Privacy Policy

WipeCert is a product of AceIt Technologies LLC(“we,” “our,” or “us”). We provide certified data erasure software and related services. This Privacy Policy describes how we collect, use, disclose, and protect information when you use wipecert.com and our products.

Questions? Contact us at privacy@wipecert.com.

Account and profile data

When you create an account we collect your name, email address, organization name, and any other information you provide during registration or while using the platform.

Device and wipe records

We store data about the devices you add to WipeCert (serial numbers, manufacturer, model, storage capacity) and the wipe operations you perform (method, standard, timestamps, pass/fail status, operator). This data is used to generate your erasure certificates and audit trail.

Usage and technical data

We collect log data, IP addresses, browser type, pages visited, and feature usage to operate and improve the service. We use industry-standard infrastructure monitoring tools to maintain reliability and performance.

Payment data

Billing is handled by our third-party payment processor. We do not store your full payment card number. Our payment processor shares with us your subscription status, plan details, and billing contact. Their privacy policy governs how they handle payment data.

Cookies

We use strictly necessary cookies for session authentication and optionally functional cookies for preferences. We do not use advertising cookies. See our Cookie Policy section below.

• Provide, operate, and maintain the WipeCert platform
• Generate and store data erasure certificates
• Process billing and subscriptions
• Send transactional emails (wipe completions, invites, receipts)
• Respond to support requests
• Detect and prevent fraud or abuse
• Comply with legal obligations
• Improve and develop new features

We do not sell your personal data. We do not use your wipe records or device data for advertising purposes.

We share data only in these circumstances:

• Service providers: We work with trusted infrastructure providers for database and authentication, hosting, payment processing, email delivery, and software distribution. These sub-processors are bound by data processing agreements and handle only the data necessary to provide their services.
• Legal requirements: If required by law, court order, or government authority.
• Business transfer: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
• Your consent: Any other sharing requires your explicit permission.

We retain your account data for as long as your account is active. Erasure certificates are retained indefinitely by default because they serve as permanent compliance records. If you close your account, we will delete your personal data within 90 days, except where retention is required by law or where certificate records must be preserved for your customers’ compliance needs.

You may request deletion of your data by contacting privacy@wipecert.com.

We use industry-standard security practices: data encrypted at rest and in transit (TLS 1.2+), row-level security in our database, hashed API keys, and multi-factor authentication support. Despite these measures, no system is perfectly secure. Please use a strong, unique password and enable 2FA for your account.

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Request deletion of your data (“right to be forgotten”)
• Object to or restrict certain processing
• Receive your data in a portable format
• Withdraw consent (where processing is based on consent)

To exercise these rights, email privacy@wipecert.com. We will respond within 30 days.

WipeCert is operated from the United States. If you access WipeCert from outside the US, your data may be transferred to and processed in the US. We rely on Standard Contractual Clauses (SCCs) where required by applicable law.

WipeCert is not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, contact us immediately.

We use the following categories of cookies:

You can disable non-essential cookies in your browser settings. Disabling strictly necessary cookies will prevent login from working.

We may update this policy periodically. We will notify you by email or in-app notice for material changes. The “Last updated” date at the top reflects the most recent revision. Continued use of WipeCert after changes constitutes acceptance.

AceIt Technologies LLC
Privacy inquiries: privacy@wipecert.com
General support: support@wipecert.com