StampPing Privacy Policy

Effective Date: January 1, 2026

StampPing (hereinafter referred to as "we," "us," "the Platform," or "the Service") values your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal data.

This policy applies to two categories of users:

1. Merchants: Businesses or individuals who register and use StampPing to build a loyalty system.

2. End-Users: Consumers who interact with Merchants using StampPing services via WhatsApp.

1. Information We Collect

We collect different types of data based on how you use our services:

A. For Merchants

When you register and use the Platform's dashboard, we collect:

  • Account Information: Your name, email address, encrypted password, and phone number.
  • Business Information: Company name, brand logo, and business address.
  • WhatsApp Business Account (WABA) Data: WABA ID, Phone Number ID, and Display Name linked via Meta authorization.
  • Payment Information: We process subscription fees via a third-party payment processor (Stripe). We DO NOT store your full credit card number directly; we only retain payment tokens and transaction records provided by Stripe.
B. For End-Users

When you interact with a Merchant using our Service via WhatsApp (e.g., scanning a QR Code to join, checking stamps), we collect the following on behalf of the Merchant:

  • Identity Information: Your WhatsApp phone number and WhatsApp Profile Name.
  • Interaction Records: Records of stamps collected, rewards redeemed, and conversation timestamps between you and the Merchant.
  • Note: We DO NOT access your private chat history, contact lists, or photos on WhatsApp. We only process interaction data specific to you and that particular Merchant.
2. How We Use Your Data
A. Core Service Operations
  • Merchants: To verify identity, manage subscriptions, provide customer support, and send system notifications (e.g., feature updates).
  • End-Users: To record your stamp balance, verify reward redemption eligibility, and send stamp notifications or merchant broadcast messages via WhatsApp.
B. Service Optimization & Security
  • To monitor system traffic and usage patterns for server performance optimization.
  • To detect and prevent fraud, abuse, or security vulnerabilities.
3. Roles in Data Control and Processing

To comply with data protection principles, please understand our role in data processing:

  • The Merchant is the "Data Controller": The Merchant owns the data of their members (End-Users) and decides how to use this data (e.g., setting loyalty rules, sending broadcast messages).
  • StampPing is the "Data Processor": We provide the technical platform to process data solely based on the Merchant's instructions and system settings.

To End-Users: If you wish to query, modify, or delete your membership data with a specific Merchant, please contact that Merchant directly. StampPing will assist in processing the request when submitted by the Merchant.

4. Data Sharing & Third-Party Services

We do not sell your personal data to third parties. However, we may share data in the following necessary circumstances:

  • Meta (WhatsApp): To enable WhatsApp sending and receiving functions, message content and phone numbers must be transmitted via Meta's API. This process is governed by Meta's Data Policy.
  • Service Providers: We engage trusted third-party companies (e.g., cloud hosting services like AWS/Google Cloud, payment processor Stripe) to assist in operations. They access data only to the extent necessary to perform their tasks and are bound by confidentiality agreements.
  • Legal Requirements: We may disclose data if required by court order, legal process, or to protect the rights and safety of the Platform and the public.
5. Data Security

We employ industry-standard technical measures to protect data, including:

  • Transmission Encryption: All data is encrypted using TLS/SSL protocols during transmission.
  • Access Control: Only authorized employees can access backend systems, with strict permission management implemented.
  • Security Audits: Regular system vulnerability scans and security assessments.

While we are committed to protecting your data, please understand that internet transmission is not 100% secure, and we cannot guarantee that data will effectively never be accessed by hackers.

6. Data Retention
  • Merchant Data: We retain your data for the duration of your account's existence. If you terminate your subscription, we will delete or anonymize your data after a reasonable period, in accordance with legal requirements or system backup policies.
  • End-User Data: As long as the Merchant continues to use our Service, we will retain your membership records on their behalf. If the Merchant terminates the service or requests data deletion, relevant data will be removed.
7. Cookies & Tracking Technologies

The Platform's website uses Cookies to identify your login status and store preference settings. You can refuse Cookies in your browser settings, but this may result in the inability to use certain dashboard functions.

8. Amendments to Privacy Policy

We may update this policy from time to time. Significant changes will be notified to Merchants via email or announced on the website. Continued use of the Service constitutes your agreement to be bound by the revised policy.

9. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact our Privacy Officer via:

Email: info@StampPing.io

Company Name: StampPing Limited