WooWandWooWand

Privacy Policy

Last updated: February 14, 2026

1. Data controller

The data controller for personal data is WooWand, publisher of the platform available at woowand.com. For any questions about your data, contact us at: privacy@woowand.com.

2. Data collected

We collect the following data:

  • Registration data: email, username, company name (optional).
  • WooCommerce connection data: API keys (consumer key, consumer secret) encrypted with the Fernet algorithm.
  • Product data: titles, descriptions, images, metadata from your imported WooCommerce products.
  • Payment data: processed exclusively by Stripe. We do not store your banking information.
  • Usage data: login logs, actions performed on the platform.
  • Cookies: see our Cookie Policy.

3. Purposes of processing

Your data is processed to:

  • Provide and improve the Service (product listing optimization).
  • Manage your account and subscription.
  • Process payments via Stripe.
  • Contact you in case of technical issues or important updates.
  • Comply with our legal and regulatory obligations.

4. Legal basis

  • Contract performance: processing necessary for providing the Service.
  • Legitimate interest: Service improvement, security.
  • Consent: non-essential cookies, marketing communications.
  • Legal obligation: invoice retention, login logs.

5. Subprocessors

We use the following subprocessors for the operation of the Service:

  • Stripe (USA, standard contractual clauses): payments.
  • Anthropic (USA, standard contractual clauses): AI text generation (Claude).
  • Hosting provider (Europe): platform and database hosting.

6. Data retention

  • Account data: retained as long as the account is active, then 3 years after deletion.
  • Product data: deleted upon store disconnection or account deletion.
  • Billing data: retained for 10 years (legal obligation).
  • Logs: retained for 12 months.

7. Security

We implement technical and organizational measures to protect your data:

  • Encryption of WooCommerce API keys (Fernet/AES).
  • TLS encryption for all communications.
  • Passwords hashed with secure algorithms.
  • Restricted access to databases.

8. Your rights (GDPR)

In accordance with the General Data Protection Regulation (GDPR), you have the following rights:

  • Right of access: obtain a copy of your personal data.
  • Right of rectification: correct inaccurate data.
  • Right to erasure: request the deletion of your data.
  • Right to data portability: retrieve your data in a structured format.
  • Right to object: oppose the processing of your data.
  • Right to restriction: restrict processing in certain cases.

To exercise your rights, contact us at privacy@woowand.com. We will respond within 30 days. You may also file a complaint with the CNIL (www.cnil.fr).

9. International transfers

Some of your data may be transferred to subprocessors located outside the European Economic Area (EEA), particularly in the United States (Stripe, Anthropic). These transfers are governed by standard contractual clauses approved by the European Commission.

10. Changes

We may update this privacy policy. In case of significant changes, we will notify you by email or via a notification on the platform.

Privacy Policy | WooWand | WooWand