Wand Logo

Privacy Policy

We built Wand to make it easy to display social content safely and responsibly. This policy explains how we handle personal data.

Effective Date:

Who We Are

KRDS Software Development Private Limited

Second Floor G3 Building
New Door No 4
Bharathi Nagar Cross Street
Off L.B. Road, Thiruvanmiyur
Chennai - 600041
India

We built Wand to make it easy to display social content safely and responsibly. This policy explains, in plain language, how we handle personal data when you use Wand.

1. What This Policy Covers

This policy applies to the Wand social wall platform ("Wand" or the "Service")—including our dashboard, private APIs, and the embeddable widget—used by customers around the world. Where local laws offer extra protections or rights, we work to honor them.

Where We Host Data

Our primary production systems are hosted in Singapore. From time to time, limited processing may happen in other regions by trusted service providers, solely to run and support Wand.

2. Our Role With Your Data

KRDS as a Controller

For things like account sign-up, authentication, billing, security logs, and service communications.

KRDS as a Processor

For social content and related metadata you choose to aggregate and display. In this context, you act as the Controller and we follow your documented instructions.

If you need a Data Processing Agreement, we're happy to provide one.

3. The Information We Handle

We aim to collect only what we need to deliver and improve Wand.

Account & Billing

Name, business details, email, country, time zone, role/permissions, billing contact, tax/VAT info, plan status. Card details (if used) are handled by our payment processor—KRDS does not store full card numbers.

Connections You Set Up

Access tokens, app IDs, page/profile/channel IDs, scopes you authorize, and the sources/filters you configure so Wand can fetch and display posts.

Service Use & Security

Device and browser info, IP address, timestamps, request/response logs, error logs, admin actions in the dashboard, and high-level API metrics. We use these to run the service reliably and keep it secure.

Support & Communication

Emails, tickets, chat transcripts, feedback, and survey responses—so we can respond and improve.

Widget Viewers

By default, the embedded Wand social wall does not set tracking cookies or collect personal data about viewers. Any analytics on your website remain under your control.

4. Where the Data Comes From

  • Directly from you (sign-up, dashboard, support)
  • Automatically from your use of Wand (for reliability and security)
  • From third-party platforms only after you have authorized a connection

5. Why We Use It

We use personal data to:

  1. 1.
    Provide the Service

    Account set-up, authentication, pulling and displaying content, moderation tools (contract; legitimate interests).

  2. 2.
    Keep things secure and running smoothly

    Fraud prevention, troubleshooting, performance, availability (legitimate interests; legal obligations where applicable).

  3. 3.
    Handle billing and administration

    Subscriptions, invoices, tax compliance (contract; legal obligations).

  4. 4.
    Stay in touch

    Service notices, product updates, and support. For marketing, we'll ask for consent where required.

  5. 5.
    Improve Wand

    De-identified or pseudonymized analytics to make features and reliability better over time.

  6. 6.
    Meet legal requirements

    Responding to lawful requests and enforcing our Terms.

We try to balance our needs with your privacy and will always choose the lightest-touch approach that still lets Wand work properly.

6. Sharing and Service Providers

Important Notice

We don't sell personal data, and we don't share it for cross-context behavioral advertising.

We may work with carefully selected providers (for hosting, payments, customer support, email delivery, logging/monitoring). They act on our instructions under written data-processing terms.

We may also share data with professional advisors (under confidentiality) or if required by law or to protect rights and safety.

A current sub-processor list is available on request. We remain responsible for our providers' performance.

7. International Transfers

Your data may be processed in Singapore and, when needed, other countries where we or our providers operate. We use appropriate safeguards recognized by privacy laws (for example, standard contractual protections) to support these transfers.

If you'd like more detail, just ask.

8. How Long We Keep Data

We keep data only as long as it's useful for the purposes described here or as needed for legal, tax, or accounting reasons—then we delete it or anonymize it.

Account & billing records: Life of the account, plus a reasonable period (often a few years, depending on local law).
Access tokens: Active while connected; removed shortly after disconnection or account closure.
Operational logs: Commonly up to 12 months (longer only where necessary for security or compliance).
Backups: Held securely for limited cycles, then overwritten.
Support records: As long as needed to manage your request and comply with obligations.

9. Security in Practice

We apply safeguards that are sensible for a cloud service:

Encryption

In transit and at rest where appropriate

Access Control

Role-based with least-privilege permissions

MFA & Security

Multi-factor authentication for staff

Monitoring

Logging, vulnerability management, tested backups

No system can promise perfect security, but we work continually to strengthen our controls.

10. Your Choices and Rights

Depending on where you live, you may have rights to:

  • Access your personal data and get a copy
  • Correct inaccurate or incomplete data
  • Delete data in certain circumstances
  • Restrict or object to certain processing
  • Port data you provided, where feasible
  • Withdraw consent where processing relies on consent
  • Complain to your local authority

We'll respond within timelines set by law and will do our best to make the process easy.

11. Children's Data

Wand isn't intended for children under 13 (or a higher local age where required). We don't knowingly collect children's data. If you believe a child has provided data, please contact us and we'll take care of it.

12. Cookies and Similar Tech

  • Widget: By default, the embedded Wand wall does not set tracking cookies and doesn't collect viewer personal data.
  • Dashboard: We may use strictly necessary cookies for things like login sessions, and—where permitted—optional functional or light analytics cookies to improve the experience.

13. Social Platform Connections

When you connect a social platform, you let Wand use access tokens to read the content you've authorized so we can fetch and display it. We don't post on your behalf unless a specific feature requires it and you've enabled it.

You can revoke access in the platform at any time (and within Wand); related features will then pause.

14. Automated Decisions

Wand doesn't make automated decisions about you that have legal or similarly significant effects. Optional filters (like profanity filters) are configurable and can be adjusted to your preferences.

15. If Something Goes Wrong

We maintain an incident response process. If a personal-data breach occurs, we'll investigate, reduce risk, and notify affected customers and regulators where the law requires—promptly and transparently.

16. Regional Notes

We aim to meet the spirit and requirements of major privacy frameworks worldwide:

EEA/UK (GDPR/UK GDPR)

We rely on contract, legitimate interests, consent, and legal obligation, use recognized transfer safeguards, and support rights such as access, correction, deletion, restriction, objection, and portability.

United States (including California)

We don't sell personal information or share it for cross-context behavioral advertising. California residents may have rights to know, access, correct, delete, portability, and non-discrimination.

Brazil, Canada, Singapore, Australia, South Africa

We follow principles similar to those above—fair and reasonable processing, purpose limitation, transparency, security safeguards, and accessible rights.

If you need region-specific details or wording, we can provide it.

17. Talk to Us

If you have a question, want to exercise a right, request a DPA or sub-processor details, or raise a concern, just reach out:

Privacy Officer — KRDS Software Development Private Limited

Second Floor G3 Building
New Door No 4
Bharathi Nagar Cross Street
Off L.B. Road, Thiruvanmiyur
Chennai - 600041
India

Email: wand@krds.fr

We'll do our best to help quickly and thoughtfully.

18. Updates to This Policy

If we make changes, we'll update the date at the top and, where appropriate, let you know through reasonable channels. If any update materially impacts how we use your data, we'll give you clear notice so you can make an informed choice.

Your privacy matters to us. We're committed to being transparent about how we handle your data and giving you control over your information.

Questions About Privacy?

Our team is here to help clarify any questions you may have about how we protect your data.

Contact Us