Your WhatsApp bot got banned. Here's the fix.
WhatsApp banned general-purpose AI chatbots as of Jan 15, 2026. What's actually still allowed, what got shut off, and the rebuild path for small businesses.

If your WhatsApp bot stopped answering questions sometime around January 15 and you haven't fixed it yet, you're not alone, and it's not actually that hard to fix. Meta's WhatsApp Business Platform banned general-purpose AI chatbots — the C
If your WhatsApp bot stopped answering questions sometime around January 15 and you haven't fixed it yet, you're not alone, and it's not actually that hard to fix.
Meta's WhatsApp Business Platform banned general-purpose AI chatbots — the ChatGPT-style, answer-anything kind — as of January 15, 2026. OpenAI, Perplexity, and Microsoft all confirmed their own WhatsApp integrations broke under the new terms, and independent compliance breakdowns of the policy confirmed the same pattern across smaller deployments. If the big three couldn't keep their general-purpose bots running, a small business's DIY GPT-wrapper bot didn't stand a chance either.
Here's the part most of the panic coverage skipped: structured business bots were never banned, and most small businesses that got caught weren't running a genuinely general-purpose assistant — they were running a bot with no scope restriction, which looks identical to a banned bot from WhatsApp's enforcement side even though the intent was narrow. The fix is a configuration change, not a platform migration. This is what's actually banned, what's still allowed, the compliance test you can run in 30 seconds, and the three-part rebuild that gets a shut-off bot back online this week.
What actually got banned, precisely
The policy text, as reported across multiple compliance-focused outlets covering the rollout, defines a general-purpose AI chatbot as one that is powered by an LLM, supports open-domain conversation, is not restricted to a specific business process, and functions as a general AI assistant distributed through WhatsApp.
Every clause in that definition matters, because the enforcement logic reads the combination, not any single trait. An LLM-powered bot isn't automatically banned — nearly every modern bot is LLM-powered now. Open-domain conversation support is the trigger clause: can the bot meaningfully answer things outside your business? Not restricted to a specific business process is the second trigger: does the bot have an explicit scope, or does it just... answer whatever it's asked? Functions as a general AI assistant is the summary judgment Meta's enforcement applies when the first two are true.
The timeline: new WhatsApp Business API accounts operated under the new terms starting October 15, 2025. Every existing account — anyone who'd built a bot before that date — got migrated to the new terms by January 15, 2026. That's the date most small businesses experienced as "my bot stopped working."
What's still fully allowed
This is the list that got buried under panic headlines. Per Meta's own WhatsApp Business Solution Terms and the compliance guides that followed it, these categories remain fully permitted and, per some coverage, actively encouraged:
Customer service bots that answer questions within a defined scope — your hours, your services, your pricing, your policies.
Order and appointment management — booking, rescheduling, cancellation, status lookups, confirmation flows.
Notifications and updates — shipping confirmations, appointment reminders, order status pushes.
Sales and lead-qualification flows — structured question sequences that qualify a lead and route to a human for the close.
Support triage — a bot that handles the top 10 recurring questions and hands off anything else to a human queue.
None of this requires a general-purpose LLM wrapper to build well. All of it can be built with an LLM doing the natural-language understanding inside a scoped structure — which is exactly the distinction Meta is drawing. The LLM makes the bot conversational and pleasant to use. The scope restriction makes it compliant.
The 30-second compliance test
Before rebuilding anything, run this test on your current bot, live, right now.
Send it a message completely unrelated to your business. Ask it to write a haiku. Ask it who won a recent sports match. Ask it about a competitor's pricing. Ask it a trivia question.
If your bot answers fluently — actually engages with the off-topic request — it's a general-purpose bot by Meta's definition, whether or not you intended it that way. This is the single most common compliance failure we've seen: businesses built a bot on a raw LLM API call with a friendly system prompt ("You are a helpful assistant for Maria's Bakery") and nothing stopping it from answering anything at all. The friendly-assistant framing doesn't restrict the model's actual behavior. It's advisory, not enforced.
If your bot recognizes the off-topic request and redirects — "I can help with orders, hours, and appointments for Maria's Bakery. For other questions, here's how to reach a team member directly" — it's already compliant, or close to it. The redirect is the whole game.
The three-part rebuild
If your bot fails the test above, here's the fix, in the order that matters most.
One: define the explicit scope, in writing, before touching code. List every business process the bot should handle — not a vague description, a specific enumerated list. "Order status lookup. Appointment booking for these three services. Store hours and location. Return policy questions." This list is the actual product spec. Most businesses skip this step and go straight to prompt engineering, which is backwards — you can't restrict a bot's scope if you haven't defined what the scope is.
Two: build an out-of-scope classifier that runs before the LLM generates a response. This is the structural fix that the instruction-only approach was missing. Concretely: every incoming message gets classified first — does it match one of the defined business processes, or not? If yes, route to the LLM with the relevant context and let it respond naturally. If no, skip the LLM entirely and return the standardized fallback message. This classifier can itself be a small, cheap LLM call (a single classification prompt is fast and inexpensive) or a simpler keyword/intent match if your scope is narrow enough. The point is that the decision to answer or redirect happens before generation, not as a hopeful instruction during generation.
Three: make the fallback response actually useful, not a dead end. "I can't help with that" is compliant but bad business. The standardized out-of-scope response should acknowledge the limitation, restate what the bot can help with, and offer a real path to a human — a phone number, a "type HELP to reach our team" command, a business-hours callback promise. This is also, not coincidentally, the difference between a compliant bot that converts and a compliant bot that frustrates people into leaving.
The rebuild, for a bot already running on a modern conversational-AI framework, is a configuration and prompt-architecture change — adding the classification layer and the fallback flow — not a rewrite. Businesses running the crudest version (a raw API call with a system prompt and nothing else) have more work, but it's still measured in days, not a platform migration.
What this actually costs to fix
For a small business with an existing bot that fails the compliance test, the rebuild breaks down roughly like this.
Scope definition: a few hours of the operator's own time, because nobody else can tell you what your business processes actually are.
Classifier implementation: for a bot already on a framework like n8n or a similar workflow tool, this is typically a half-day of build work — an added decision node before the LLM-response node, backed by a simple classification call.
Fallback flow: another half-day, mostly on the "what's the actual human handoff" question, which is more of a business-process decision than a technical one.
All-in for a bot that needs the full rebuild: 2–3 days of focused work, most of it decision-making rather than coding. For a bot that's already close to compliant (has some scope logic, just needs the classifier tightened), it's closer to a single afternoon.
Compare that to the cost of staying non-compliant: a shut-off bot generates zero value while it's disabled, and reactivation after a policy violation isn't guaranteed to be instant — Meta's enforcement and appeals process for WhatsApp Business API violations runs on its own timeline, not yours.
— a client who rebuilt their bot the week after their January shutoffWe thought we'd have to start over on a different platform. It turned out to be one afternoon of adding a filter before the AI could talk. The bot we have now is honestly better than the one that got banned — it actually tells people what it can do instead of trying to answer everything and getting half of it wrong.
The deeper pattern: structured beats general-purpose, and it was already true
The uncomfortable truth buried in this policy shift is that Meta didn't invent a new constraint on good bot design. Structured, scope-restricted bots were already the better product for most small businesses, before any policy forced the issue.
A general-purpose bot that will answer anything is a worse customer experience for a business bot, not just a compliance risk. Customers messaging a bakery's WhatsApp don't want a general AI assistant — they want their order status, fast, without wading through a conversational detour. The businesses that had already built scoped, purpose-specific bots — the pattern we've recommended in our own AI receptionist coverage — mostly sailed through this policy change without noticing. The businesses that got caught were the ones that had, often unintentionally, built a general-purpose assistant because that's the default behavior of an unscoped LLM call.
Meta's policy is a forcing function for a design discipline that was already correct. That's worth internalizing beyond just the immediate fix: the next platform policy shift, whenever it comes, is more likely to reward businesses that build narrow, well-scoped automation than businesses that reach for the most general, most flexible tool available. Scope restriction isn't just compliance. It's better product design, and WhatsApp just made that non-optional.
Three more from the log.

Granola vs Fireflies vs Otter vs Fathom: the real pick
Four AI meeting notetakers compared on what actually matters — bot visibility, CRM automation, and the two-tool combination power users actually run.
Jul 04, 2026 · 6 min
Retell vs Vapi vs Bland: the real cost per minute
Retell, Vapi, and Bland compared on latency, real pricing at 10,000 calls, and compliance. The voice AI stack we'd actually build a client's receptionist on.
Jul 03, 2026 · 7 min
The content automation system that ships 1 billion views per month
A field report on the actual architecture behind a billion-view-per-month AI content pipeline — topic generation, Nano Banana Pro and Flux for stills, Kling 3 for image-to-video, Remotion and CapCut for assembly, LLM-as-judge for slop rejection, and the distribution layer that doesn't get accounts banned.
Apr 13, 2026 · 12 min