Privacy Policy.
This policy describes what personal data We Solve Digital ("WSD", "we", "us") collects when you interact with this website, our forms, or our WhatsApp business number — and what we do with it. It is written in plain English on purpose.
We are the Data Fiduciary under India's Digital Personal Data Protection Act, 2023. You are the Data Principal. The terms in this policy align with that Act and, where you are located outside India, with the principles of GDPR, CCPA, and equivalent regimes.
The short version
- →We collect only what you give us through forms, audits, or WhatsApp. We do not buy lead lists or scrape data.
- →We use it to reply to you and deliver the thing you asked for. Nothing exotic.
- →We do not sell your data. Ever. To anyone.
- →Our infrastructure runs on Google Workspace, Vercel, Meta WhatsApp Cloud API, and OpenAI. These are the only parties that touch your data, and only for the narrow purposes described below.
- →You can ask us to show, correct, or delete your data at any time. Email rishabh.sharma@wesolvedigital.com.
Who we are
We Solve Digital is a founder-led growth consultancy operating from India. The legal entity behind this website and all data processing is owned and operated by Rishabh Sharma, acting as the sole proprietor under the trading name "We Solve Digital".
For data-protection purposes, Rishabh Sharma is the named Data Fiduciary and Grievance Officer under the DPDP Act. Contact details are at the bottom of this page.
What personal data we collect
We collect personal data in five places, and only in those five places:
Contact form
Fields
Name · Email · Phone (with country code) · Company name · Service of interest · Message text
Collected when you fill the form at /contact. We use it to respond to your enquiry and, where you have selected a service, to send you a relevant follow-up on WhatsApp.
Newsletter signup
Fields
Collected when you subscribe via the footer form. Used solely to send the weekly newsletter. Unsubscribe link in every email.
Aditor (free AI ad audit)
Fields
Name · Email · Phone · Website URL · Ad-platform context you choose to submit
Collected when you run an audit at /aditor. We use it to generate your diagnostic report, deliver the PDF, and follow up on findings.
WhatsApp conversations
Fields
WhatsApp display name · Phone number · Message content you send us · Delivery + read receipts
Collected when you message us on WhatsApp (or reply to a message we sent you). Used to respond, qualify, and continue the conversation. We do not message you on WhatsApp unless you have opted in via one of our forms or initiated contact yourself.
Website analytics
Fields
IP address (anonymised) · Browser + device type · Pages visited · Referral source · UTM parameters · Conversion events
Collected automatically via Google Analytics 4 and Reddit Pixel. Used to understand which pages convert and which marketing channels work. Not used to identify you personally.
We do not knowingly collect financial information, identity-document numbers (PAN, Aadhaar), health data, biometric data, or any other category that the DPDP Act, 2023 treats as sensitive — unless you explicitly send it to us as part of a paid engagement, in which case it is governed by a separate written agreement.
Why we collect it
Under §6 of the DPDP Act, every piece of personal data must be processed for a specified, lawful purpose with your consent or for a recognised legitimate use. Our purposes are:
Respond to your enquiry
When you submit a form or message us, we use your contact information to reply — usually by email or WhatsApp, depending on what you submitted.
Deliver the service you requested
If you run an Aditor audit, we use your URL + email to generate and send the report. If you book a consultation, we use your contact details to schedule and prepare for the call.
Follow up on relevant conversations
Where you have explicitly indicated interest in a specific service (via the contact form dropdown or by running an audit), we may send one or two follow-up messages on WhatsApp or email. You can opt out at any reply.
Send the newsletter
If you subscribed to the newsletter, we send you one growth-focused email per week. Every email contains an unsubscribe link.
Operate and improve the website
Aggregated analytics help us understand which content is useful and where the user experience breaks. We do not target ads to you personally based on your individual behaviour on this site.
Meet legal and accounting obligations
Where we engage with you commercially (paid consulting), we retain invoices, contracts, and related communication for the period Indian tax law requires.
We will not use your data for any new purpose without coming back to you for fresh consent.
Who processes it with us
We run a deliberately small infrastructure stack. The third parties below process your data on our behalf, under their own published privacy terms, only to perform the function noted. We do not share your data with anyone else.
| Sub-processor | Purpose | Region |
|---|---|---|
| Google Workspace (Gmail, Sheets, Drive, Apps Script) | Form processing, email delivery, lead storage, report PDFs | India / Global |
| Meta WhatsApp Business Cloud API | WhatsApp template + conversation delivery | Global (Meta data centres) |
| OpenAI (gpt-4o-mini) | Generating Aditor diagnostic insights + WhatsApp template drafts | United States |
| Vercel | Website hosting, serverless functions | United States / Global edge |
| Google Analytics 4 | Website traffic + conversion analytics | Global |
| Reddit Pixel | Conversion attribution for Reddit ads (when active) | United States |
| Microsoft Bing / IndexNow | Search engine indexing of public pages | Global |
Some of these providers store data outside India (commonly in the United States or European Union). By submitting your data through this site, you consent to such cross-border transfer, subject to the protections each provider maintains under their own privacy framework. The Government of India has not, at the time of writing, designated any country as restricted under §16 of the DPDP Act.
WhatsApp messaging — the specifics
Because WhatsApp interactions are a meaningful part of how we work with leads and clients, the rules deserve their own section.
How you opt in
When you submit a form on this site that includes your phone number — Contact, Aditor, or any service-specific funnel — you are giving consent to receive a WhatsApp message from us related to that submission. The forms make this explicit at the point of submission.
What we send
One or two messages relevant to the service you enquired about: confirmation, the deliverable (e.g. your Aditor report), and a follow-up. We do not send broadcast marketing.
How to opt out
Reply STOP to any WhatsApp message from us, or email rishabh.sharma@wesolvedigital.com. You are removed from outbound messaging immediately.
Templates and the 24-hour window
Outside an active conversation, WhatsApp's rules require us to use a pre-approved template. Inside the 24-hour window after you reply, we can send free-form messages. These are Meta's rules, not ours — but they mean you remain in control of when free-form contact is permitted.
Meta's role
Meta operates the WhatsApp Business Cloud API and processes message routing on our behalf. Meta's own privacy terms apply alongside ours: whatsapp.com/legal/business-policy.
How long we keep your data
Retention is bounded by the purpose. Once the purpose ends, the data is deleted.
Lead records (CRM)
36 months from last interaction
Standard B2B sales cycle for mid-market consulting is long. After 36 months of no contact, the record is deleted on request or scheduled deletion.
Newsletter subscribers
Until you unsubscribe
Removed immediately on unsubscribe. We do not retain unsubscribed addresses except in a hashed suppression list to prevent re-adding you accidentally.
WhatsApp message history
24 months
Conversation context is useful during an active engagement and for a year after. After 24 months, threads are archived; older messages are deleted on request.
Aditor audit reports (PDFs)
12 months
Kept so you can re-download if you lose the original. Deleted automatically after 12 months unless we are in an active engagement.
Website analytics (GA4)
14 months
GA4 default retention. Aggregated, non-identifying data may be retained longer for trend analysis.
Invoices and contracts
8 years
Required by Indian GST and Income Tax Act record-keeping rules.
Your rights
Under the DPDP Act, 2023 (and equivalent law where you are located), you have the following rights regarding your personal data:
Right to access
You can ask us what personal data we hold about you. We respond within 30 days.
Right to correction
If anything we have is wrong or outdated, tell us and we will fix it.
Right to erasure
You can ask us to delete your personal data. We will, except for records we are legally required to retain (e.g. invoices).
Right to withdraw consent
Any consent you have given — to receive WhatsApp messages, the newsletter, marketing emails — can be withdrawn at any time. Future processing stops; past lawful processing remains valid.
Right to grievance redressal
If we do not resolve your concern, you can escalate to the Data Protection Board of India under §13 of the DPDP Act, 2023.
Right to nominate
Under §14 of the DPDP Act, you can nominate another person to exercise these rights on your behalf in the event of your death or incapacity.
To exercise any of these rights, email rishabh.sharma@wesolvedigital.com with the subject line "Data Request". We will respond within 30 calendar days, usually faster. There is no fee.
Cookies and analytics
This site uses a small set of cookies and similar technologies. We have grouped them by purpose so you can decide what to allow.
Essential
Required for the site to function (form submissions, session state). Cannot be disabled.
Analytics (GA4)
Help us understand which pages and content actually convert. Anonymised. You can opt out via your browser settings or Google's opt-out tool.
Marketing (Reddit Pixel)
Attribution for Reddit ad campaigns. Only active when a campaign is running. You can block via your browser's tracking-prevention settings.
You can disable non-essential cookies via your browser's privacy or tracking-prevention settings. Modern browsers (Brave, Firefox, Safari, recent Chrome) ship with this on by default for cross-site trackers. We honour Do-Not-Track and Global Privacy Control signals where the underlying analytics provider supports them.
How we protect your data
We take security seriously, with measures proportional to the volume and sensitivity of data we hold (which is modest — we are a consultancy, not a data broker).
- ▸TLS / HTTPS everywhere. All form submissions and API calls are encrypted in transit. The site enforces HTTPS via HSTS.
- ▸Credentials are server-side only. API keys for OpenAI, Meta WhatsApp, and Google services are stored as Vercel environment variables — never exposed to the browser.
- ▸Two-factor authentication is enforced on every account that can read or modify lead data (Google Workspace, Vercel, Meta Business).
- ▸Principle of least access. Only the founder has direct access to the underlying lead database. No third-party agency, freelancer, or contractor has standing access.
- ▸Breach notification. In the unlikely event of a security incident affecting your personal data, we will notify you and the Data Protection Board of India within 72 hours of becoming aware of it, in line with §8(6) of the DPDP Act.
Children's data
This site and our services are aimed at business owners, founders, and marketing decision-makers. We do not knowingly collect personal data from anyone under 18. If you believe a minor has submitted data to us, email rishabh.sharma@wesolvedigital.com and we will delete it.
Changes to this policy
If we materially change how we handle your data, we will update this page and update the "Last updated" date at the top. For changes that affect existing data — for example, adding a new sub-processor that touches lead information — we will email everyone in our CRM at the address on file before the change takes effect.
Grievance Officer
Under §10(1)(j) and §13 of the DPDP Act, every Data Fiduciary must publish the contact details of a Grievance Officer who handles data-related complaints. For We Solve Digital, that is:
Rishabh Sharma
Founder, Data Fiduciary & Grievance Officer
Email: rishabh.sharma@wesolvedigital.com
Subject line for data complaints: Data Grievance
Response time: Within 30 calendar days (usually within 3 business days)
If you are not satisfied with our response, you may escalate to the Data Protection Board of India under §27 of the DPDP Act, 2023.
Have a question about how your data is handled? Direct line to the founder.