Data and Privacy
We take the security and privacy of your data seriously. Here is an overview of how Whisper handles your information.
Updated: 29 May 2026
We take the security and privacy of your data seriously. Here is an overview of how Whisper handles your information.
What Data Whisper Accesses#
When you connect an integration, Whisper accesses the necessary data to provide customer support:
- Email integrations: Whisper reads incoming emails to generate draft replies and sends outgoing emails on your behalf.
- E-commerce integrations: Whisper accesses your product catalog to recommend items, and order/customer data to provide context for support queries.
How Customer Data is Handled#
Whisper processes customer data solely for the purpose of operating the AI assistant and providing support tools. We do not use your customers' personal data for our own purposes or sell it to third parties.
Security and Encryption#
- All sensitive credentials (like API keys, passwords, and OAuth tokens) are stored using strong AES-256-GCM encryption.
- Communication between your browser, our servers, and external integrations is secured using industry-standard TLS encryption.
Data Processing Agreement (DPA)#
During the onboarding process, you agree to our Data Processing Agreement (DPA) on behalf of your company as a Data Controller. This document outlines our legal obligations and commitments regarding data privacy.
Requesting Data Deletion#
If you wish to delete your organization and all associated data from Whisper, you can submit a deletion request via Settings > Subscription > Delete organization. Our team will process the request and confirm when your data has been permanently removed.
