Privacy Policy – Grupo Cusoft

Last updated: September 8, 2025

1) Who we are

Grupo Cusoft (“Grupo Cusoft,” “we,” “us”) provides an integration of WhatsApp Business and Facebook Login for Business within Odoo so our customers can manage communications with end users.

Contact: viathe contact form available on this website.

2) Scope and roles

This policy applies to our sites, pages, and modules (including Meta’s embedded signup page), and to services connected to Meta/Facebook and WhatsApp Business.

  • For our business customers, we generally act as a processor with respect to their end users’ data.
  • For site visitors’ data and for administrators using Facebook Login, we act as a controller.

3) Data we process

  • Facebook Login (public_profile): name, Facebook ID, profile photo, and other basic information exposed by the public_profile permission.
  • WhatsApp Business / Meta: technical identifiers (e.g., WABA ID, Phone Number ID, Business ID) and necessary operational metadata (webhook subscriptions, statuses, errors).
  • Credentials/Tokens: access tokens provided by Meta (e.g., business/system user tokens) to operate the integration.
  • Operational and log data: IP addresses, user agent, timestamps, and API interaction logs.
  • Message content: processed only to the extent necessary to provide the service or to meet legal/contractual obligations. We do not build marketing profiles from message content.

4) Purposes of processing

  • Authenticate administrators through Facebook Login for Business.
  • Connect and manage the WhatsApp Business account (number onboarding, webhook subscriptions, number queries).
  • Service operation: sending/receiving messages, support, security, and service continuity.
  • Compliance with legal obligations and handling data protection–related requests.

5) Legal bases / grounds

Consistent with applicable laws in Mexico and the United States, we process data based on:

  • Performance of services requested by our customers.
  • Legitimate interests related to security and proper functioning of the service.
  • Consent where required.

6) Retention

We retain data only as long as necessary to provide the service and meet legal or contractual obligations. Technical logs are retained for limited periods, unless the law requires otherwise.

7) Sharing and transfers

  • Meta Platforms (Facebook/WhatsApp) as the API provider.
  • Service providers (hosting, monitoring, support) under contracts and appropriate safeguards.
  • Authorities when required by law.
    We do not sell personal information.
    We may carry out international transfers (e.g., to the U.S.) and apply appropriate safeguards in accordance with applicable law.

8) Security

We implement reasonable measures to protect information (encryption in transit, access controls, audit logs, and sound token management practices). No system is 100% invulnerable.

9) Your rights and contact

Depending on your location (including Mexico and the United States), you may have rights to request information about how we process your data or to request updates to it.

To make a request or ask a question, please use the contact form available on this website and include your full name and any details needed to locate your data.

10) Minors

Our services are not directed to individuals under 13/16 years of age (as applicable). We do not knowingly collect data from minors.

11) Cookies and similar technologies

We may use cookies or similar technologies for essential functionality, security, and aggregated metrics. You can manage them in your browser. Where required by law, we will display a notice or consent manager.

12) Changes to this policy

We may update this policy to reflect legal or operational changes. We will publish the current version with its effective date.

Grupo Cusoft – More information and inquiries via the contact form on this website.