TAILWIND_BRAND_V2_READY

Privacy Policy

Last updated: 24 March 2026

Korekko helps solo businesses and small teams manage enquiries, follow-ups, bookings, payments, and reputation. This Privacy Policy explains what data we collect, how we use it, and the choices available to our users.

1. Who we are

Korekko is a software product that helps businesses handle customer conversations, bookings, payments, reminders, and related workflows. For privacy questions, contact team@korekko.com.

2. Information we collect

We may collect the following categories of information:

  • Account details such as name, email address, business name, and login details.
  • Business profile details such as category, location, services, hours, phone number, and branding information.
  • Customer workflow data such as enquiries, bookings, follow-ups, notes, payments, receipts, reviews, and related activity history.
  • Connected service data where you choose to connect third-party accounts, such as Google, Meta, WhatsApp, calendar providers, or payment tools.
  • Technical and usage information such as device, browser, IP address, pages viewed, and product interaction events.
  • Files and documents you upload, including receipt samples, profile assets, or verification documents.

3. How we use information

  • To provide, maintain, and improve Korekko.
  • To authenticate users and protect account security.
  • To operate bookings, payments, reminders, receipts, and customer communication workflows.
  • To support connected features using services such as Google sign-in, Google Calendar, Google Contacts, Meta, WhatsApp, or payment integrations when you enable them.
  • To monitor product reliability, prevent abuse, detect fraud, and keep the service secure.
  • To communicate service updates, support responses, and important notices.
  • To comply with legal obligations and enforce our Terms of Service.

Where required by applicable law, we obtain your explicit consent before activating specific features such as channel integrations. You may withdraw consent at any time by disconnecting the relevant integration from Settings or by contacting team@korekko.com.

4. Google, Meta, and other connected services

If you choose to sign in with Google or connect Google services, we access only the scopes and data needed to provide the feature you enable, such as authentication, calendar support, or contacts support.

If you connect Meta, Instagram, WhatsApp, or related business messaging tools, we use that data only to provide the workflows you request, such as enquiry handling, follow-up messaging, or reputation actions.

We do not sell Google, Meta, or other connected account data. We use connected data only to operate Korekko features requested by the user.

5. Sharing of information

We may share information only in the following limited cases:

  • With infrastructure and service providers that help us run Korekko, such as hosting, databases, analytics, communications, and payment tooling.
  • With third-party services you choose to connect and authorize.
  • When required by law, regulation, legal process, or to protect rights, safety, and security.
  • As part of a corporate transaction such as a merger, financing, or acquisition, subject to appropriate confidentiality protections.

6. Data retention

We retain different categories of data for defined periods:

Message content from connected channels (WhatsApp, Instagram, Google Business): 90 days from the date of receipt, after which message text is permanently and automatically deleted.

Lead identity, outcomes, and business activity records derived from conversations: 12 months from the date of last activity.

Account and profile data: Duration of your active account, plus 30 days after deletion, except where longer retention is required by law.

Payment and transaction records: 7 years as required under applicable Indian financial regulations.

If you disconnect a connected channel, message data from that channel is deleted within 30 days of disconnection.

You may request early deletion at any time by contacting team@korekko.com.

7. Security

We use reasonable administrative, technical, and organizational safeguards to protect information. No method of storage or transmission is completely secure, but we work to protect data against unauthorized access, disclosure, alteration, and misuse.

8. Your choices and rights

You may request access, correction, or deletion of your data by contacting us at team@korekko.com.

If you connected Google, Meta, or other third-party services, you may also revoke access through the relevant provider account settings.

9. Data deletion requests

To request deletion of your Korekko account data, email team@korekko.com from your account email address with the subject line Data Deletion Request.

Please include your business name, account email, and any connected provider details needed to identify your account. We may retain limited information where required for legal, security, fraud prevention, billing, or recordkeeping purposes.

10. Children’s privacy

Korekko is not directed to children, and we do not knowingly collect personal information from children.

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date on this page and may provide additional notice where appropriate.

12. Contact

For privacy or data questions, contact team@korekko.com.

13. Your Rights Under the Digital Personal Data Protection Act, 2023 (India)

If you are located in India, you have the following rights as a Data Principal under the Digital Personal Data Protection Act, 2023:

  • Right to access: Request a summary of personal data we hold and how it is processed.
  • Right to correction: Request correction of inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data, subject to legal retention requirements.
  • Right to grievance redressal: Raise a grievance with our Grievance Officer. We will acknowledge within 72 hours and resolve within 30 days.
  • Right to nominate: Nominate another person to exercise your rights on your behalf in the event of your death or incapacity.

Grievance Officer:

  • Name: Niharika Jain
  • Designation: Chief Business Officer, Korekko
  • Email: team@korekko.com

14. Data Controller and Data Processor

When you use Korekko to manage your customers' enquiries, messages, and interactions, you act as the Data Controller for your customers' personal data. Korekko acts as a Data Processor, processing that data only on your instructions and only to provide the Korekko service.

By connecting third-party channels such as WhatsApp, Instagram, or Google Business to Korekko, you confirm that you have a lawful basis to process your customers' data through Korekko for the purpose of managing business communications, as required under the Digital Personal Data Protection Act, 2023.