Chat with us
Marichi LogoMarichi
Privacy Policy

Privacy Policy

Transparency is foundational to trust. This policy explains how we collect, use, and protect your personal and business data.

Last updated: February 2026Effective: February 2026
Table of Contents

1. Introduction

Marichi ("Company", "we", "our", or "us") is committed to protecting the personal and business data of all individuals and entities that interact with our platform, website, APIs, integrations, and communications. This Privacy Policy sets out in formal terms the manner in which we collect, use, disclose, retain, and protect personal information in accordance with applicable data protection and privacy legislation.

We believe that transparency is foundational to trust. By engaging with any Marichi service, you acknowledge that you have read, understood, and agree to the practices described herein.

2. Scope of this Policy

This Privacy Policy applies to all data processing activities conducted by Marichi, including but not limited to:

  • The Marichi website and all subdomains
  • The Marichi SaaS platform and dashboard
  • All APIs, webhooks, and developer integrations
  • WhatsApp Business API messaging infrastructure
  • Customer support, sales, and marketing communications
  • Third-party integrations enabled at the user's discretion

3. Information We Collect

3.1 Personal Identification Data

  • Full name and job title.
  • Corporate email address and personal email address.
  • Phone number, including WhatsApp-registered numbers.
  • Company name, registered address, and industry sector.
  • Country and timezone of operation.

3.2 Business and Transactional Data

  • Order histories, payment records, and invoice data.
  • CRM integration data synced at the user's instruction.
  • Conversation logs and messaging metadata generated through the platform.
  • Configuration data including workflow rules and automation settings.

3.3 Technical and Device Data

  • IP address and approximate geolocation.
  • Browser type, version, and operating system.
  • Device identifiers and screen resolution.
  • Network and connectivity metadata.

3.4 Usage Analytics

  • Pages visited, features accessed, and time spent on platform.
  • Interaction patterns and session duration.
  • Error logs and diagnostic data.
  • Feature engagement metrics used for product improvement.

We also use cookies, pixel tags, local storage, and similar tracking technologies — see .

5. Use of Collected Information

We use the information we collect for the following purposes:

  • Provisioning, operating, and maintaining platform services.
  • Processing transactions and sending related communications.
  • Responding to technical support requests.
  • Detecting, investigating, and preventing fraud, abuse, or security incidents.
  • Improving, analysing, and developing platform functionality and user experience.
  • Sending service notifications, policy updates, and operational alerts.
  • Marketing communications where you have provided consent or a legitimate interest exists.
  • Fulfilling obligations under applicable law or regulatory frameworks.

6. WhatsApp Data Processing

Marichi operates as a technology layer on the WhatsApp Business Platform. In doing so, we adhere to Meta's Business and WhatsApp Business Policy requirements.

  • All end-user messaging is initiated only after explicit opt-in consent has been obtained.
  • Businesses are contractually required to provide a clear mechanism for users to opt out.
  • Message content is processed through Meta's infrastructure and subject to their data agreements.
  • We do not access, read, or retain the substantive content beyond what is technically required.
  • Businesses bear independent responsibility for their compliance with WhatsApp's Messaging Policy.

7. Disclosure and Data Sharing

We do not sell personal data. We may share data in the following circumstances:

7.1 Service Providers

We engage vetted third-party processors for hosting, analytics, payment processing, and customer support under data processing agreements that impose confidentiality and security obligations.

7.2 Technology Partners

Where you have authorised integrations with third-party tools such as CRM platforms, accounting software, or communication services, data is shared at your express instruction.

7.3 Legal and Regulatory Authorities

We may disclose information when required by law, court order, regulatory investigation, or to protect the rights, safety, and property of Marichi, its users, or the public.

7.4 Corporate Transactions

In the event of a merger, acquisition, asset sale, or business restructuring, personal data may be transferred as part of the transaction, subject to standard confidentiality protections.

8. Data Retention

We retain personal data for as long as is necessary to fulfil the purposes described in this policy, to maintain active account relationships, or to comply with applicable legal, tax, accounting, and audit requirements. Specific retention periods are determined by the nature of the data and the operational or regulatory context. Upon account termination, data is deleted or anonymised within a commercially reasonable period, subject to any outstanding legal holds or obligations.

9. Data Security

We implement comprehensive technical and organisational security measures, including:

  • Encryption of data in transit using TLS 1.2 or higher.
  • Encryption of data at rest using industry-standard algorithms.
  • Role-based access controls restricting internal access to authorised personnel.
  • Continuous security monitoring, intrusion detection, and anomaly alerting.
  • Periodic security assessments, penetration testing, and vulnerability management.
  • Incident response procedures with defined notification timelines.

10. International Data Transfers

Marichi may process and store data in jurisdictions outside your country of residence. Where such transfers occur, we ensure adequate safeguards are in place, including standard contractual clauses approved by relevant regulatory authorities, binding corporate rules, or transfers to jurisdictions recognised as providing an adequate level of data protection.

11. Your Rights

Subject to applicable law, you may exercise the following rights with respect to your personal data:

Right of Access
Right to Correction
Right to Erasure
Right to Restriction
Right to Data Portability
Right to Object
Right to Withdraw Consent

To exercise any of these rights, please submit a written request to our legal contact address provided in Section 17.

12. Automated Decision-Making

Where we employ automated processing, including AI-assisted routing or classification, that produces decisions with significant effects on individuals, we will provide appropriate safeguards and, where required by law, a right to human review.

13. Cookies and Tracking

We use the following categories of cookies and tracking technologies:

  • Strictly Necessary Cookies: Essential for operation.
  • Performance and Analytics Cookies: For insights and improvement.
  • Functional Cookies: For personalisation.
  • Marketing Cookies: For interest-based communications.

14. Children's Privacy

Our services are not directed at, and we do not knowingly collect personal data from, individuals under the age of 18 or the applicable age of digital consent in their jurisdiction.

15. Third-Party Links and Services

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of such third parties.

16. Changes to this Policy

We reserve the right to update this Privacy Policy at any time. Material changes will be communicated via email or prominent platform notifications at least 14 days prior to their effective date.

17. Contact — Data Protection

For privacy-related enquiries, data subject requests, or to contact our Data Protection Officer, please write to:

Marichi — Legal & Privacy

privacy@marichi.co

We endeavour to respond to all legitimate requests within 30 days.