Home · Legal documents · Privacy policy
Privacy policy
The essentials. Im.Age Commerce is a commerce-management application that runs offline by default. Your business data (clients, sales, expenses, inventory) stays in a local SQLite database on your device. We do not upload it to our servers. Only licensing, WhatsApp verification, and optional telemetry involve a network exchange.
1. Who we are
Perspective GAIA SARL — Ouagadougou, Sector 44, Zone 1, Burkina Faso — RCCM BF OUA 01-2022-B12-14160. For any privacy question, write to [email protected].
2. Data we process
2.1 Data stored locally on your device
- Business information: sales, clients, WhatsApp contacts, expenses, inventory, loyalty points.
- Application preferences and configuration.
This data never leaves your device. We have no access to it.
2.2 Data sent to our servers
- License and account: WhatsApp phone number, OTP verification code, install token, non-reversible machine fingerprint.
- Optional telemetry (toggle off any time in Settings → Privacy): anonymous install ID, app version, operating system, aggregated usage events (counters only, no business content).
- Diagnostics sent on demand (never automatically): technical logs you explicitly choose to upload from the application.
2.3 Website cookies
The website imagecommerce.net uses no tracking cookies. See the cookie notice.
3. Purposes and legal bases
- License activation and renewal — performance of contract (EULA).
- WhatsApp verification (OTP via Meta WhatsApp Business) — performance of contract and account security.
- Product-improvement telemetry — explicit consent, withdrawable any time.
- Fraud / abuse prevention — legitimate interest of the publisher.
- Legal obligations — accounting, retention of invoices, lawful requests.
4. Processors and recipients
We strictly limit our list of processors:
- Meta Platforms Ireland — sending OTP codes via WhatsApp Business API.
- Contabo GmbH (Germany) — hosting of license and telemetry servers.
- GitHub Inc. — distribution of signed installers and release notes.
No data is sold, rented, or shared with third parties for advertising purposes.
5. International transfers
Our servers are hosted in Germany; some technical data (phone number, tokens, telemetry) is processed within the European Union. Meta WhatsApp Business may process data across multiple jurisdictions in accordance with its own contractual commitments.
6. Retention
- Local business data: kept as long as you use the app; you can export or delete it any time.
- OTP codes: maximum 5 minutes server-side, then destroyed.
- Active install tokens: as long as the install remains registered to your account.
- Telemetry: maximum 90 days in aggregated form.
- Server audit logs: 12 months.
7. Your rights
Under Burkina Faso Law n° 010-2004/AN on personal data protection and, where applicable, the GDPR, you have the right to:
- access, rectification, erasure;
- restrict and object to processing;
- portability (export of your business data);
- withdraw telemetry consent;
- complain to the competent authority (in Burkina Faso: the CIL — Commission de l'Informatique et des Libertés).
To exercise your rights, follow the procedure on the data deletion page or write to [email protected]. We respond within 30 days.
8. Security
Network communications are encrypted with TLS 1.2+. Tokens stored locally are encrypted with a key derived from the machine fingerprint. No password is stored in plain text. Server backups are encrypted at rest.
9. Minors
The application is not intended for individuals under 16.
10. Changes
Any material change to this policy will be announced inside the application and published on this page with a new version date. The current version is always the one available at imagecommerce.net/en/legal/privacy.html.