Sign In Get Started →
Legal

Privacy Framework

How Operator collects, processes, and protects your data.

Last updated: 1 March 2026

Overview

Wheelwise Inc. ("Operator", "we", "us") operates a rules engine and workflow automation platform. This Privacy Framework describes how we handle personal data when you use our services, visit our website, or engage with us as a partner or enterprise customer.

We are committed to data minimisation, purpose limitation, and transparency in all data processing activities. Where applicable, Operator adheres to the General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and equivalent regional legislation.

Data We Collect

We collect data in the following contexts:

  • Account Data: Name, email address, organisation, and role — provided when you create an account or enquire about our services.
  • Platform Usage Data: Workflow configurations, rule definitions, automation events, and execution logs — created when you use the Operator engine.
  • Technical Data: IP addresses, browser type, device information, and session analytics — collected automatically via standard web logging.
  • Communications Data: Messages and enquiries sent via our contact forms or support channels.

We do not collect sensitive personal categories (health, biometric, or financial data) unless explicitly agreed under a dedicated data processing agreement with enterprise customers.

How We Use It

Personal data is used to: provide and improve the Operator platform; respond to support and sales enquiries; send product updates and operational notices; and fulfil legal or contractual obligations.

We do not use personal data for automated decision-making that produces legal effects on individuals without human review.

Data Sharing

We do not sell personal data. We share data only with:

  • Infrastructure and cloud hosting providers (processors acting under our instruction).
  • Payment processors, where financial transactions are enabled.
  • Legal authorities, where required by applicable law.

Retention

We retain account data for the duration of the customer relationship and for up to 3 years thereafter for legal and compliance purposes. Workflow execution logs are retained for 12 months by default; enterprise customers may configure custom retention windows via their data processing agreement.

Your Rights

Depending on your jurisdiction, you have rights including: access to your data; rectification of inaccurate data; erasure; and portability. To exercise any of these rights, contact privacy@onoperator.com. We respond to all requests within 30 days.

Security

Operator implements TLS encryption in transit, AES-256 encryption at rest, strict access control, and regular third-party security audits. Our infrastructure is hosted in ISO 27001-certified data centres with 99.9% uptime SLA.

Contact

For privacy-related queries, contact our privacy team at privacy@onoperator.com.