← Back to home

Privacy Notice

Last updated: June 18, 2026

1. Who we are

This Privacy Notice describes how atlaski ("atlaski", "we", "us"), the legal entity operating the Atlaski platform, processes personal data. atlaski acts as the data controller for personal data collected through the Atlaski website and product. You can contact us at hello@atlaski.com.

2. Categories of personal data we collect

  • Account data: name, email, password hash, organisation name.
  • Billing data: billing name, address, country, tax ID, and order history (payment card data is collected and stored by Paddle, not by us).
  • Product data: conversation metadata, contacts you import, messages routed through the platform.
  • Support data: messages and attachments you send to support.
  • Technical data: IP address, device and browser identifiers, log and usage telemetry, cookies.

3. Purposes and legal bases

  • Providing the service — performance of our contract with you.
  • Billing and tax compliance — performance of contract and legal obligation.
  • Security, fraud prevention, abuse detection — our legitimate interest.
  • Product improvement and aggregated analytics — our legitimate interest.
  • Customer support — performance of contract.
  • Service and security notifications — performance of contract and legal obligation. Marketing emails are sent only with your consent.

4. Data sharing and sub-processors

We never sell your data. We share personal data with the following categories of recipients:

  • Paddle.com Market Limited ("Paddle") — our payments provider and Merchant of Record. See paddle.com/legal/privacy.
  • Hosting and infrastructure providers used to run the platform.
  • Email delivery providers for transactional and (where consented) marketing email.
  • The WhatsApp Business API and related Meta services required to deliver messages you send.
  • Professional advisers (legal, accounting) and authorities where required by law.

5. Data retention

We keep account and product data for as long as your account is active. After account closure, we delete or anonymise personal data within 90 days, except where we are required to retain it longer (typically up to 7 years for invoicing and tax records). Backups rotate on a 30-day cycle.

6. Security

All data is encrypted in transit and at rest. Row-level security policies isolate every organisation's data, and access to production systems is restricted and logged.

7. Your rights

Subject to applicable law, you have the right to access, rectify, delete, restrict or object to processing of your personal data, to data portability, and to withdraw consent at any time. To exercise any right, email hello@atlaski.com. We respond within one month.

8. Cookies

We use strictly necessary cookies to keep you signed in and remember preferences, plus limited analytics cookies to measure product usage.

9. Contact

Questions? Email hello@atlaski.com.