Privacy Policy

1. Introduction

This Privacy Policy explains how Spectator processes and protects your personal data when you use our application. It applies to all users of public demo instances operated by Sebastian Sucker.

2. Data Processing

Spectator processes documents and code repositories you upload to extract and verify requirements. All processing happens locally on the server running Spectator, using local LLM inference. We do not transmit your data to third-party services or cloud providers.

Data is generally stored only as far as needed for the purpose of using the tool. We do not collect personal data beyond what is technically necessary to provide the service (account name, password hash, and project-related content you explicitly upload).

3. Data Storage and Third Parties

Your documents, code repositories, and extracted requirements are stored securely in the database associated with the Spectator instance. Data remains under your control.

Data is not shared with third parties, except where required by law (e.g., disclosure to competent authorities upon legally binding request).

4. Data Deletion

All data associated with a project — including project content, extracted requirements, documents, logging data, access logs, and any account-specific data linked to that project — is deleted immediately and permanently when you delete the project. We do not retain backups of deleted data.

You may request deletion of your entire account at any time. Upon account deletion, all associated data including passwords, account names, and any remaining project data is deleted immediately and permanently.

Inactive projects: Projects that have had no interaction for more than 90 days may be deleted automatically. You will not necessarily receive prior notice. Please ensure you export any data you wish to retain.

5. Logging

Spectator does not persistently log IP addresses or other personally identifiable information from user requests. Application logs contain only operational information necessary for system maintenance and error detection, and are not retained longer than technically necessary.

6. Cookies and Session Storage

This application does not use cookies. Authentication tokens and session data are stored exclusively in your browser's sessionStorage, which is automatically cleared when you close the browser tab. No tracking cookies, analytics cookies, or advertising cookies are used.

7. Your Rights

As a data subject under the General Data Protection Regulation (GDPR), you have the following rights:

• Right of access (Art. 15 GDPR): You may request information about the personal data we hold about you.
• Right to rectification (Art. 16 GDPR): You may request correction of inaccurate personal data.
• Right to erasure (Art. 17 GDPR): You may request deletion of your personal data where no legal retention obligation applies.
• Right to restriction of processing (Art. 18 GDPR): You may request that processing of your data be restricted under certain circumstances.
• Right to data portability (Art. 20 GDPR): You may request a copy of your data in a structured, machine-readable format.
• Right to object (Art. 21 GDPR): You may object to the processing of your personal data.

To exercise any of these rights, please contact us at sebastian.sucker@getwize.ai.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the policy was last revised. We recommend checking this page periodically. Continued use of the application after a policy change constitutes acceptance of the revised policy.

9. Contact

For questions about this Privacy Policy or our data handling practices, please contact: