Privacy Policy

Last updated: April 29, 2026

This Privacy Policy describes how Webtechgen ("we", "us", or "our") collects, uses, and shares information when you visit our website, submit inquiries through it, or engage us as a service provider — including our role as a Meta Tech Provider for client businesses.

1. Who We Are

Webtechgen is a software development company incorporated in India, with its principal office at:

2-A, Nanak Arcade, 85-Hind Nagar, Opposite Shivalik International School, Sector C1, LDA Colony, Lucknow, Uttar Pradesh 226012, India

Email: info@webtechgen.com

2. What Data We Collect

Contact form submissions

When you submit our contact form, we collect:

  • Name — to address you personally
  • Email address — to send you a reply
  • Phone number — if you provide it, to follow up by phone
  • Message content — the enquiry or project brief you write

Analytics data

We use Vercel Analytics and Google Analytics 4 (GA4) with Google Consent Mode to understand how visitors use our site. This may include:

  • Pages visited and time spent
  • Referring URL and approximate geographic region (country / city)
  • Device type and browser
  • Aggregated interaction events

We do not use analytics to build personal profiles or serve targeted advertising.

Cookies

Our site sets a minimal set of cookies:

  • Strictly necessary cookies — session management and security; no consent required.
  • Analytics cookies — set only after you grant consent via our cookie banner (where applicable).

3. Why We Collect It

| Purpose | Legal basis | |---|---| | Respond to your enquiry or project brief | Legitimate interest / pre-contractual steps | | Measure site performance and improve content | Legitimate interest (analytics, aggregated) | | Comply with legal obligations | Legal obligation |

4. Who We Share It With

We use the following sub-processors who may receive your data as part of service delivery:

  • Resend (email delivery) — your name and email are passed to Resend to send you a reply. resend.com/privacy
  • Sanity (headless CMS) — contact submissions may be stored temporarily in our Sanity dataset. sanity.io/legal/privacy
  • Vercel (hosting & edge network) — your IP address and request metadata pass through Vercel's infrastructure. vercel.com/legal/privacy-policy
  • Sentry (error monitoring) — anonymised stack traces and browser metadata are sent to Sentry if the site encounters an error. sentry.io/privacy
  • Google (analytics) — anonymised usage data is sent to Google Analytics under your consent preference. policies.google.com/privacy
  • Meta Platforms (Tech Provider services only) — when clients engage us as a Meta Tech Provider, we interact with Meta's WhatsApp Business Platform, Marketing API, Pages API, Instagram Graph API, and Lead Ads API on the client's authorized accounts. meta.com/privacy

We do not sell your personal data to third parties.

4A. Platform Data from Meta (Tech Provider services)

When clients engage us to operate WhatsApp Business API, Facebook Pages, Instagram business accounts, Meta ad accounts, or Lead Ads on their behalf, we receive data from Meta — referred to here as "Platform Data". This includes:

  • Aggregated insights, page engagement metrics, and ad performance data
  • WhatsApp message contents, contact phone numbers, and template activity
  • Lead Ad submissions (name, contact details, form responses)
  • Audience and targeting metadata (aggregated, not individual-level where possible)

How we handle Platform Data

  • On behalf of clients only. Platform Data is processed solely to deliver the services the client has authorized us to perform — for example, running their ad campaigns or managing their WhatsApp inbox. We are a data processor for these activities; the client is the data controller.
  • Written authorization. No Platform Data is accessed without a signed services agreement and Data Processing Addendum naming the specific Meta permissions and purposes.
  • Minimum necessary access. We request only the Meta permissions required to deliver the agreed service. Permissions are revocable by the client at any time from Meta Business Manager.
  • No combining across clients. Platform Data from one client is never combined with another client's data, never used to train independent models, and never sold or shared with third parties.
  • Compliance. Our handling complies with Meta's Platform Terms, Developer Policies, and Advertising Policies. We honour deletion requests within Meta's required timelines (typically within 30 days of a verified request).
  • Sub-processors for Platform Data. Tools we may use to deliver these services include the client's chosen CRM (HubSpot, Salesforce, Zoho), helpdesk (Zendesk, Freshdesk), data warehouse (BigQuery, Postgres), and infrastructure (AWS, Vercel). All are bound by data processing terms.

For full detail on our role as a Meta Tech Provider, see /tech-provider.

5. Data Retention

  • Contact form submissions: retained for 12 months from receipt, then permanently deleted or anonymised.
  • Analytics data: retained per the default Google Analytics 14-month window; Vercel Web Analytics does not store raw personal data.
  • Error logs: retained for 30 days in Sentry, then auto-deleted.
  • Meta Platform Data (Tech Provider services): retained only as long as needed to deliver the agreed service, and deleted within 30 days of a client request or end of engagement, except where a longer retention is required by law or by the client's own data retention policy.

6. Your Rights

Under the Digital Personal Data Protection Act 2023 (DPDP Act — India)

If you are a Data Principal under the DPDP Act 2023, you have the right to:

  • Access the personal data we hold about you
  • Correction of inaccurate or incomplete data
  • Erasure of your personal data (right to be forgotten), subject to legal retention requirements
  • Grievance redressal — raise a complaint with our Data Protection Officer (see Section 9) or with the Data Protection Board of India
  • Withdrawal of consent at any time for processing activities based on consent (withdrawal does not affect prior lawful processing)

Under the General Data Protection Regulation (GDPR — EU/EEA visitors)

If you are located in the European Union or European Economic Area, you additionally have:

  • Right to portability — receive your data in a structured, machine-readable format
  • Right to object to processing based on legitimate interest
  • Right to restrict processing while a dispute is investigated
  • Right to lodge a complaint with your local supervisory authority

To exercise any of these rights, contact us at info@webtechgen.com. We will respond within 30 days of receiving a verified request.

7. Children's Data

Our website is not directed at persons under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently received data from a child, please contact us immediately at info@webtechgen.com and we will delete it promptly.

8. International Transfers

Our primary data processing is conducted in India. Where data is transferred outside India (for example, to Vercel's global edge network or Google's analytics infrastructure), we rely on appropriate safeguards including Standard Contractual Clauses or equivalent mechanisms as recognised under applicable law.

9. Contact & Grievance Redressal

For any privacy-related questions, data access requests, or complaints:

Webtechgen — Data Privacy Email: info@webtechgen.com Address: 2-A, Nanak Arcade, 85-Hind Nagar, LDA Colony, Lucknow, UP 226012, India

We aim to acknowledge all requests within 72 hours and resolve them within 30 days.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Material changes will be notified on the website homepage for at least 30 days.