1. Overview
- What data we collect
- How it is used and protected
- Where it is stored
- Who it is shared with (if anyone)
- Your rights and control over your information
2. Information We Collect
a. Device and Sensor Data
Our panic buttons and sensors transmit limited technical data, such as:
Device ID and location (GPS coordinates)
Device status (battery level, signal strength, event type)
Event timestamps
No personal data (such as names, messages, or biometric information) is stored or transmitted by the device.
b. User Account Data
When a user is provisioned to access the WSPER portal (no self-registration allowed), we collect:
Name and work email address
Authentication information for login (managed via secure 2FA)
c. Website Data
When you visit our website, we may collect standard web analytics (via cookies or similar technologies), such as:
IP address and browser type
Pages visited and time spent
Referring website
You can adjust cookie preferences at any time through your browser settings.
3. How We Use Information
We use collected information solely for the following purposes:
To deliver and maintain panic button and monitoring services
To communicate with customers and support users
To analyze and improve product performance and reliability
To comply with applicable laws and contractual obligations
We do not sell, rent, or share data for advertising or commercial analytics.
4. Data Storage and Location
AWS maintains industry-leading security certifications, including ISO 27001, SOC 2, and FedRAMP Moderate.
5. Security and Encryption
WSPER applies strict security controls to safeguard information:
Encryption in transit: All device data is encrypted using TLS 1.2+ over LTE.
Encryption at rest: Data stored in AWS databases is protected using AES-256 encryption.
Access control: Portal access requires multi-factor authentication; accounts are provisioned manually and cannot be self-created.
Monitoring: Security logs and access events are continuously monitored.
6. Data Retention
We retain data only as long as necessary to provide services, comply with legal obligations, or support incident investigations.
Customers may request deletion of historical records at any time.
7. Data Sharing and Disclosure
WSPER only shares data in the following limited cases:
Emergency Response: Device activations may share location and event data with authorized responders.
Service Providers: Trusted partners (e.g., AWS, monitoring centers) who process data on our behalf under strict confidentiality agreements.
Legal Requirements: When required by law or valid government request.
We do not share or repurpose any data for surveillance or commercial use.
8. Data Ownership and Control
Customers retain ownership of all device and portal data.
WSPER acts as a data processor on behalf of the customer (the data controller).
Upon termination or request, customer data will be permanently deleted from active systems and backups within a defined period.
9. International Data Transfer
All data is stored and processed in the United States.
WSPER does not transfer data outside the U.S. unless explicitly agreed upon in a written contract.
10. Your Rights
Depending on your location and applicable laws, you may have the right to:
Access or request a copy of your information
Correct or update inaccurate data
Request deletion of your data
Restrict or object to processing
Requests can be submitted to support@getwsper.com
11. Incident Response and Breach Notification
In the event of a data breach or unauthorized access, WSPER will notify affected parties and relevant authorities as required by applicable laws and contractual agreements.
12. Changes to This Policy
We may update this Privacy Policy periodically to reflect new services, technologies, or legal requirements.
All updates will be posted on this page with a revised “Last Updated” date.