Privacy Policy

1. Our Commitment to Your Privacy

Wigley Studios LLC ("we," "our," or "us") is committed to protecting your privacy and handling your personal information with care and respect. This Privacy Policy explains how we collect, use, share, and protect information when you use Wigley Studios products and services, including Chiave, PromptUI, PicSift, PostPilot, ShipKit, UI Kit Generator, UI Kit Packs, Developer Labs, and our website (collectively, the "Services").

Bottom Line: We collect only what we need to provide great service, we never sell your data, and you have full control over your information.

By using our Services, you consent to the practices described in this Privacy Policy. If you disagree with any part, please do not use our Services.

2. Information We Collect

Account Information

Name and email address
Company and job title (optional)
Billing and payment details
Account preferences
Communication history

Technical Data

IP address and location
Device and OS information
Browser type and version
License activation data
Usage patterns and analytics

Usage Information

Feature usage and preferences
Performance metrics
Error reports and logs
Support interactions
License validation requests

Platform Activity

Credit balance and transaction history
AI generation and social post history
License activations and validation logs
Project saves and export activity
Product purchase and download records

2.1 Automatic Data Collection

We automatically collect certain technical information through cookies, log files, and similar technologies. This helps us improve performance, analyze usage, and provide personalized experiences.

Important: Our software does NOT access, collect, or transmit your personal files, projects, or application data. We only collect technical metrics and license validation information.

3. How We Use Your Information

We use collected information for legitimate business purposes that benefit you:

Service Delivery

Provide and maintain the Software
Process payments and manage billing
Validate licenses and prevent fraud
Deliver customer support

Product Improvement

Enhance features and performance
Fix bugs and issues
Develop new capabilities
Conduct research and analytics

Communication

Send important service updates
Respond to support inquiries
Share relevant product news
Request feedback (with consent)

3.1 Marketing Communications

We may send promotional emails about new features, updates, and special offers. You can opt out anytime using the unsubscribe link in any email or through your account settings.

4. How We Share Information

We Do NOT Sell Your Data: We never sell, rent, or trade your personal information to third parties for marketing purposes.

We share information only in these limited circumstances:

4.1 Service Providers

We work with trusted third-party vendors who help us operate our business:

Payment Processing: Stripe (credit card processing, PCI-compliant)
Email Services: For transactional and marketing emails
Analytics: To understand usage patterns and improve services
Hosting: Secure cloud infrastructure for our services

All vendors are contractually obligated to protect your data and use it only for specified purposes.

4.2 Legal Requirements

We may disclose information when required by law or to:

Comply with legal processes and government requests
Enforce our Terms of Service
Protect our rights, property, or safety
Prevent fraud or abuse
Protect users' safety

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We'll notify you and ensure continued protection under this Privacy Policy.

5. How We Protect Your Data

We implement industry-standard security measures to protect your information:

Encryption

TLS/SSL encryption in transit
AES-256 encryption at rest
Encrypted database backups
Secure API communications

Access Controls

Multi-factor authentication
Role-based permissions
Regular access audits
Minimal data access policies

Monitoring

24/7 security monitoring
Intrusion detection systems
Regular security audits
Vulnerability assessments

Note: While we implement robust security measures, no system is 100% secure. We cannot guarantee absolute security but continuously work to protect your information.

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access

Request a copy of your personal data we hold

Correction

Update inaccurate or incomplete information

Deletion

Request deletion of your personal data

Portability

Request a copy of your data in a portable format

Opt-Out

Stop receiving marketing communications

Object

Object to certain data processing activities

6.1 Exercising Your Rights

To exercise any of these rights, contact us at support@wigleystudios.com. We'll respond within 30 days of receiving your request.

6.2 Cookie Management

You can control cookies through your browser settings. Note that disabling cookies may limit certain features of our Services.

7. Data Retention

We retain your information for as long as necessary to provide services and comply with legal obligations:

Active Accounts: While your account is active and for up to 7 years after closure
Transaction Records: 7 years for tax and accounting purposes
Support Communications: 3 years after resolution
Analytics Data: Aggregated and anonymized, retained indefinitely

Deleted data is removed from active systems and user access. Encrypted backup systems may retain limited copies for a short period as part of standard disaster recovery procedures.

When data is no longer needed, we securely delete or anonymize it according to industry best practices.

8. International Data Transfers

Our services operate globally. Your information may be transferred to and processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place:

Standard contractual clauses approved by regulatory authorities
Data processing agreements with international vendors
Compliance with EU-US and Swiss-US Privacy Shield principles
Adherence to GDPR requirements for international transfers

9. Children's Privacy

Our Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

If you believe we have collected information from a child under 13, please contact us immediately at support@wigleystudios.com so we can promptly delete it.

For users aged 13-18, we recommend parental or guardian consent before using our Services.

10. Software-Specific Privacy Practices

10.1 Desktop Products (PicSift)

Local Processing: All work happens locally on your device
No File Access: We never access your project files or personal media
License Validation: Periodic checks transmit only license key and device ID
No Telemetry: Desktop products do not collect or transmit usage analytics

10.2 Chiave (SaaS License Management)

Tenant Isolation: Each customer's license data is logically isolated
API Key Security: Tenant API keys are hashed at rest; we cannot view your raw keys
Customer Data: You control what customer data you store in Chiave; we do not access it except to provide the service

10.3 PromptUI & PostPilot (AI-Powered Products)

Prompt Data: Text prompts you submit are sent to AI providers (OpenAI, Anthropic, or xAI) for generation. We do not store prompts longer than necessary for service delivery.
Generated Content: AI-generated output (UI code, social posts) is stored in your account for your access
No Training: Your prompts and outputs are not used to train AI models

10.4 PicSift (Desktop Application)

Local Processing: All image analysis and deduplication happens entirely on your device
No Image Upload: Your photos and media files are never transmitted to our servers
License Validation: Periodic checks transmit only license key and device ID

10.5 ShipKit (Source Code Download)

One-Time Download: Source code is delivered via secure download link
No Telemetry: ShipKit boilerplate code does not phone home or collect usage data

10.6 Developer Labs & Free Resources

Browser-Only Processing: Free tools (JSON Formatter, Regex Tester, etc.) process data entirely in your browser — nothing is sent to our servers
Account-Optional: Developer Labs projects are saved only if you choose to sign in; anonymous use sends no personal data

10.7 License Validation Process

When desktop Software (PicSift) validates your license, it transmits:

License key (encrypted)
Device identifier (hashed)
Software version number
Operating system type (e.g., "Windows 11")

NOT transmitted: Device names, file paths, project names, code, or any personal documents.

11. Third-Party Services

Our Services may contain links to third-party websites or integrate with third-party services. We are not responsible for their privacy practices. We recommend reviewing their privacy policies:

Stripe: Payment processing - Stripe Privacy Policy
Social Media: If you share content from our site, their privacy policies apply
Analytics Providers: May use cookies to track site usage

12. California Privacy Rights (CCPA)

If you're a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

Right to Know: Request details about personal information we collect and how we use it
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt out of sale of personal information (we don't sell data)
Right to Non-Discrimination: Equal service regardless of exercising privacy rights

California residents can exercise these rights by contacting support@wigleystudios.com.

13. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) provides you with certain rights regarding your personal data.

13.1 Legal Bases for Processing

We process your personal data under the following legal bases:

Contract Performance: Processing necessary to provide our Services to you (account creation, license validation, payment processing)
Legitimate Interests: Fraud prevention, service improvement, security monitoring, and analytics (we balance our interests against your rights)
Consent: Where you have explicitly consented (e.g., advertising cookies, marketing communications, optional features)
Legal Obligation: Where processing is required to comply with applicable law

13.2 Your GDPR Rights

In addition to the general rights listed in Section 6, you have the right to:

Object to Processing: Object to processing based on legitimate interests or for direct marketing purposes
Withdraw Consent: Withdraw any previously given consent at any time
Restriction: Request restriction of processing in certain circumstances
Lodge a Complaint: File a complaint with your local data protection supervisory authority. A list of EU Data Protection Authorities is available at edpb.europa.eu

To exercise any GDPR rights, contact us at support@wigleystudios.com. We will respond within one month of receiving your request. That period may be extended by two further months where necessary, taking into account the complexity and number of requests.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We'll notify you of material changes:

Email Notification: Sent to registered users' email addresses
Website Notice: Prominent banner on wigleystudios.com
In-Product Alert: Notification within applicable Wigley Studios products

Changes become effective 30 days after notification. Continued use after this period constitutes acceptance of the updated Privacy Policy. The "Last Updated" date at the top of this page shows when it was last revised.

15. Privacy Compliance

This Privacy Policy complies with major privacy regulations worldwide:

GDPR Compliant

CCPA Compliant

COPPA Compliant

We conduct regular privacy impact assessments and maintain comprehensive data protection documentation to ensure ongoing compliance.