Data Deletion Instructions

1. What this page is for

This page explains how users, workspace customers and Meta users can request deletion of personal data held by Novalure CRM, including data received through Facebook Login for Business, WhatsApp Business, Instagram or Facebook Messenger integrations.

2. Remove Novalure CRM access from Meta

• Open Facebook or Meta account settings.
• Go to Settings and privacy, then Apps and Websites or Business Integrations.
• Find Novalure CRM or Novalure CRM MessagingWA.
• Choose Remove or disconnect access.
• If you manage a business asset, also review connected Pages, Instagram accounts, WhatsApp Business accounts and business integrations in Meta Business Settings.

3. Request deletion from Novalure CRM

Email hello@novalure.eu with the subject line Data Deletion Request. Include the email address used for your Novalure CRM account, the workspace or company name if known, and whether your request relates to a Meta account, WhatsApp number, Instagram account, Facebook Page, CRM contact record or newsletter subscription.

Do not send passwords, access tokens, ID documents or sensitive customer files by email unless we specifically request them through a secure process.

4. What we will delete or disconnect

• Account, workspace membership or profile data where deletion is legally and technically possible.
• Meta-derived identifiers and integration records connected to your account or workspace.
• Stored access tokens or channel credentials controlled by Novalure CRM.
• CRM contact, lead, conversation, bot message and timeline records where Novalure CLG is the controller or where the relevant workspace customer instructs deletion.
• Newsletter subscription data, except opt-out suppression records needed to respect future opt-outs.

5. When a workspace customer controls the data

If your personal data is stored in a workspace controlled by a Novalure CRM customer, that customer may be the data controller. In that case, we may forward your request to the customer, ask you to contact them directly, or process the request according to that customer's lawful instructions.

6. Timing and exceptions

We aim to respond to deletion requests without undue delay and generally within one month, subject to identity checks, legal exceptions, technical backup cycles and the need to coordinate with the relevant workspace customer.

Some records may need to be retained where required for legal obligations, security, fraud prevention, dispute handling, audit logs, opt-out compliance or other legitimate reasons permitted by Irish and EU data protection law.

7. Confirmation

Where appropriate, we will confirm completion of deletion or explain why certain data cannot be deleted immediately. Requests can be sent through the email process described above.