Privacy Policy

PT Axis Flow Digital is an Indonesian limited liability company registered at Jatibening Baru, Kec. Pondokgede, Kota Bekasi, Jawa Barat 17412, Indonesia. NPWP 10.000.000-6.733.787.

For privacy-related inquiries, please contact us at info@axisflow.id or +62 881-7560-000.

We collect the following categories of information:

• Account information: name, email address, password (stored hashed), and the organization you represent.
• WhatsApp Business data: WhatsApp Business Account (WABA) IDs, phone number IDs, display names, business profile information, message templates, and messaging metadata necessary to operate the WhatsApp Cloud API on your behalf.
• Conversation content: messages exchanged between your business and your customers via WhatsApp, including text, media references, status timestamps, and delivery receipts.
• Business and financial data: documents, financial statements, tax records, and other materials you provide for our consulting and accounting services.
• Technical data: IP address, browser and device information, log files, and cookies necessary to operate the service.

We use the information we collect to:

• Provide, operate, and maintain our services and dashboards.
• Authenticate users and protect against unauthorized access.
• Send and receive WhatsApp messages on your behalf via the official WhatsApp Cloud API.
• Deliver consulting, finance, audit, and training engagements as agreed in our service contracts.
• Communicate with you about service updates, billing, and support.
• Comply with legal, regulatory, and tax obligations in Indonesia.
• Detect, prevent, and respond to fraud, abuse, and security incidents.

As an approved Meta Tech Provider, our use of WhatsApp Business data is governed by the WhatsApp Business Messaging Policy, the Meta Platform Terms, and Developer Policies.

We do not sell, rent, or transfer WhatsApp data to third parties for advertising or unrelated commercial purposes. WhatsApp business access tokens are stored encrypted at rest using AES-256-GCM and are never shared.

We share information only as follows:

• With Meta Platforms, as required to operate the WhatsApp Cloud API.
• With service providers (cloud hosting, database, email, analytics) under contract obligations to protect your data.
• With regulators or authorities, where required by Indonesian law, including tax filings and lawful information requests.
• In connection with corporate transactions (merger, acquisition, sale of assets), with appropriate safeguards.
• With your consent, when you explicitly authorize a transfer.

We do not sell your personal information.

We retain personal and business data for as long as your account is active and as needed to provide the service. After termination, we may retain limited records required for legal, tax, accounting, or audit obligations under Indonesian law (typically 10 years for tax records).

You may request deletion of your data at any time by writing to info@axisflow.id, subject to applicable legal retention requirements.

We apply technical and organizational measures appropriate to the risk, including HTTPS-only transport, HMAC-SHA256 signature verification on Meta webhooks, AES-256-GCM encryption for sensitive tokens at rest, role-based access control, and regular backups. No system is perfectly secure; we encourage you to use strong, unique passwords and to report suspicious activity promptly.

Our infrastructure is hosted in Indonesia or other jurisdictions where our service providers operate. By using our services, you consent to the transfer of your data to those jurisdictions, which may have different data protection laws than your own.

Subject to applicable law, you have the right to:

• Access the personal information we hold about you.
• Request correction of inaccurate data.
• Request deletion (subject to legal retention obligations).
• Withdraw consent for processing where consent is the legal basis.
• Lodge a complaint with the appropriate Indonesian data protection authority.

To exercise any of these rights, contact us at info@axisflow.id. We will respond within 30 days.

We use strictly necessary cookies to operate the service (for example, authentication session cookies). We do not use third-party advertising cookies. You can control cookies through your browser settings; disabling them may impact certain features such as staying signed in.

Our services are not directed to individuals under 18. We do not knowingly collect data from minors. If you believe a minor has provided us with personal information, please contact us so we can take appropriate action.

We may update this Privacy Policy from time to time. Material changes will be posted on this page with a revised effective date. Your continued use of the services after the revised policy is published constitutes your acceptance of the changes.

PT Axis Flow Digital
Jatibening Baru, Kec. Pondokgede
Kota Bekasi, Jawa Barat 17412
Indonesia

Email: info@axisflow.id
Phone / WhatsApp: +62 881-7560-000