Effective date: 13 July 2026 | Last updated: 13 July 2026
This Privacy Policy explains how CheckoutDM ("CheckoutDM," "we," "us," or "our"), operated by M/s Healthy Celeb, collects, uses, stores, and protects information when businesses ("Merchants") and their customers ("Customers") use our service to facilitate product sales and order collection through Instagram Direct Messages.
CheckoutDM integrates with the Meta Instagram Platform (Instagram Graph API) to allow Merchants to automate customer conversations and order-taking within Instagram DMs. By using CheckoutDM, you agree to the collection and use of information as described in this policy.
1. Information We Collect
1.1 From Merchants
Instagram Business Account ID and Access Token (used solely to send and receive messages on the Merchant's behalf)
Business name, contact details, and product catalog information (product names, prices, descriptions, images)
Payment configuration details (e.g. Razorpay API keys, UPI ID, or QR code images) supplied by the Merchant to receive payments
Subscription and billing information related to the Merchant's CheckoutDM plan
1.2 From Customers (End Users messaging a Merchant's Instagram account)
Instagram-Scoped ID (IGSID) — a unique identifier Meta provides per conversation, not the Customer's public Instagram username or profile
Information voluntarily provided during checkout: name, phone number, email address, and shipping address
Order details: selected products, quantities, and order status
Payment status information received from our payment processor (Razorpay) — we do not collect or store full card numbers, UPI PINs, or bank credentials; these are handled directly by Razorpay under its own security and compliance standards
Message content necessary to process the order (e.g. product selection replies, address text)
1.3 Automatically Collected
Basic technical logs (timestamps, message delivery status, error logs) used for debugging and service reliability
2. How We Use Information
To operate the automated DM-to-checkout flow (product selection, detail collection, payment link generation)
To process and fulfill orders between Customers and Merchants
To generate and share payment links or payment instructions via Razorpay, UPI, or QR code
To provide customer support to Merchants regarding their CheckoutDM account
To maintain, secure, and improve the CheckoutDM service
To comply with legal obligations, including tax and payment recordkeeping requirements
We do not sell Customer or Merchant personal data to third parties. We do not use Customer conversation data for advertising purposes.
3. How Information Is Shared
With the relevant Merchant — a Customer's order and contact details are shared with the specific Merchant business the Customer is transacting with, so the Merchant can fulfill the order
With Razorpay (our payment processor) — solely to generate payment links and confirm payment status
With Meta Platforms, Inc. — as required to send and receive messages via the Instagram Graph API, subject to Meta's own Platform Terms and Data Policy
With infrastructure providers — our systems run on Supabase (database hosting) and a self-managed server infrastructure, used solely to operate the service, not to independently use or sell the data
We may disclose information if required by law, legal process, or to protect the rights, property, or safety of CheckoutDM, our Merchants, or the public
4. Data Storage and Security
Customer and Merchant data is stored in a Postgres database (hosted via Supabase, Singapore region) and processed through our automation infrastructure. We apply reasonable technical and organizational measures — including encrypted credential storage and access controls — to protect data against unauthorized access, alteration, or loss. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
5. Data Retention
We retain Customer order data for as long as necessary to fulfill the order, resolve disputes, and comply with applicable tax, accounting, or legal obligations, after which it is deleted or anonymized. Merchants may request deletion of their account and associated data at any time, subject to legal retention requirements (e.g. transaction records required under Indian law).
6. Your Rights and Choices
Customers may contact the Merchant they transacted with, or contact us directly at admin@healthyceleb.com, to request access to, correction of, or deletion of their personal data.
Merchants may access, update, or delete their business data and disconnect their Instagram account from CheckoutDM at any time via their Merchant dashboard.
To request deletion of your data, email admin@healthyceleb.com with the subject line "Data Deletion Request" along with your Instagram handle or order details so we can locate your records.
7. Children's Privacy
CheckoutDM is not directed at, and should not be used by, individuals under the age of 18 (or the applicable age of majority/consent in their jurisdiction). We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected such data, we will delete it promptly.
8. Meta Platform Compliance
Our use of information received from the Instagram Graph API adheres to the Meta Platform Terms and Meta Data Policy. We use Instagram data solely to provide the automated messaging and checkout functionality Merchants have configured, and not for any undisclosed purpose.
9. International Data Transfers
Our infrastructure may process and store data outside your country of residence, including in Singapore and India. By using CheckoutDM, you consent to this transfer and processing.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above. Continued use of CheckoutDM after changes constitutes acceptance of the revised policy.
11. Contact Us
For questions about this Privacy Policy or to exercise your data rights, contact us at: