Data Deletion Instructions
Last updated: 16 May 2026
UnbuiltHQ respects your right to have personal information deleted. This page explains exactly how to ask us to delete any data we hold about you, and what will happen after you do.
The fast path. Email khaleel@unbuilthq.com with the subject line "Data Deletion Request" and the details in Section 2 below. We confirm receipt within 5 business days and complete every valid request within 30 days.
1. Who can request deletion
You can request deletion if you fall into any of these categories:
- A website visitor or enquirer who has sent us a message, booked a call, or otherwise shared personal information with UnbuiltHQ directly.
- A current or former client of UnbuiltHQ.
- An end user of an integration we operate on behalf of a client — for example, if you messaged a WhatsApp number, Instagram account, or TikTok account that is powered by software UnbuiltHQ built and operates. In this case we usually process your data as a processor on behalf of the business you were contacting. We will action your request and, where required, forward it to that business as the data controller.
2. How to submit a deletion request
Send an email to khaleel@unbuilthq.com with the subject line Data Deletion Request.
To help us locate your data quickly, please include the following:
- Your full name (and any other name you may have used with us).
- The email address, phone number, WhatsApp number, Instagram handle, or TikTok handle the data is associated with.
- A brief description of how you interacted with us — for example: "I contacted the support chatbot on [business name]'s WhatsApp on [approximate date]", or "I filled out the contact form on unbuilthq.com last month".
- Confirmation that you are the person whose data is being requested, or that you have authority to act on their behalf.
We may ask you to verify your identity before completing the request — this is a protection so that no one else can ask for your data to be deleted on your behalf. We will not use information you provide for verification for any other purpose.
3. What we delete
Once verified, we will delete or irreversibly anonymise:
- Personal identifiers (name, email, phone number, social handles).
- Message contents you sent us or sent through an integration we operate.
- Records of interactions (timestamps, metadata, conversation history).
- Any derived data we hold about you (for example, AI-generated summaries of your enquiries).
4. What may need to stay
In a small number of cases we are required to keep certain information. Where this applies, we will tell you exactly what is being retained and why. Examples include:
- Financial records — invoices, payments, and tax-related documentation must be kept for up to seven years under Nigerian tax law.
- Security logs — minimal, pseudonymised logs that are required to detect fraud and abuse.
- Backups — encrypted, time-bounded backups may retain a copy of your data until the backup itself expires (typically within 90 days). Restored backups will not be re-imported into live systems.
- Information held by a client of ours — if you contacted a business that uses our integrations, the underlying record may also exist inside that business's own systems. We will action our part and, on request, help you reach the business itself.
5. How long it takes
We will action every valid deletion request within 30 days of receipt. Most are completed inside 7 business days. If the request is unusually complex or we need more time we will tell you in writing, give you a reason, and confirm a revised deadline (which under GDPR will not exceed 90 days from the original request).
6. What happens after we delete
We will email you to confirm:
- What was deleted.
- What (if anything) had to be retained, and on what legal basis.
- Whether the request has also been forwarded to any third party (for example, a Meta-platform business that uses our integrations and is the data controller).
7. Deleting data tied to Meta platforms (WhatsApp, Instagram)
UnbuiltHQ builds and operates integrations that use the WhatsApp Business Cloud API and the Instagram Graph API on behalf of businesses. If you interacted with one of those integrations and want your data removed:
- Submit a request to us as described above. We will delete what we hold and confirm.
- If you also want the data deleted from the business's own systems (their CRM, their copies of conversation history), contact that business directly. We will help identify them if you tell us which number or account you messaged.
- You can additionally manage your data with Meta directly through Meta's data deletion tools and the privacy controls inside the WhatsApp and Instagram apps.
8. If we can't reach a decision you're happy with
If you're not satisfied with how we've handled your request you can complain to a supervisory authority — the Nigeria Data Protection Commission (NDPC) in Nigeria, your local data-protection authority in the EU, or the Information Commissioner's Office (ICO) in the UK.
9. Contact
For data deletion requests, write to khaleel@unbuilthq.com. For other privacy enquiries see our full Privacy Policy.
UnbuiltHQ
Brookeside Villa, Modomo Ede Road
Ile-Ife, Osun State, Nigeria