding your personal data, including the right to:

• Access the personal information we hold about you.
• Correct any inaccurate or incomplete data.
• Request Deletion of your personal data, subject to legal and organizational retention requirements.
• Restrict or Object to certain types of data processing.
• Data Portability, allowing you to receive your data in a structured, commonly used format.

To exercise these rights, please contact us using the information provided in Section 9.

Our Service is intended for professional and organizational use and is not directed at individuals under the age of 16. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected such data, we will take immediate steps to delete it.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

• Email: yotam@tovasolutions.com
• Organization: Typro

We reserve the right to modify this Privacy Policy as our Service evolves or to comply with legal requirements. We will update the "Last updated" date at the top of this document whenever changes are made. Your continued use of the Service following such updates constitutes your acceptance of the revised policy.