Data Deletion & Retention

This policy applies whenever you use one of our products that integrates with Meta platforms — including the Facebook Login, Instagram Graph API, WhatsApp Business Platform, Meta Marketing API and the Meta Lead Ads API.

Depending on the product and the permissions you grant, we may receive:

• Public profile information (name, profile picture, page or business ID).
• Page, Instagram account and WhatsApp Business account access tokens.
• Messages, conversations and contact identifiers exchanged through WhatsApp, Messenger and Instagram Direct (only for products that need them, such as Qunvert and WAPI).
• Lead form submissions and form metadata (for WEBI Leadform and Rekovery).
• Ad and insight metrics, when explicitly authorized.

We never request more data than what is strictly necessary to deliver the feature you are using.

• Access tokens & integration credentials — kept for as long as the integration is connected. Removed within 30 days after disconnection.
• Messages, leads and conversation history — kept for up to 180 days after creation, then automatically purged from primary storage. Encrypted backups are rotated within 90 days after that.
• Aggregated, non-identifiable analytics (counts, response times, error rates) may be kept indefinitely for product quality and reliability monitoring.
• Billing & legal records — kept for as long as required by applicable tax and accounting laws (typically up to 7 years).

• All data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
• Access tokens are stored encrypted and accessed only by the specific service that needs them.
• Access to production systems is scoped, logged and audited.
• We never sell, rent or share your Meta-platform data with third parties for advertising purposes.

You have the right to request the deletion of all data we hold about you at any time. There are three equivalent ways to do so:

• Inside the app: open Settings → Account → Delete my data. This wipes your account and all linked Meta integrations within 24 hours.
• Disconnect from Meta: remove our app at Facebook Settings → Business Integrations. We receive a deauthorization webhook from Meta and erase the associated tokens within 24 hours.
• Email us: send a request to support@web-univers.com from the email address linked to your account. We will confirm deletion within 5 business days.

Once a deletion is processed, the data cannot be recovered. Encrypted backups containing the deleted data are purged within 90 days.

We honor Meta's Data Deletion Callback. When you remove our application from your Facebook, Instagram or WhatsApp business account, Meta sends a signed request to our servers and we permanently delete all data linked to your user identifier within 24 hours.

The confirmation URL returned to Meta is unique per request and can be presented to Meta's support team on demand.

In addition to deletion, you may also request to access, correct or export your personal data. See our Privacy Policy for the full list of your rights and how to exercise them.

For any question about data retention, deletion or Meta-platform compliance, contact our team at support@web-univers.com or write to:

WEB UNIVERS LLC
30 N Gould St Ste R
Sheridan, WY 82801, USA