About Wispers Connect
Wispers Connect is operated by Scheidegger Technology GmbH. Contact: support@wispers.dev.
Impressum
Wispers is operated by Scheidegger Technology GmbH.
CH-ID: CH-020-4088779-4
UID: CHE-425.697.643-4
Postal address
Scheidegger Technology GmbH
Im Büelhältli 13
8704 Herrliberg
Switzerland
Privacy Policy
Last updated: 2026-06-22
Who we are — Wispers is provided by Scheidegger Technology GmbH, Im
Büelhältli 13, 8704 Herrliberg, Switzerland. We act as the data controller for
the personal data described here. Contact: privacy@wispers.dev.
Scope — This Policy covers our websites, apps, and the Wispers services, including Wispers Files and Wispers Connect (collectively, the "Services"). It applies to all of them. If we link to a separate policy for a specific feature, that policy applies to it.
Data you transfer — Wispers connects your own devices so they can exchange data with each other over an end-to-end encrypted connection. We do not store the content you transfer — whether files, streams, or other data — and we cannot read it. Our Hub helps your devices find and connect to each other but never receives that content; where devices need a relay to reach each other across networks, any data passing through it stays end-to-end encrypted, unreadable to us, and is never stored. Your devices authenticate each other using device pairing and a cryptographic roster that they sign themselves and verify independently of the Hub, so a compromised Hub cannot impersonate your devices or add a rogue device to your account. Your data stays yours, end to end.
Data we collect
- Account data: email, name, preferences, communications with us.
- Device data: device names and configurations needed to register your devices and connect them to each other.
- Connection metadata: records of connections between your devices — device identifiers, timestamps, and transport type — used to operate, route, and secure the Services. We do not log the content exchanged.
- Product & usage data: actions in the Services, features used, logs, crash reports, performance metrics.
- Device/technical data: IP address, device identifiers, browser/OS, timezone, language, referrer.
- Support & feedback: issue reports, screenshots or files you choose to share with us.
- Payment data (if/when applicable): handled by our payment processor.
- We do not collect or store the content you transfer between your devices.
Sources — Directly from you; automatically from your devices; from service providers (e.g. email).
How we use data (purposes & legal bases)
- Provide and secure the Services (create accounts, authenticate, run
features, prevent abuse, debug).
- Legal bases: contract; legitimate interests in running secure Services.
- Communicate with you (operational emails, security/transactional
notices).
- Legal bases: contract; legitimate interests.
- Improve the Services (analytics, research, feature development, quality).
- Legal bases: legitimate interests; consent for non‑essential cookies/analytics.
- Bot & spam protection (gate support messages on captchas).
- Legal bases: legitimate interests.
- Legal/compliance (comply with laws, enforce terms, defend claims).
- Legal bases: legal obligation; legitimate interests.
Cookies & tracking — We use only essential cookies for our sites to work.
Sharing your data
- Service providers (processors): hosting, analytics, email delivery, customer support, logging. They act under contract and only on our instructions.
- Business operations: professional advisors, auditors, insurers.
- Legal / safety: to comply with law, enforce terms, or protect rights, property, or safety.
- Changes in control: in a merger, sale, or reorganization, data may transfer under appropriate safeguards.
We do not sell your personal data.
International transfers — We are based in Switzerland and may process/store data in Switzerland, the EEA, the UK, and other countries. Where transfers go to countries without an adequacy decision, we use appropriate safeguards (e.g., Standard Contractual Clauses) and implement supplementary measures where relevant. You can request a copy of relevant safeguards.
Retention — We keep personal data only as long as needed for the purposes above, then delete or anonymize it. Typical periods:
- Account data: kept while your account is active; deleted or anonymized
after closure (contact
privacy@wispers.dev). (The content you transfer isn't stored, so there's nothing to retain there.) - Connection, account & product logs: 12 months for analytics and security logs (aggregated thereafter).
- Support requests: 12 months, unless required longer for legal or technical reasons.
Your rights — Depending on where you live, you may have the right to
access, correct, delete, restrict or object to processing, data portability,
and to withdraw consent at any time. You can also lodge a complaint with the
FDPIC (Switzerland) or your local data protection authority (EEA/UK). Contact
us at privacy@wispers.dev to exercise your rights. We may need to verify your
identity.
Children — The Services are not directed to children under 16 (or as defined by local law). We do not knowingly collect such data. If you believe we have, contact us to delete it.
Automated decisions — We do not make decisions with legal or similarly significant effects based solely on automated processing. If this changes, we will explain the logic involved and your rights.
Security — We use administrative, technical, and organizational measures appropriate to the risk (e.g., encryption in transit/at rest, access controls, logging, vulnerability management). No method is 100% secure.
Data breaches — If we become aware of a personal‑data breach that is likely to result in a high risk to you, we will notify the competent authority and the affected individuals as required by law.
Contacts
privacy@wispers.dev
Scheidegger Technology GmbH
Im Büelhältli 13
8704 Herrliberg
Switzerland
Changes to this Policy — We may update this Policy from time to time. We will post the new version here and update the "Last updated" date. Material changes will be notified via email or in‑app notice.
Cookie Policy
Last updated: 2026-06-22
We use only essential cookies for operating the Wispers services, such as those necessary to allow users to log into their account. Accordingly, we show no cookie consent banner.
Developer Terms
Effective date: 2026-06-22
1. Summary (not a substitute for the full terms)
Wispers Connect is in beta. The client library is open source (MIT); these
Terms govern your use of the Wispers Connect Hub and related hosted services as
an integrator. Things may change or break, and there is no service-level
agreement. You are responsible for your own end users.
2. Agreement
These Developer Terms ("Terms") govern your access to and use of the Wispers
Connect Hub, APIs, and related hosted services (the "Service"). The
wispers-connect client library is provided separately under the MIT License,
and your use of that code is governed by that license, not these Terms. By
creating an organization or using the Service, you agree to these Terms on
behalf of the organization you represent. In these Terms, "you" means that
organization (the integrator), and "we", "us", and "Wispers" mean Scheidegger
Technology GmbH.
3. Eligibility & accounts
You must be authorized to bind your organization to these Terms. Provide
accurate registration information and keep your credentials and API keys
secure. You are responsible for all activity under your organization's account.
4. Beta; availability; changes
The Service is provided on a beta basis without uptime or support commitments
and without a service-level agreement. We may add, change, limit, deprecate, or
discontinue features, APIs, or the Service itself, with reasonable notice for
material changes. We may enable, limit, or revoke access at any time.
5. The library and the Service
The wispers-connect library is licensed under the MIT License; you may use,
modify, and redistribute it accordingly. These Terms grant you a limited,
revocable, non-transferable right to access the Hub and APIs to operate your
integration, subject to these Terms. We and our licensors retain all rights in
the Hub, the hosted services, and our documentation; except for the rights
expressly granted (and the MIT-licensed library), no other rights are
transferred.
6. Your end users (flow-down)
You, not Wispers, are responsible to your end users. You will: (a) maintain your
own terms of service and privacy policy governing your product; (b) obtain all
notices and consents required to process your end users' data through the
Service; (c) comply with applicable law; and (d) not represent that Wispers is
responsible to your end users or that your product is provided by Wispers.
7. Acceptable Use Policy (AUP)
You will not:
- Break the law; infringe IP, privacy, or publicity rights; or process unlawful content.
- Use the Service, relays, or port forwarding to access or connect to devices, networks, or systems without authorization.
- Exceed documented rate limits or quotas, or otherwise interfere with the integrity or performance of the Service or other integrators.
- Upload malware, or conduct load or penetration testing without prior written authorization.
- Use the Service to build a product that primarily replicates or substitutes the Hub or Wispers Connect as a hosted service.
We may suspend or terminate organizations for AUP breaches.
8. Data processing
For personal data of your end users that we process through the Service, you act
as the controller and we act as your processor. We process such data only to
provide and secure the Service and on your documented instructions (these Terms
and your configuration). We apply administrative, technical, and organizational
security measures appropriate to the risk; engage sub-processors (e.g., hosting)
under comparable obligations; and, where data is transferred to a country
without an adequacy decision, rely on appropriate safeguards such as Standard
Contractual Clauses. Content transferred between devices is end-to-end encrypted
and is not readable by us. For production use we make a full Data Processing
Agreement available on request. For personal data for which we are the
controller (such as your organization and account data), our Privacy Policy
applies.
9. Fees
Wispers Connect is free during beta. We may introduce fees in the future with
advance notice; continued use after fees take effect requires your acceptance.
10. Privacy
Our Privacy Policy describes how we process personal data for which
we are the controller. By using the Service, you acknowledge it.
11. Changes to the Terms
We may update these Terms. If changes are material, we'll notify you in advance
(e.g., email or in-product). Continued use means you accept the changes.
12. Disclaimers
The Service is provided "as is" and "as available." To the maximum extent
permitted by law, we disclaim all warranties, express or implied, including
merchantability, fitness for a particular purpose, and non-infringement.
13. Limitation of liability
To the maximum extent permitted by law, we and our suppliers will not be liable
for indirect, incidental, special, consequential, exemplary, or punitive
damages, or for any loss of profits, revenue, data, or goodwill. Our aggregate
liability for all claims relating to the Service will not exceed the amounts you
paid us in the 3 months before the event.
14. Indemnity
You will indemnify us against third-party claims arising from your product, your
end users, your content, or your use of the Service in breach of these Terms or
applicable law.
15. Export & sanctions
You represent that you and your organization are not subject to sanctions and
will not use the Service where prohibited by applicable export control or
sanctions laws.
16. Governing law & venue
These Terms are governed by Swiss law (without regard to conflicts rules).
Exclusive venue is the courts of Zürich, Switzerland.
17. Contact
support@wispers.dev
Scheidegger Technology GmbH
Im Büelhältli 13
8704 Herrliberg
Switzerland
Responsible Disclosure
Last updated: 2026-06-22
We appreciate security research. If you believe you've found a vulnerability in
wispers.dev (including *.wispers.dev), please email security@wispers.dev
(PGP) with steps to reproduce and affected URLs
or apps; test only with your own accounts, avoid accessing others' data, and do
not perform denial-of-service, spam, social engineering, or physical
testing. We'll acknowledge within 72 hours, share a status update within 7
business days, and request coordinated disclosure while we remediate. Safe
harbor: If you make a good-faith effort to follow this policy, we won't pursue
legal action or report you to authorities for your research. Third-party
services we don't control are out of scope; please don't run automated scans
that degrade service or report non-impactful best-practice findings.
Account and Data Deletion
You can request removal of your organization's account at any time, including
any data we hold about it (except data we must retain by law, if any). To do
so, contact us at support@wispers.dev. End users of a product built on
Wispers Connect should contact the operator of that product to delete their
data.