Disclaimer

Not Affiliated With WhatsApp or Meta

WaDesk is an independent product and is not affiliated with, authorized by, endorsed by, sponsored by, or in any way officially connected to WhatsApp LLC, Meta Platforms, Inc., or any of their subsidiaries or affiliates.

"WhatsApp", "WhatsApp Business", "Meta", and related names, marks, logos, and the green WhatsApp icon are trademarks of their respective owners. They are referenced in this product and its documentation only to describe interoperability and functionality. No claim of ownership or partnership is made or implied.

Your use of WhatsApp through any engine in WaDesk is governed by WhatsApp's and Meta's own terms, including the WhatsApp Terms of Service, the WhatsApp Business Messaging Policy, and the WhatsApp Business and Commerce Policies. You are responsible for reading and complying with them.

The Unofficial API Is Unofficial

WaDesk's Unofficial API engine connects to WhatsApp using an open-source WhatsApp Web protocol library. This is not an official or approved WhatsApp integration method.

By enabling and using the Unofficial API, you acknowledge and accept that:

It may violate WhatsApp's Terms of Service, and WhatsApp may restrict, suspend, or permanently ban any number connected this way, at any time, without notice or appeal.
The behavior of the unofficial channel can change without warning if WhatsApp updates its systems, which may interrupt or break the connection.
You use this engine entirely at your own risk, and you should only connect numbers you can afford to lose.
Neither Media City nor WaDesk is responsible for any ban, data loss, business interruption, or other consequence resulting from use of the Unofficial API.

For lower-risk operation, use the official WhatsApp Cloud API or Twilio engines. See WhatsApp & Ban Safety for a full comparison.

Important: WaDesk does not recommend using the Unofficial API engine for production, business-critical, or high-volume messaging environments. The Unofficial API is provided primarily for testing and experimental purposes.

Users should understand that unofficial WhatsApp connections carry significant risks, including but not limited to:

Temporary or permanent WhatsApp number bans.
Loss of access to connected WhatsApp accounts.
Unexpected disconnections caused by WhatsApp platform updates.
Reduced message delivery reliability.
Loss of existing chat history, session data, or linked-device access.
Business interruption resulting from account restrictions.

By using the Unofficial API engine, you acknowledge that all risks are solely your responsibility. Media City and WaDesk do not guarantee service continuity, account safety, message delivery, or compatibility with future WhatsApp updates.

For commercial, production, or long-term use, we strongly recommend using official providers such as the WhatsApp Cloud API through Meta or approved Business Solution Providers. Official APIs offer better stability, compliance, support, and significantly lower risk of account restrictions.

Media City and WaDesk are not responsible for any number bans, account limitations, loss of business, loss of revenue, data loss, or damages arising from the use of unofficial WhatsApp connection methods.

Provided "As Is"

WaDesk is provided "as is" and "as available", without warranty of any kind, express or implied, including but not limited to the warranties of merchantability, fitness for a particular purpose, and non-infringement.

To the maximum extent permitted by law, Media City and the developers of WaDesk shall not be liable for any direct, indirect, incidental, special, consequential, or punitive damages, or for any loss of data, revenue, profits, or business, arising from or related to:

Use of, or inability to use, the software
WhatsApp number bans, suspensions, or quality-rating downgrades
Server downtime, data loss, or corruption
Security breaches resulting from misconfiguration or unpatched dependencies
Charges incurred on third-party services (Meta, Twilio, payment gateways, AI providers)

You are strongly encouraged to maintain regular backups and follow the security best practices in the documentation.

Your Responsibility as the Operator

As the operator of a self-hosted WaDesk installation, you bear full responsibility for:

Lawful messaging. Only contacting people who have opted in, honoring opt-out requests, and complying with anti-spam and telemarketing laws applicable to you and your recipients (for example TCPA, GDPR/ePrivacy, CAN-SPAM, TRAI DND, and similar).
Content. Ensuring the messages, media, and offers you send are lawful, accurate, and compliant with WhatsApp's Business and Commerce Policies.
Data protection. Complying with applicable data protection regulations (GDPR, CCPA, LGPD, and others) for the personal data you process. WaDesk does not certify compliance on your behalf — consult a legal professional.
Server security. Keeping your operating system, PHP, Node.js, and dependencies patched, securing access credentials, and configuring valid HTTPS.
Backups. Maintaining regular backups of your database and storage. WaDesk does not provide automated off-site backups.

Third-Party Services

Important — additional third-party costs are not included in the purchase price. Several WaDesk features rely on external, third-party services — including AI providers (OpenAI, Anthropic, Google), SMS gateways, WhatsApp messaging (the WhatsApp Cloud API / Meta and Twilio), and payment gateways. These are paid services billed directly by their respective providers and are NOT included in the one-time purchase price of WaDesk. Any subscription fees, per-message charges, API usage, or transaction fees are solely your responsibility. WaDesk only provides the integration code — it does not include, bundle, or resell these services, and you must hold your own active account and credentials with each provider.

WaDesk integrates with third-party services, each governed by its own terms, pricing, and privacy policies. WaDesk does not control these services and is not responsible for their availability, billing, rate limits, or policy changes:

WhatsApp Cloud API / Meta — subject to Meta's platform terms; messaging is metered and billed by Meta.
Twilio — subject to Twilio's terms; messages are billed per message by Twilio.
AI providers (OpenAI, Anthropic, Google) — API calls are made from your server using your own keys and are billed by the provider. Monitor and cap your usage in their dashboards.
Payment gateways — each operates under its own merchant agreement. WaDesk does not store raw card data.
Envato / CodeCanyon — used for purchase-code verification; only your purchase code and domain are sent for validation.

API Key & Credential Security

All API keys, secrets, access tokens, and WhatsApp session data are stored in your server's environment configuration (.env) and database. Protecting these credentials is entirely your responsibility. We recommend:

Never exposing your .env file publicly; deny direct web access to it.
Rotating keys periodically and scoping them to the minimum required permissions.
Using IP allowlisting and spending limits where the provider supports them.
Revoking any credential immediately if you suspect it has been compromised.

WaDesk is not responsible for unauthorized access, message sending, or financial loss resulting from improperly secured credentials.

Prohibited Uses

You agree not to use WaDesk for any unlawful or abusive purpose, including but not limited to:

Sending unsolicited bulk messages (spam) to non-consenting recipients
Phishing, fraud, scams, or distributing malware
Harassment, or distributing offensive, defamatory, or harmful content
Infringing copyrights, trademarks, or other intellectual property
Violating privacy laws or WhatsApp's and Meta's policies

This software product is provided as-is and may include features designed to assist with data management and compliance efforts. However, we do not guarantee that all features or functionalities of this product meet the requirements of the General Data Protection Regulation (GDPR) or other data protection laws.

By purchasing, downloading, or using this software, you acknowledge and agree to the following:

No Guarantee of Full GDPR Compliance: While this product may include tools or options related to GDPR compliance, it is not certified as fully compliant with GDPR or any other data protection regulations.
Client Responsibility: It is the responsibility of the client (you) to evaluate, configure, and use the software in a manner that aligns with your specific legal obligations.
Third-Party Verification: We recommend conducting an independent review and testing of the software to confirm its suitability for your GDPR or data protection compliance needs.
Consult Legal Professionals: We strongly advise consulting with legal or data protection experts to understand your obligations and ensure compliance with GDPR or any other applicable laws.

The developer/seller of this product is not liable for any direct or indirect issues, claims, fines, or legal consequences arising from the use, misuse, or non-compliance of this software with GDPR or similar regulations.

By proceeding to purchase or use this product, you agree that it is your sole responsibility to address and ensure compliance with relevant data protection laws, and you release the developer/seller from any associated liability.

General Use Disclaimer

Please be advised that it is the client's responsibility to conduct comprehensive testing of the project in both technical and non-technical aspects before making it live. We emphasize the importance of ensuring that all functionalities, integrations, and performance metrics meet your requirements and standards prior to deployment. We shall not be held responsible for any issues, errors, or discrepancies that arise after the project has gone live, including those that impact performance, functionality, or overall system operation.

Please note that we are not responsible for any kind of data loss or server crashes that may occur during the installation, updating, bug fixing, use, or maintenance of our software. We strongly recommend that all users take comprehensive backups of their data and server settings before sharing cPanel/Plesk Panel/FTP/SFTP/Cyber Panel/AA Panel/PhpMyAdmin, Server details or making any changes to their server configuration. By providing Server details or any other sensitive access credentials, you acknowledge and agree that you do so at your own risk, and it is your responsibility to ensure that your data is backed up and secure.

The user is solely responsible for ensuring their server environment is secure and properly configured. This includes applying necessary updates, monitoring for vulnerabilities, and using recommended security practices. Any third-party services, including hosting providers, are the responsibility of the user, and we are not liable for their performance, billing, or associated issues.

We are not liable for any losses, including but not limited to:

Bandwidth overages or additional charges
Data loss or corruption
Server provider billing disputes
Issues arising from phishing or other malicious activities
Downtime
Security breaches
Conflicts with third-party plugins, themes, or scripts

The product provided is sold "as-is" without any warranties, express or implied. While we strive to deliver high-quality and reliable software, we do not guarantee that the software will be free of errors, bugs, or vulnerabilities. By using this software, you acknowledge and agree that you are solely responsible for how you implement, configure, and use it. We are not liable for any damages, losses, or issues resulting from the use or misuse of the software. We do not warrant that the software will meet your specific requirements or that it will be compatible with all environments or platforms.

Support

Technical support is provided by Media City through CodeCanyon for buyers with a valid license, for installation help, bug fixes, and guidance on built-in features. Support does not cover custom development, third-party integration troubleshooting beyond WaDesk, server administration, WhatsApp account standing or ban appeals, or issues caused by unauthorized code modifications. Support is included for 6 months from purchase and can be extended through CodeCanyon.