Effective Date: 21-02-2026
Website: nxtcloudchat.com
Contact: support@nxtwebsite.com

NXT Cloud Chat (“we”, “our”, “us”) operates the website nxtcloudchat.com. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website and when you use our WordPress plugin, NXT Cloud Chat (“Plugin”).

If you do not agree with this Privacy Policy, please do not use the website or the Plugin.

1) Scope of This Privacy Policy

This policy applies to:

  • Visitors to nxtcloudchat.com
  • Users who download, install, or use the NXT Cloud Chat Plugin on their own WordPress websites

This policy does not cover third-party websites or services you may access through links on our website, or services you integrate with the Plugin (for example, Meta/WhatsApp Cloud API).

2) Information We Collect (Website)

A. Information you provide voluntarily

We may collect information you choose to provide, such as:

  • Name (if you submit it)
  • Email address (for support requests or contact forms)
  • Any information you include in messages sent to us (support inquiries, feedback)
B. Information collected automatically

When you browse our website, we may collect:

  • IP address (may be logged by our hosting/security tools)
  • Browser type, device type, operating system
  • Referring/exit pages, date/time, and general usage data

This information is typically collected via server logs and standard analytics/security mechanisms.

3) Cookies and Tracking Technologies

Our website may use cookies or similar technologies for:

  • Basic website functionality
  • Security and performance
  • Analytics (to understand traffic and improve site experience)

You can control cookies through your browser settings. Disabling cookies may affect certain site functions.

4) Information Processed by the Plugin

A. Data stored on your WordPress site

NXT Cloud Chat is designed to be self-hosted. Plugin data is stored in your own WordPress database, which may include:

  • WhatsApp message history (sent/received content, timestamps, identifiers)
  • Contacts and groups
  • Templates and broadcast logs (where applicable)
  • Settings and configuration values

Important: This data is stored on your website/server, not on ours.

B. Authentication and OTP login (if enabled)

If you enable WhatsApp OTP login features, the Plugin may process:

  • Phone numbers used for login verification
  • OTP requests and verification status
  • Related login metadata stored within your WordPress site
C. API credentials and tokens

To connect with WhatsApp Cloud API, the Plugin requires credentials such as:

  • WhatsApp Business Account ID
  • Phone Number ID
  • Access tokens / App credentials (as configured)

These credentials are stored on your WordPress site and are used to communicate with Meta’s platforms.

5) What We Do Not Collect Through the Plugin

We do not receive or store your WhatsApp messages, contacts, groups, or your customers’ personal information on our servers by default. The Plugin functions by connecting your WordPress site directly to Meta’s WhatsApp Cloud API.

If you contact support and choose to share logs/screenshots or other diagnostic information, we will only receive what you voluntarily send.

6) How We Use Information

Website

We may use website information to:

  • Respond to inquiries and provide support
  • Improve website performance and content
  • Monitor security and prevent abuse
  • Comply with legal obligations
Plugin (on your site)

The Plugin processes data on your server to:

  • Send and receive WhatsApp messages via WhatsApp Cloud API
  • Enable OTP login and verification flows (if enabled)
  • Manage contacts, groups, broadcasts, templates, and logs
  • Provide admin dashboard and internal reporting features

7) Legal Basis for Processing (Where Applicable)

Depending on your location, processing may be based on:

  • Your consent (e.g., submitting a contact form)
  • Our legitimate interests (e.g., site security, improving services)
  • Contractual necessity (e.g., responding to support)
  • Legal compliance obligations

For Plugin users, you are typically the data controller for customer/user data processed on your WordPress site, and you are responsible for ensuring lawful collection and processing.

8) Sharing and Disclosure

We do not sell personal information.

We may share information in limited cases:

  • Service providers: Hosting, email, security, or analytics providers who support site operations (only what is necessary).
  • Legal requirements: If required to comply with law, regulation, subpoena, or court order.
  • Protection: To protect rights, property, security, or prevent fraud/abuse.

9) Third-Party Services (Meta / WhatsApp Cloud API)

When you use the Plugin with WhatsApp Cloud API, your WordPress site communicates with Meta platforms. Meta’s processing of data is governed by their own terms and privacy policies.

You should review Meta/WhatsApp policies, including platform pricing and data usage terms, to ensure compliance with your business requirements.

10) Data Retention

Website

We retain support/contact submissions as long as necessary for support, record-keeping, and legal purposes.

Plugin (your site)

Data retention depends on your own WordPress database policies and your actions in the Plugin (for example, deleting message history or contacts). You control how long data remains stored on your server.

11) Security

We take reasonable measures to protect the information we process on our website. However, no method of transmission or storage is 100% secure.

For Plugin users: security depends heavily on how your WordPress site is hosted and secured. We recommend:

  • Keeping WordPress, themes, and plugins updated
  • Using strong admin passwords and 2FA
  • Using SSL (HTTPS)
  • Limiting admin access to trusted users
  • Storing tokens securely and rotating them when needed

12) International Data Transfers

Our website hosting or service providers may operate in different countries. If information is transferred internationally, we take reasonable steps to ensure appropriate protections are in place.

For Plugin users, your WhatsApp Cloud API usage may involve cross-border processing depending on Meta’s infrastructure.

13) Your Rights

Depending on your jurisdiction, you may have rights such as:

  • Access to your personal information
  • Correction of inaccurate data
  • Deletion of your personal information
  • Objection or restriction of processing
  • Data portability

To exercise these rights for website-related data, contact: support@nxtwebsite.com

For Plugin-related data stored on your WordPress site, you should manage it directly within your WordPress admin or database, since we do not host that data.

14) Children’s Privacy

Our website and Plugin are not intended for children under 13 (or under the age defined by local law). We do not knowingly collect personal data from children.

15) Changes to This Privacy Policy

We may update this policy from time to time. Updates will be posted on this page with a revised “Effective Date”. Continued use of the website after changes means you accept the updated policy.

16) Contact Us

If you have questions about this Privacy Policy or your data, contact:

NXT Cloud Chat Support
Email: support@nxtwebsite.com