Your customers' data,
treated like we'd want
ours to be.
Wismify is built and hosted in the EU, fully compliant with GDPR from day 1. Each tenant is hard-isolated by design. Tokens encrypted with AES-256-GCM. Audit logs of every action. Public data deletion endpoint. Zero data sold, zero data shared with third parties beyond what your integrations explicitly require.
All third-party tokens (Gmail, WhatsApp, Instagram, Shopify) encrypted at rest with authenticated 256-bit AES-GCM. Decrypted only at API call time, never logged.
Every query scoped by owner_id at DB level. Zero cross-tenant data leak by design. RLS policies enforced even if app code has bugs.
Public data deletion endpoint, DPA available, SCC-aligned subprocessor list, IPs anonymized in analytics, EU-hosted by default.
Servers in France (Hostinger DC), Postgres on Supabase EU. No US-only routing. Spain-based legal entity.
Every agent action logged: replies, status changes, integrations connected, data exports. Full traceability per ticket and per user.
Two-factor authentication via TOTP. Optional security PIN for sensitive actions. Session lockout on brute force. Granular role permissions.
That's how we treat your entire operation.
Read the security details or tell us your case in a 20-minute demo.
