Skip to content

Legal

Privacy Policy

Last updated: April 2026

1. Who we are

WiseChef is an AI consulting practice operated as a sole-trader business by Adam Krawczyk, based in Kraków, Poland (data controller). If you have any questions about how we handle your data, email us through the contact details on the About page.

2. What data we collect

  • Account email. When you sign up for Framework or Visibility, we collect your email address to manage your subscription and send you service notifications. No marketing without explicit consent.
  • Billing data. Payments are processed by Stripe. WiseChef stores your Stripe customer ID and subscription status. We do not store full card numbers — those stay with Stripe.
  • Usage analytics. This site uses Cloudflare's built-in traffic analytics (privacy-preserving, no cookies, no cross-site tracking). We see aggregate request counts and country-level data; no individual user fingerprints.
  • Diagnostic data. Rescue scans analyse AI agent configuration data you submit. This data is used only to produce your report and is not retained beyond 30 days.
  • Calendar bookings. If you book a call through Cal.com, that data is governed by Cal.com's privacy policy. We receive your name and email as part of the booking.

3. How long we keep it

  • Account and billing records are kept for the duration of your subscription plus 5 years, as required by Polish tax law.
  • Rescue scan data is deleted within 30 days of report generation.
  • Support communications are kept for 2 years.
  • You can request earlier deletion — see section 5.

4. Legal basis (EU/GDPR)

We process your data on the basis of contract performance (delivering the service you signed up for) and legitimate interest (basic service analytics). Where we rely on consent, you can withdraw it at any time.

5. Your GDPR rights

If you are in the EU or EEA, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate or incomplete data.
  • Erasure — ask us to delete your data where we have no legal obligation to retain it.
  • Portability — receive your data in a structured, machine-readable format.
  • Objection — object to processing based on legitimate interest.

To exercise any of these rights, contact us through the About page. We will respond within 30 days. You also have the right to lodge a complaint with the Polish data protection authority, UODO (uodo.gov.pl).

6. Third-party processors

  • Stripe — payment processing (US, EU data adequacy / SCCs).
  • Cloudflare — CDN, DDoS protection, privacy-preserving analytics.
  • Cal.com — calendar booking.
  • Hetzner — server infrastructure for Framework (Germany, EU).

7. Cookies

This site itself sets no tracking cookies. Stripe sets cookies on their payment pages. Cloudflare may set a security cookie (__cf_bm) for bot detection.

8. Changes to this policy

We may update this policy as the business grows. Material changes will be communicated to active subscribers by email. The "last updated" date at the top of this page reflects the current version.