Privacy Policy

We collect information you provide directly, information collected automatically when you use the Services, and information from third-party sources. This includes:

• Account data: name, business email, company, role, billing details.
• Customer content: messages, calls, claims photos, documents, and other data your agency processes through WingGrow.
• Usage data: device, browser, IP address, pages visited, feature interactions, and log data.
• Cookies and similar technologies as described in our Cookie Notice.

We use personal data to provide, maintain, and improve the Services; authenticate users; process payments; deliver support; train and operate AI models on your behalf; detect fraud and abuse; comply with legal obligations; and send service-related and marketing communications (where permitted).

WingGrow does not use customer content to train foundation models shared across tenants. Customer content is processed to deliver your configured automations (voice calls, messaging, claims intake, knowledge base answers) and is isolated per workspace. You retain ownership of your customer content.

We share personal data with vetted sub-processors (cloud hosting, AI model providers, payment processors, analytics, and support tooling) under contractual safeguards. A current list of sub-processors is available on request. We do not sell personal data.

We may transfer personal data outside your country of residence, including to the European Economic Area, the United Kingdom, and the United States. We rely on Standard Contractual Clauses and equivalent safeguards where required.

We retain personal data only as long as necessary to provide the Services and comply with legal obligations. Customer content is retained according to your workspace configuration; when an account is closed, data is deleted or anonymized within 90 days unless a longer retention period is required by law.

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, port, or object to processing of your personal data, and to withdraw consent. Submit requests to privacy@wingrow.io. We respond within 30 days.

We implement administrative, technical, and physical safeguards including encryption in transit and at rest, least-privilege access controls, audit logging, and regular penetration testing. No system is perfectly secure; report vulnerabilities to security@wingrow.io.

The Services are intended for business users and are not directed to children under 16. We do not knowingly collect personal data from children.

We may update this Policy from time to time. Material changes will be notified by email or an in-product notice at least 30 days before taking effect.

WingGrow Technologies — privacy@wingrow.io. Our EU representative can be reached at eu-rep@wingrow.io.