Wasiaxis
Last updated May 9, 2025

Privacy
Policy

Wasiaxis is committed to handling your data with the highest standards of transparency, security, and respect. This policy explains exactly what we collect, why we collect it, and how you remain in control.

GDPR Compliant
SOC 2 Type II
ISO 27001
01

Data Collection

We are deliberate and transparent about what we collect. Every piece of information serves a specific purpose aligned with delivering and improving your experience on Wasiaxis.

Information You Provide

When you create an account, complete forms, or interact with our services, you provide us with identifiers such as your name, email address, and organizational details. This information is used solely to facilitate your access and personalize your experience.

Automatically Collected Data

We automatically log technical metadata including IP addresses, browser fingerprints, device identifiers, and interaction timestamps. This data supports platform stability, fraud prevention, and aggregate performance analysis.

Data Minimization Principle

We adhere strictly to the principle of data minimization: we collect only what is necessary, retain it only as long as required, and provide you with clear controls to delete or export your data at any time via your account settings.

02

Cookies & Tracking

Wasiaxis uses a carefully curated set of cookies and similar technologies. We do not deploy intrusive advertising trackers or sell your browsing behavior to third parties.

Essential Cookies

These are strictly necessary for the platform to function. They manage session authentication, CSRF protection, and load-balancing preferences. You cannot opt out of essential cookies while using the service.

Preference Cookies

Preference cookies remember your settings — such as display language, theme selection, and dashboard layout — so you don't need to reconfigure them on each visit. These can be disabled from your browser or privacy settings.

Analytics & Performance Cookies

We use first-party analytics cookies to understand how users navigate Wasiaxis. This data is aggregated and anonymized. We do not share individual-level analytics data with any external party.

03

Analytics

Our analytics infrastructure is built with privacy as a constraint, not an afterthought. We measure what matters — platform health, feature adoption, and error rates — without profiling individuals.

What We Measure

We track page load performance, feature usage frequency, error occurrence rates, and high-level navigation paths. These metrics guide our engineering and product decisions.

Anonymization Standards

All analytics events are processed through a pipeline that strips personally identifiable information before storage. IP addresses are truncated to the network prefix level and never stored in full within our analytics systems.

Your Opt-Out Rights

You may opt out of non-essential analytics tracking at any time through the Privacy Controls section in your account dashboard. Opting out does not affect your access to any features of Wasiaxis.

04

Account Security

We implement rigorous, defense-in-depth security controls to protect your account and the data entrusted to us.

Encryption at Rest & in Transit

All data stored on Wasiaxis infrastructure is encrypted at rest using AES-256. All data in transit between your browser and our servers is protected by TLS 1.3 or higher. We enforce HSTS across all domains.

Authentication Controls

Wasiaxis supports multi-factor authentication via TOTP-compatible authenticator applications and hardware security keys (WebAuthn/FIDO2). We recommend enabling MFA for all accounts. Enterprise plans may enforce MFA organization-wide via SSO configuration.

Security Incident Response

In the event of a security incident affecting your data, we will notify affected users within 72 hours of discovery, as required under applicable data protection regulations. We maintain a dedicated security response team available at security@Wasiaxis.com.

05

Payment Information

Wasiaxis does not store your raw payment credentials. All payment processing is delegated to certified, PCI-DSS Level 1 compliant payment processors.

Payment Processor

Payment transactions are processed by Stripe, Inc., a globally recognized and PCI-DSS Level 1 certified payment infrastructure provider. Your card number, CVV, and bank account details are transmitted directly to Stripe and are never stored on Wasiaxis servers.

Billing Data We Retain

We retain non-sensitive billing metadata — such as the last four digits of your card, expiration month and year, and billing address — for invoicing, customer support, and fraud prevention purposes.

Dispute Resolution

Should a billing dispute arise, our finance team may access your transaction history to investigate. This access is logged, audited, and restricted to personnel with a legitimate business need.

06

Third-Party Integrations

When you connect external services to Wasiaxis, we act as a data processor on your behalf. We treat third-party data with the same standard of care as your primary account data.

OAuth & API Connections

Integrations are authorized via OAuth 2.0 with the minimum required permission scopes. You may revoke any integration at any time from your Connected Applications dashboard, which immediately invalidates the associated access token.

Sub-processor Disclosure

We maintain a current list of authorized sub-processors — companies that may process your data as part of delivering the Wasiaxis service. This list is updated whenever sub-processors are added or removed, with advance notice provided to customers on Business and Enterprise plans.

Data Residency

By default, your data is stored in the European Union (AWS eu-west-1). Enterprise customers may request data residency in alternative regions including the United States (us-east-1), Asia Pacific (ap-southeast-1), or a custom private-cloud arrangement.

This Privacy Policy is effective as of May 9, 2025 and supersedes all prior versions.

Wasiaxis, Inc. · Registered in Delaware, USA · DPA registration #EU-2024-0441

Previous versions →