Privacy
Privacy.
How we handle the small amount of data we collect, in plain language.
Last updated: 2026-05-13
What this is
Wiserframe is a two-person studio. We collect a small amount of information — only what we need to do the work and stay in touch with you.
What we collect
- Email and name when you contact us at hello@wiserframe.com or book a call. We use these to reply and to coordinate engagements.
- Calendly booking data when you book a call through our Calendly link. Calendly handles this; their privacy policy applies.
- Stripe payment data when you pay for a Diagnostic Working Session. Stripe processes payments; we never see your card details. Their privacy policy applies.
- Project materials you share with us during an engagement — documents, screenshots, access to systems. We treat these as confidential by default.
- Basic site analytics via Vercel Web Analytics, Vercel Speed Insights, and Google Analytics 4 (configured in cookieless mode — no
_gacookies set), to understand which pages get read and how the site performs. These are cookieless, do not track individuals across sites, and do not feed any advertising network. See Vercel's and Google's privacy policies for technical details.
Cookies
We don't set marketing or tracking cookies. The only first-party cookies you may encounter are essential operational cookies from our hosting provider (Vercel) used to route requests and enforce security. Because nothing on this site requires non-essential cookies, we don't show a consent banner; you can verify what's being set under your browser's storage inspector.
What we don't do
- We don't sell your data.
- We don't share project materials outside the engagement, and we sign mutual NDAs by default.
- We don't add you to a marketing list without explicit opt-in.
Healthcare data
If your engagement involves protected health information (PHI), we'll execute a Business Associate Agreement (BAA) before any PHI is shared. By default, design work happens against synthetic or de-identified data.
Data processing on behalf of EU clients
When we process personal data on your behalf as a GDPR data processor, we sign a Data Processing Agreement (DPA) before processing begins. Standard contractual clauses cover any transfers outside the EEA. Subprocessors are listed in the Imprint.
Your rights
You can ask what we have on you, ask us to correct it, or ask us to delete it. Email hello@wiserframe.com and we'll respond within two working days. EU residents have full GDPR rights; California residents have CCPA rights; we honor both.
Changes
If we update this policy, we'll change the "last updated" date above. For material changes that affect existing clients, we'll email you directly.
Questions? Email hello@wiserframe.com — we reply within two working days.