Privacy Policy

Last updated: 2025-07-14

1. Introduction

This Privacy Policy explains how Wyvern ("we", "us", "our") collects, uses, stores, and protects information when you use our desktop application ("the Software") and website (wyvern-pc.com). We are committed to protecting your privacy and handling your data transparently. By using our services, you consent to the practices described in this policy.

2. Information We Collect

  • Account Information: When you create an account, we collect your email address. If you use social login (Google or Discord OAuth), we receive your public profile information (name, email, avatar) from the provider. We do not access your contacts, messages, or private data from these providers.
  • Subscription Data: For paid users, we store subscription tier (Free/Plus), billing cycle, and subscription status. Payment processing is handled entirely by third-party providers (Stripe, PayPal). We do NOT store credit card numbers, CVV codes, or full payment details.
  • Usage Analytics: We collect anonymous usage events to understand how features are used and improve the Software. This includes feature names accessed (e.g., "dashboard_opened", "vanishdata_used"), timestamps, and session duration. Usage data does not contain personal content or file data.
  • Error Reports: When the Software encounters an error, an anonymous error report may be sent automatically. This includes error type, stack trace, operating system version, and app version. Error reports do not contain personal files, browsing data, or user content.
  • Hardware Information (Local Only): The Dashboard feature reads hardware metrics (CPU, GPU, RAM, disk usage, temperatures) for display purposes. This data is processed locally on your device and is NOT transmitted to our servers.
  • Activity Tracker Data (Local Only): The Activity Tracker reads Windows system artifacts (Prefetch, ShimCache, UserAssist, browser history, uninstall records) for local forensic display. This data is processed entirely on your device and is NEVER uploaded or transmitted.

3. Information We Do NOT Collect

  • We do NOT collect, store, or transmit files, documents, or personal content from your computer.
  • We do NOT log keystrokes, screenshots, or screen recordings.
  • We do NOT access or store browsing history on our servers. Activity Tracker data stays on your device.
  • We do NOT collect hardware identifiers (HWID) for tracking. Hardware Identity Privacy Tool features operate locally.
  • We do NOT sell, rent, or share your personal data with third parties for marketing purposes.
  • We do NOT use your data for advertising or create advertising profiles.

4. How We Use Your Information

  • Account Management: To authenticate your identity, manage your subscription, and provide access to features.
  • Service Operation: To process payments, manage license entitlements, and communicate important updates.
  • Software Improvement: Anonymous usage analytics and error reports are aggregated to identify bugs, improve performance, and prioritize feature development.
  • Customer Support: Your email is used to respond to support requests and send critical service notifications (e.g., subscription changes, security alerts).
  • Security: To detect and prevent unauthorized access, fraud, or abuse of the service.

5. Data Storage & Security

  • Account data and subscription information are stored securely in Supabase (PostgreSQL), hosted on secure cloud infrastructure with encryption at rest and in transit.
  • All communication between the Software and our servers uses TLS/HTTPS encryption.
  • Database access is protected by Row Level Security (RLS) policies, ensuring users can only access their own data.
  • Administrative access requires separate authentication and is restricted to authorized personnel only.
  • We employ industry-standard security practices including secure authentication tokens, password hashing, and regular security reviews.

6. Data Retention

  • Account data is retained for the duration of your account. If you delete your account, associated data will be removed within 30 days.
  • Anonymous usage analytics are retained for 90 days and then automatically purged.
  • Error logs are retained for 90 days for debugging purposes and then automatically deleted.
  • Subscription records may be retained for up to 3 years after account deletion for legal and financial compliance.

7. Third-Party Services

  • Supabase: Provides authentication (email/OTP, Google OAuth, Discord OAuth) and database services. Supabase Privacy Policy: https://supabase.com/privacy
  • Vercel: Hosts our website and provides analytics for page visits (anonymous, no personal data). Vercel Privacy Policy: https://vercel.com/legal/privacy-policy
  • Resend: Used for sending transactional emails (OTP codes, password resets). Resend processes your email address solely for delivery. Resend Privacy Policy: https://resend.com/legal/privacy-policy
  • Stripe / PayPal: Processes subscription payments securely. We do not receive or store full card details. Refer to their respective privacy policies.
  • We carefully select third-party providers that comply with industry security standards. However, we are not responsible for their independent privacy practices.

8. Cookies & Local Storage

  • Our website uses essential cookies and browser local storage for session management, language preferences, and authentication tokens.
  • We use Vercel Analytics which collects anonymous, aggregate page visit data without using cookies for tracking.
  • The desktop application stores settings and preferences locally on your device using standard application data directories.
  • We do NOT use third-party advertising cookies or tracking pixels.

9. Your Rights

  • Access: You may request a copy of the personal data we hold about you.
  • Correction: You may request correction of inaccurate personal data.
  • Deletion: You may request deletion of your account and associated data by contacting support@wyvern-pc.com. Deletion will be processed within 30 days.
  • Data Portability: You may request your data in a machine-readable format.
  • Opt-Out: You may opt out of non-essential analytics by disabling telemetry in the Software settings.
  • Withdrawal of Consent: You may withdraw consent for data processing at any time by discontinuing use and requesting account deletion.
  • To exercise any of these rights, contact us at support@wyvern-pc.com.

10. Children's Privacy

The Software is not intended for children under 14 years of age. We do not knowingly collect personal information from children under 14. If we discover that we have collected data from a child under 14 without parental consent, we will delete it promptly. If you believe a child has provided us with personal information, please contact support@wyvern-pc.com.

11. International Data Transfers

Our servers and third-party service providers may be located in various countries. By using the Software, you consent to the transfer of your data to jurisdictions outside your country of residence. We ensure that such transfers comply with applicable data protection laws and that appropriate safeguards are in place.

12. Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify affected users via email within 72 hours of discovery and take immediate steps to mitigate the impact. We will also notify relevant regulatory authorities as required by applicable law.

13. Changes to This Policy

  • We may update this Privacy Policy from time to time. Changes will be posted on our website with an updated revision date.
  • Material changes will be communicated via email or in-app notification at least 30 days before taking effect.
  • Continued use of the Software after changes constitutes acceptance of the updated policy.

14. Contact

  • For privacy-related questions, data requests, or concerns:
  • Email: support@wyvern-pc.com
  • Website: wyvern-pc.com