1. Introduction
At iadu, we recognize the importance of protecting personal data and ensuring transparency in how it is collected, used, and stored. This Privacy Policy applies to all information collected from users through our website and CPaaS (Communication as a Service) platform. We are committed to using personal information only for the purposes specified, providing secure, personalized services in compliance with applicable regulations, such as the GDPR and CCPA.
Our Service
CPaaS platform designed to offer omnichannel communication solutions including SMS, voice calls and messaging via WhatsApp. Our service allows companies to manage their communications efficiently, providing advanced tools for:
• Sending and receiving messages: Data is routed through multiple channels to ensure fast and reliable delivery.
• Campaign Management: We provide functionalities to configure, monitor and analyze the performance of communication campaigns in real time.
• Security and fraud prevention: We implement measures such as content filters and risk analysis to protect end-user interactions.
• Data processing at iadu is carried out exclusively to enable these functionalities, maintaining a high standard of security and confidentiality.
• iadu Roles in Data Processing
iadu plays different roles in data processing, depending on the source and purpose of the data.
1.1 As Data Processor :
In the context of providing services, we act as data processors, processing information on behalf of our business clients. This includes:
• Data of our clients’ end users: For example, telephone numbers and content of messages sent through the platform.
• Purpose: To facilitate message delivery, perform performance analysis, and ensure communications security.
• Legal basis: Consent for data processing is obtained directly from our clients, who act as data controllers.
1.2 As Data Controller :
In activities related to our website and internal operations, iadu acts as a data controller, determining the purposes and means of processing. This includes:
• Data collected through the website: Browsing information, contact forms and cookie settings.
• Purpose: To improve the website experience, respond to queries and perform statistical analysis to optimize our content.
• Legal basis: Explicit consent provided by users when interacting with our site.
This clear distinction between our roles ensures that data is handled in accordance with applicable legal obligations and the expectations of our users. If you have questions about how we handle your data or wish to exercise your rights, please refer to the relevant sections in this policy or contact us directly.
2. How do we collect your personal data?
At iadu, we collect personal data through various methods to ensure the provision of high-quality services, security and personalization of your experience on the platform. This section details the collection processes, types of data used and how it is transmitted to fulfill our obligations.
2.1 Data Collection through Registration and Use of the Platform
During the registration process on the platform and its use, we collect the following personal and corporate data:
• Personal Information: Name, email, phone number, address.
• Corporate Information: Company name, address, phone number, third-party account credentials (such as PayPal or other providers).
• User Settings: Time zone, notification preferences, and specific settings to personalize your experience.
This information is provided voluntarily by users when creating their account and is used to enable the platform’s functionalities. It is the user’s responsibility to keep these settings updated to ensure the accuracy and relevance of the services offered.
2.2 Data Collection for Security and Credential Management
To protect your account and personal data:
• Passwords: A strong password is required upon registration and is encrypted in our database.
• Credential Recovery: If you forget your password, we offer a secure recovery mechanism by sending a temporary link to the email associated with your account.
• We recommend that all users periodically change their passwords and avoid sharing them to maintain a high level of security.
2.3 Automatic Collection of Data for Use of the Platform
When you interact with our platform, we automatically collect data that allows us to optimize and improve the user experience:
• Activity Logs: Include details of sent messages, delivery status, content size, and transmission times.
• Analytical Information: Data about user behavior, such as usage time and most used features, to develop new features and adjust the platform to your needs.
2.4 Data Collection through the Website
In addition to the Platform, we collect data when you visit our website, including:
• Cookies and Similar Technologies: We collect data about user preferences, navigation and devices used.
• Contact Forms: If you choose to contact us through online forms, we store your information to respond to inquiries or support requests.
• Web Analytics: We use analytics tools to understand how visitors interact with our website and to optimize its design and functionality.
2.5 Data Collection for Business Operations
In our business activities, we collect data relating to:
• Corporate Interactions: Contact information, position in the company, and data on communications between your company and our team.
• Payment Processing: Financial information required for billing and collection, such as card numbers or bank details processed exclusively by trusted providers.
• Contractual Relationships: Data included in contracts, agreements and correspondence to ensure compliance with our obligations.
2.6 Transmission of Personal Data
We transmit personal data securely to:
• Service Providers: For example, to process payments, deliver SMS messages, or verify information with mobile operators.
• Corporate Clients: We provide operational data such as performance metrics and campaign analytics.
• Regulatory Authorities: Only in the case of legal requirements, such as court orders or regulatory investigations.
All transmitted data is encrypted in transit and protected by strict third-party confidentiality agreements.
3. Use of Collected Information
The information we collect is used to provide our services, improve user experience, ensure security, and comply with our legal and contractual obligations. The purpose for each type of data collected is detailed below:
3.1 Purposes for Data Collected in the Core Services
Provide Access and Functionality of the Services:
• The data is used to correctly route messages across multiple channels (SMS, WhatsApp, voice), ensuring delivery to the right recipients in real-time.
• omnichannel campaigns to facilitate effective information sharing.
Ensuring Security and Preventing Fraud:
• We monitor usage patterns to detect suspicious activity, such as SIM swap fraud attempts or unauthorized mass mailings.
• We implement content filters to block messages that violate applicable policies or regulations.
Billing and Financial Management:
• We process service usage information (such as volumes of messages sent) to calculate fees and issue accurate invoices to customers.
Troubleshooting :
• We analyze logs and technical data to identify and resolve operational issues, such as message delivery failures or channel congestion.
Compliance with Audits and Legal Requirements:
• We keep records to demonstrate compliance with regulations and audits related to data protection and telecommunications.
3.2 Purposes for Data Collected on the Platform
• Personalization of User Experience:
We adapt the platform’s interface and functionalities according to the preferences and configurations established by users.
• Platform Performance Optimization:
We use analytics to identify areas for improvement and develop new features that optimize the use of the services.
• Credential Management and Security:
We protect user accounts through secure authentication and advanced password encryption.
3.3 Purposes for Data Collected on the Website
• Navigation Analysis:
We evaluate how users interact with our website to identify patterns of behavior and optimize site design and content.
• Support and Customer Service:
We use information from contact forms to respond to inquiries and provide technical or commercial support.
• Cookie Management:
Cookies help us improve user experience, such as saving language preferences or facilitating automatic login.
3.4 Purposes for Data Collected in Business Operations
• B2B Interactions:
We manage communications with companies, collecting information about contacts, positions in the company and specific details of projects or campaigns.
• Payment Processing and Contractual Compliance:
We use financial data to ensure billing and payment for services, complying with the agreed terms.
• Development of Business Relations:
We analyze data to better understand the needs of business customers and offer customized solutions.
4. Consent to Processing
4.1 Legal Basis for Data Processing
iadu acts as a data processor on behalf of our corporate clients. This means that:
Obtaining Consent:
• It is our customers’ responsibility to ensure that they have explicit and valid consent from their end users before sharing data with iadu for the provision of services.
• Our contracts with clients require that they obtain this consent as a legal basis for transferring data to iadu.
Processing on Behalf of the Client:
Data shared with iadu is processed exclusively for the purposes specified in the contractual agreements.
Compliance with International Regulations:
We ensure that all data transfers comply with the GDPR, CCPA and other applicable regulations, including the use of standard contractual clauses to ensure data protection in international transfers.
4.2 How We Ensure the Protection of Consent
• We verify that our clients implement clear and transparent mechanisms to collect consent, such as explicit forms, checkboxes or electronic consents.
• We regularly audit our processes to ensure compliance with contractual and legal obligations related to consent.
5. User Options and Rights
At iadu, we respect and protect the rights of our users in relation to their personal data. Under the GDPR and other applicable regulations, you have the following rights:
5.1 Right of Access
You have the right to request confirmation as to whether we are processing your personal data and, if so, a copy of this information together with details of:
• The categories of data processed.
• The purposes of the processing.
• The recipients with whom the information is shared.
How to exercise this right: You can send a request to privacy@iadu.com. We will respond within 30 days, except in exceptional cases that require a reasonable extension.
5.2 Right of Rectification
• If you believe that your personal data is inaccurate or incomplete, you have the right to request its correction.
• How to exercise this right: Please provide specific details about the necessary corrections to the contact listed and we will update the relevant records.
5.3 Right to Deletion (Right to be Forgotten)
In certain cases, you can request that we delete your personal data, including:
• When the data is no longer necessary for the purposes for which it was collected.
• If you withdraw your consent (see section 7.6).
• If you consider that the processing is unlawful.
How to exercise this right: Send a detailed request stating the reasons for deletion to our privacy team. We will confirm the deletion or explain the reasons why it cannot be executed (for example, legal obligations).
5.4 Right to Restrict Processing
• You may request restriction of processing of your data if:
• Dispute the accuracy of personal data.
• Processing is unlawful, but restriction is preferred over deletion.
• You need the data to exercise legal claims, but it is no longer necessary for our purposes.
How to exercise this right: Please contact us and specify the reason for your request. During the restriction period, your data will only be processed with your consent or for legal purposes.
5.5 Right of Objection
You may object to the processing of your personal data when:
• We process them based on legitimate interests or for direct marketing.
How to exercise this right: Please clearly state the reasons for your objection. If it is marketing-related, we will stop sending communications immediately.
5.6 Right to Withdraw Consent
If you have given your consent to data processing, you may withdraw it at any time. This will not affect the lawfulness of processing carried out prior to your withdrawal.
How to exercise this right:
Send your request to privacy@iadu.com
Our team will process the request, delete the related data and confirm the action within a reasonable time.
We implement technical controls to ensure that your data is not reused.
To exercise these rights, you can contact us at privacy@iadu.com
6. Contact
If you have questions or concerns about this policy, you may contact us:
Email: privacy@iadu.com
Leave us your contact and one of our specialist will get in touch!
© 2025 IADU BY IDENTIDAD TECH
© 2025 IADU BY IDENTIDAD TECH