Trust Center

Built for teams that ship carefully

An AI team plugged into your live business tools is only useful if it's trustworthy. Here's how we earn that trust.

TLS everywhere, AES-256 at rest for integration secrets, JWT-signed sessions, short-lived tokens for third-party APIs.

Private conversations are never used to train foundation models. Integration credentials are scoped to the minimum required.

Every Buddy action is visible in the dashboard. You can pause, replay, or delete any run. Audit logs on privileged events.

EU/US hosting with automated backups, point-in-time recovery, and graceful degradation when a provider is slow.

Role-based permissions, SSO for business plans, mandatory 2FA for staff with production access.

GDPR, data-residency options for European customers, DPA on request, annual third-party security review.

Data we collect, how we use it, and your rights.

The agreement that governs your use of Wanddy.

Which cookies we set and why.

[email protected] — we triage within one business day.