Privacy Policy

1. Who we are

WiseSign is operated by TECHNIBEES LIMITED, a company registered in England and Wales (Company No. 15107629), acting as the Data Controller for personal data collected through this service.

Contact: support@technibees.com

2. What data we collect

We collect the following categories of personal data:

• Account data: name, email address, and password (hashed) when you register.
• Payment data: billing information processed by our payment provider (Stripe). We do not store full card numbers.
• Document data: files you upload (PDFs, Word documents, text files) for analysis. These are processed temporarily and not permanently stored after analysis is complete.
• Usage data: IP address, browser type, device type, pages visited, timestamps, and interaction logs collected automatically.
• Communications: any messages you send us via email or support channels.

3. Lawful basis for processing

We process your personal data under the following lawful bases (UK GDPR Article 6):

• Contract performance (Art. 6(1)(b)): processing your account data and uploaded documents to deliver the service you have requested.
• Legal obligation (Art. 6(1)(c)): retaining payment records as required by financial and tax regulations.
• Legitimate interests (Art. 6(1)(f)): usage analytics to improve the service, fraud prevention, and system security — balanced against your privacy rights.
• Consent (Art. 6(1)(a)): where we have specifically asked for your consent (e.g. marketing communications), which you may withdraw at any time.

4. How we use your data

• To provide, operate, and improve the WiseSign platform.
• To process uploaded documents using AI and return analysis results.
• To process payments and maintain transaction records.
• To authenticate your account and keep it secure.
• To respond to support requests and communications.
• To detect and prevent fraud, abuse, or security threats.
• To comply with legal obligations.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

5. Document processing and AI analysis

Documents you upload are transmitted securely over HTTPS, processed temporarily to generate an AI analysis, and are not permanently stored on our servers after analysis is complete.

AI analysis is powered by third-party AI providers (including OpenAI). Document content may be sent to these providers solely for the purpose of generating the analysis. These providers are contractually required to handle data securely and not use it for their own model training.

AI-generated results are for informational purposes only and do not constitute legal advice. You remain responsible for independently verifying important contract terms.

6. Cookies and tracking technologies

We use cookies and similar technologies to operate the service. These include:

• Essential cookies: required for authentication sessions and core service functionality. These cannot be disabled.
• Analytics cookies: used to understand how users interact with the service so we can improve it. These are collected in aggregate and do not personally identify you.
• Payment cookies: set by our payment provider (Stripe) during checkout.

You can control non-essential cookies through your browser settings. Disabling cookies may affect service functionality.

7. Third-party service providers

We rely on the following categories of trusted third-party providers to operate the service:

• Infrastructure and database: Supabase (database and authentication hosting).
• Hosting and deployment: Vercel (web application hosting).
• AI analysis: OpenAI (document analysis processing).
• Payments: Stripe (payment processing and fraud prevention).

These providers act as data processors on our behalf and are required to maintain appropriate security measures. Some providers may be located outside the UK/EEA. Where data is transferred internationally, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions).

8. Data retention

• Uploaded documents: deleted from our systems after analysis is complete. We do not retain document content.
• Account data: retained for the duration of your account and deleted within 30 days of account closure upon request.
• Payment records: retained for 7 years as required by UK tax and financial regulations.
• System logs: retained for up to 90 days for security and operational purposes.

9. Security measures

We implement industry-standard technical and organisational measures to protect your data, including:

• Encrypted data transmission (HTTPS/TLS) for all connections.
• Encrypted storage for sensitive data at rest.
• Access controls restricting data access to authorised personnel only.
• Regular security monitoring and vulnerability management.
• Passwords stored using strong cryptographic hashing (never in plaintext).

No internet-based system can guarantee absolute security. In the event of a data breach that affects your rights, we will notify you and the relevant supervisory authority as required by law.

10. Your rights under UK GDPR

If you are based in the UK or EEA, you have the following rights regarding your personal data:

• Right of access: request a copy of the personal data we hold about you.
• Right to rectification: request correction of inaccurate or incomplete data.
• Right to erasure: request deletion of your data where there is no legitimate reason for us to continue processing it.
• Right to restriction: request that we restrict processing of your data in certain circumstances.
• Right to data portability: receive your data in a structured, commonly used, machine-readable format.
• Right to object: object to processing based on legitimate interests or for direct marketing.
• Right to withdraw consent: where processing is based on consent, withdraw it at any time without affecting prior lawful processing.

To exercise any of these rights, contact us at support@technibees.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been handled unlawfully.

11. Children's privacy

WiseSign is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify registered users of material changes by email or via an in-service notice. The updated policy will always be available on this page with a revised date.

13. Contact us

For any privacy-related questions or to exercise your rights, contact us at: support@technibees.com

TECHNIBEES LIMITED, England and Wales (Company No. 15107629)