Privacy Policy
Introduction
At Wayfare.ai ApS’ (”wayfare.ai”, “Wayfare”, or “we”), we take privacy seriously. In this document, we explain how we collect and process personal data about you, and how you can exercise your rights relating to privacy. This policy applies to personal data that we collect through our product landing page, our software application, and in our delivery of any associated services to our customers.
This privacy policy was last updated on 1 January 2024.
Our contact information
Wayfare is incorporated with the Danish Business Authorities under the legal name Wayfare.ai ApS with the company registration number 43332090 and the principal business address of Gammel Kongevej 11, 3rd Floor, 1610 Copenhagen, Denmark. Our Data Protection Officer (”DPO”) is Kasper Simonsen, who can be reached at privacy@wayfare.ai.
Types of data collected, and the purpose of collection and processing
Data collected when visiting our website
We collect personal data about you in certain circumstances. We do not use cookies to track your behaviour on our product landing page (https://wayfare.ai), so the only personal data we collect about you when you visit our website is if you volunteer your contact information through forms on our website. This scenario is described in the table below.
Category of data | Purpose for collection | Legal basis |
---|---|---|
Full name, email address, company name. | We collect and process your personal data to provide you with our regular newsletter and/or to give you access to our beta program. This includes using your email address and other provided information to send you updates, news, exclusive offers, and information about our products and services. It may also involve providing early access to new features or products as part of our beta testing phase. | This processing is performed only with explicit consent from you, and you can withdraw your consent at any time. |
Data collected as a customer or potential customer
When you use our main software platform via our application, we collect personal data in order to be able to deliver a functional platform. We also collect personal data in order to improve our customers’ experience. These scenarios are described in the table below.
Category of data | Purpose for collection | Legal basis |
---|---|---|
Full name, email address, company name. | We collect personal data of leads and prospects in our CRM to better understand client needs and preferences. This information, including contact details and professional information, is used to tailor our services and communications, ensuring relevance and efficacy in our offerings. | Our processing of this data is grounded in our legitimate business interest in developing and enhancing our business relationships. We balance this interest with the rights and freedoms of the individuals, ensuring data proportionality and privacy in line with GDPR regulations. |
Full name, email address, company name, job title. | We use our CRM system to manage and enhance relationships with our existing customers. This includes using personal data such as contact details and interaction history to provide personalized service, facilitate communication, and efficiently fulfill customer requests and inquiries. | The processing of personal data in our CRM is necessary for the performance of our contract with our customers. It enables us to provide the contracted services effectively, respond to customer needs, and maintain a high standard of customer care. This use of data is essential for fulfilling our obligations and commitments as outlined in our service agreements with customers. |
Full name, email address. | Your full name and email address are used for account creation, verification, and for providing a secure means of communication for any essential platform-related notifications, such as account security alerts or critical updates. This information is used to support your access and interaction with the platform. | Processing of this data is based on the necessity to fulfil our contract with you as a user of our platform, as these details are essential for providing the service you are signing up for. |
Billing address, payment card information, bank account details. | We collect payment information, such as bank account details, payment card information, and billing addresses, to process billing and collect payments for our services. This ensures a smooth transaction process, enabling customers to access our services promptly and efficiently. | The collection and processing of payment information are grounded in the necessity to perform the contract we have with our customers. This is needed to fulfil our part of the agreement, which includes providing access to our services upon receipt of payment. |
Full name, email address, phone number, account of customer issue. | We collect personal data such as names, contact information, and details of customer queries or issues to effectively respond to customer support requests. This information is used to identify the customer, understand their specific support needs, and provide timely and accurate assistance. Collecting this data allows us to deliver a high standard of customer service and address any issues or concerns efficiently. | The processing of personal data for customer support purposes is primarily based on the necessity to perform our contract with you. When you use our services, addressing your support requests is a part of fulfilling our service obligations. |
Full name, email address, digital signatures | We collect potential customers’ full names, email address, and a record of their digital signature in order to share and sign contracts and other documents that require digital signatures with potential customers. | The processing is necessary for the performance of a contract, allowing us to ensure that contracts are and agreements are signed securely. |
Our processing activities do not include automated individual decision-making, including profiling.
Disclosure to Third Parties
In some instances, we may share your personal data with third parties who are performing services on behalf of Wayfare. Examples of this include:
- third-party service providers, including (but not limited to) IT service providers, data storage providers, hosting and server providers, analytics providers, error logging providers, debt collectors, marketing providers, professional services providers, and payment systems providers
- our employees and external contractors
- our existing potential agents or business partners
- credit reporting agencies, courts, tribunals, and regulatory authorities in the event of non-payment for services provided to you
- agents or sub-contractors who assist us in providing our services or direct marketing to you
We are committed to ensuring that we establish data processing agreements and confidentiality agreements with any third parties who may have access to your personal data. We currently use third party providers to perform the following services:
- Email and other messaging
- Software platform infrastructure
- Cloud computing
- Authentication
- Data warehousing
- Search
- Email and other messaging automation
- Content distribution, security abuse prevention, and DNS
- Software development and issue tracking
- Monitoring, operations, and logging of user services
- Knowledge and document sharing
- Customer relationship management
- Support ticket management
- Calendar scheduling and management
- Contract management
Cookies
In our cloud services, we use cookies with a specific and limited purpose: to authenticate your accounts and maintain the security of your sessions.
- Purpose of Cookies: When you log in to your account on our platform, we use cookies to identify you and confirm your account details. This is a security measure to ensure that only you can access your account information.
- Type of Cookies: The cookies we use for authentication are known as ‘session cookies.’ These are temporary and are deleted once you log out of your account or close your web browser. They are essential for verifying and maintaining the security of your account during your session.
Security
We implement administrative, physical, and technical measures to safeguard the security, confidentiality, and integrity of any personal data stored about you. While we make efforts to maintain the security and integrity of data, no method of securing personal data is 100% effective.
Data retention
We keep your personal information only as long as is needed to fulfil the purpose of data processing as described above. In general, once it is identified that the purpose for which we collected the personal data is no longer relevant, we will delete your personal data within 90 days. However, there may be exceptions where it is necessary for us to retain your data for a longer period, e.g. when required by law.
International Transfers Outside of the European Economic Area (EEA)
We will ensure that any transfer of personal information from countries in the European Economic Area (EEA) to countries outside the EEA will be protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.
We may transfer personal data to a country outside the EU/EEA (a third country) where the transfer is covered by an adequate level of protection in which case there is no need for a specific authorization.
You can obtain a copy of the relevant legal basis for the transfer or information about where it has been made available by contacting our DPO.
Business Transfers
If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we would include data, including your personal information, among the assets transferred to any parties who acquire us. You acknowledge that such transfers may occur, and that any parties who acquire us may, to the extent permitted by applicable law, continue to use your personal information according to this policy, which they will be required to assume as it is the basis for any ownership or use rights we have over such information.
Your rights
As a data subject, you have the following rights:
- Restrict: you have the right to request that we restrict the processing of your personal information if (i) you are concerned about the accuracy of your personal information; (ii) you believe your personal information has been unlawfully processed; (iii) you need us to maintain the personal information solely for the purpose of a legal claim; or (iv) we are in the process of considering your objection in relation to processing on the basis of legitimate interests.
- Objecting to processing: You have the right to object to processing of your personal information that is based on our legitimate interests or public interest. If this is done, we must provide compelling legitimate grounds for the processing which overrides your interests, rights, and freedoms, in order to proceed with the processing of your personal information.
- Data portability: You have the right to request a copy of the personal information we hold about you. Where possible, we will provide this information in CSV format or other easily readable machine format. You may also have the right to request that we transfer this personal information to a third party.
- Deletion: You may have a right to request that we delete the personal information we hold about you at any time, and we will take reasonable steps to delete your personal information from our current records. If you ask us to delete your personal information, we will let you know how the deletion affects your use of our website or products and services. There may be exceptions to this right for specific legal reasons which, if applicable, we will set out for you in response to your request.
To exercise any of these rights, please write an email to privacy@wayfare.ai.
Contact us
We recognise that privacy is important, and we want to ensure that you feel confident and informed about how we handle your personal data. If you have any questions, concerns, or need further clarification about any aspect of our privacy policy, please don’t hesitate to reach out to us at privacy@wayfare.ai.
Complaints
You have the right to lodge a complaint with a supervisory authority. In Denmark, the supervisory authority is Datatilsynet. Datatilsynet may be contacted at dt@datatilsynet.dk or by phone +45 33193200.
Glossary
- Product landing page: This refers to our primary product information site which we use to communicate information about our platform and associated services to potential and existing customers, as well as to the general public. The website’s current address is https://wayfare.ai.
- Wayfare Cloud Services: This application is used by existing customers to access the primary user interface of our platform, which is currently hosted by us at https://app.prod.wayfare.ai