Legal

Privacy policy

Your trust matters to us. This policy explains what information we collect, how we use it, and the choices you have.

Last updated: 30 May 2026

1. Overview

This Privacy Policy explains how Papyris (“we”, “us”) collects, uses, and protects information when you use our web-based CRM (the “Service”). It covers both the data about you as an account holder and the customer data you store in Papyris.

2. Information we collect

We collect the following types of information:

  • Account information — your name, email, phone number, business name, and password when you register.
  • Customer data you enter — the names, phone numbers, locations, notes, tags, orders, payment records and reminders you add about your customers.
  • Usage information — basic technical data such as device type, browser, and pages visited, used to keep the Service working and improve it.

3. How we use information

We use information to:

  • Provide, operate and maintain the Service;
  • Authenticate you and keep your account secure;
  • Respond to your support requests and demo bookings;
  • Understand how the Service is used so we can improve it;
  • Send important notices about your account or the Service.

We do not sell your personal information or your customer data to anyone.

4. Your customers' data

The customer records you store in Papyris belong to you. We process them only to provide the Service to you. You are the controller of that data and are responsible for collecting and using it lawfully, including telling your customers how their information is used where required.

5. WhatsApp & payment information

The “Message on WhatsApp” button only opens WhatsApp using a phone number you stored — we do not read or store your WhatsApp conversations. Payment statuses (including MoMo) are notes you record manually; Papyris does not connect to any payment provider and does not collect card or mobile-money credentials.

6. When we share information

We only share information in limited cases:

  • Service providers who host and support Papyris (for example, our database and hosting providers), under confidentiality obligations;
  • Legal reasons, if required by law or to protect the rights and safety of our users;
  • Business transfers, if Papyris is involved in a merger or acquisition, in which case we will notify you.

7. Data storage & security

We use reputable cloud infrastructure and apply reasonable technical and organisational measures to protect your information. No system is perfectly secure, but we work to safeguard data in transit and at rest and to limit access to those who need it.

8. Data retention

We keep your information for as long as your account is active or as needed to provide the Service. When you close your account, we delete or anonymise your data within a reasonable period, unless we must keep it to comply with legal obligations.

9. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal information, and to object to certain processing. To exercise these rights, contact us at the email below and we will respond within a reasonable time.

10. Children's privacy

Papyris is intended for business use by adults and is not directed at children. We do not knowingly collect personal information from anyone under 18.

11. Changes to this policy

We may update this Privacy Policy as Papyris evolves. We will revise the “Last updated” date above and, for significant changes, provide additional notice where appropriate.

12. Contact us

For any privacy questions or requests, email us at privacy@papyris.app.