Data security and privacy - Kharyo AI
Kharyoharyo AI

Platform security

How we protect your data

The technical and operational measures we apply so your operation in Kharyo stays yours. No inflated claims, just what we actually do today.

Encryption in transit and at rest

All traffic travels over TLS 1.2+. Knowledge bases, operational logs, and receipts are stored encrypted at rest.

Multi-tenant isolation

Each customer's information is logically segmented. Queries, workflows and credentials stay scoped to the owning tenant.

Configurable retention

Logs and conversations are kept for the period defined by your plan. You can request a full export or permanent deletion whenever you need.

Meta-certified Tech Provider

WhatsApp Business runs through Meta's official Cloud API via our certified Tech Provider integration.

Encryption and transport

All communication between the dashboard, the backend, and external providers travels over TLS 1.2 or higher. Service credentials (Meta, Stripe, AI providers) are stored encrypted and rotated whenever the provider supports it.

  • TLS in transit for the dashboard, internal API, and external webhooks.
  • Encryption at rest for knowledge bases, receipts, and operational logs.
  • WhatsApp messages are processed through Meta's official Cloud API. Kharyo does not store end-to-end encrypted history outside the active context.

Multi-tenant isolation

Each customer operates inside their own logical tenant. Workflows, integrations, templates, conversations, and metrics are scoped to that tenant. Internal processes validate the tenant on every operation, preventing cross-tenant leaks.

What data we process

We process only what is necessary to keep the platform running:

  • Account data: email, name, billing details. Kharyo is the controller.
  • Messages and conversations: WhatsApp, Instagram, voice and email. The customer is the controller; Kharyo processes on their behalf.
  • Receipts and banking data: Payment images and notifications are processed for metadata extraction. We are not a financial institution and we do not hold funds.

The full detail, sub-processors, and data subject rights live in the Privacy Policy.

AI: privacy in processing

We configure AI provider integrations under zero retention policies for training. Your conversations and knowledge bases stay private and isolated from other customers and from the public model.

Meta operational compliance

Kharyo operates as a Meta-certified Tech Provider. This means access to the WhatsApp Business Cloud API and WhatsApp messaging operations follow the commerce and messaging policies Meta requires from its technology partners in 2026.

Retention and deletion

Operational logs and conversations are kept for the period configured by your plan, 30 days by default. You can request a full export of your data or the permanent deletion of your instance by writing to privacidad@kharyo.com.

Report a security issue

If you discover a vulnerability or have an operational concern, write to security@kharyo.com. We handle responsible disclosure and reply through the same channel.

Honesty about certifications: We do not currently hold SOC 2, ISO 27001, or PCI DSS audits. If your purchase requires one of those certifications, write to legal@kharyo.com and we will build a compliance plan aligned with your procurement process.

Enterprise-grade security, zero friction

Encryption in transit and at rest, access controls and compliance. Start with the peace of mind that your data is protected.

  • Set up your first workflow today
  • WhatsApp + Voice + Payments integrated
  • Human support when you need it

No lock-in. Set up your first workflow today.

Meta Business Partner

More than a web app

Kharyo lives on the phone too

Two native apps that take your operation into the field: Kharyo Inbox for your support team and Kharyo Listener to capture bank payments without opening the bank.

Real-time syncEnd-to-end encryption

Kharyo Inbox · iOS + Android

Omnichannel inbox with AI that prioritises, reads and replies

  • Auto-Pilot ON: AI answers alone in your tone
  • Sentiment and intent insights per conversation
  • Reply suggestions with editable tones
  • Push only when a human is needed
Get it on Google PlayDownload on the App Store
Auto-Pilot IA respondiendo conversaciones
Bandeja unificada con WhatsApp, Instagram y Messenger
Sugerencias de respuesta generadas por IA

Kharyo Listener · Android

Capture bank payments in real time

  • Listens to 27 Venezuelan banks at the same time
  • Detailed per-payment log with reference and bank
  • Pair by QR, no credentials on the device
  • Telemetry visible from the Control Center

27

Supported banks

~193ms

Push→payment latency

24/7

Continuous capture

Get it on Google Play
Captura de pagos en tiempo real con baja latencia
Historial detallado de cobros bancarios
Monitoreo simultáneo de bancos venezolanos
See all Kharyo apps