Privacy Policy
Effective date: 10 November 2025
1. Who we are and how to contact us
WISECOMPANY, S.A. (“WISECOMPANY”) operates the GovWise platform (SaaS) for the collection, aggregation, and enrichment of public procurement data, as well as research tools, alerts, and proposal support.
Controller: WISECOMPANY, S.A., Rua 25 de Abril, N.º 49, 2080-382 Benfica do Ribatejo, Portugal..
Contact: info@govwise.ai | +351 211 246 365
2. Scope
Covers govwise.ai, the SaaS app and related services (support, billing, B2B marketing, events).
3. Roles (controller vs. processor)
Controller: account/usage data; B2B marketing; data from official public sources.
Processor: “Customer Content” uploaded/connected (e.g., tender docs, proposals, settings), processed only under instructions and DPA.
4. Personal data and sources
Account/support (name, business email, phone, company, role, credentials, records).
Usage/telemetry (IP, identifiers, timestamps, events, errors).
Billing (company, VAT/tax ID, contacts; payment handled by provider).
B2B marketing (preferences, engagement, registrations).
Official public sources (procurement documents/announcements with business personal data).
Customer Content (files and metadata).
No intentional collection of special categories.
5. Purposes & legal bases (GDPR)
Provide/operate the service (contract).
Product improvement and diagnostics (legitimate interest).
Product notices (contract/legitimate interest).
B2B marketing (consent/legitimate interest; opt-out anytime).
Billing and legal compliance (legal obligation).
Public-source processing (legitimate interest).
Customer Content processing (contract).
We do not sell personal data or run behavioural advertising.
6. Cookies & similar tech
Strictly necessary cookies (auth, security) and analytics. Consent requested for non-essential cookies. Preferences via banner/browser. Analytics configured to reduce tracking (e.g., IP masking; no ads-network sharing).
7. Sharing & recipients
Service providers (cloud, hosting, databases, monitoring, support, email, billing/payments) under contracts and minimum access.
Advisers/auditors as needed.
Public authorities where required by law.
Corporate transactions (with safeguards).
We maintain a sub-processor list and notify material changes.
8. International transfers
Primary hosting in the EEA. For transfers outside the EEA/UK we use SCCs and appropriate supplementary measures.
9. Retention
Account/contract: term plus legal retention.
Logs/telemetry: minimum necessary.
Marketing: until opt-out/withdrawal of consent.
Public sources: while information remains public and relevant.
Customer Content: per instructions and DPA.
10. Security
Least-privilege access, encryption in transit/at rest, logical segregation, logging/monitoring, backups and regular testing.
11. AI/ML & automated decisions
Models for extraction/normalisation and assisted suggestions. No decisions with legal or similarly significant effects based solely on automation. We do not use Customer Content to train models without explicit opt-in.
12. Your rights
Access, rectification, erasure, restriction, objection, portability, withdrawal of consent. Exercise via info@govwise.ai.
You may complain to the Portuguese DPA (CNPD) or your local authority. (www.cnpd.pt).
13. Children
Business-oriented service; not intended for users under 16.
14. Third-party links
Third-party sites have their own policies.
15. Changes
We may update this policy; we’ll show the effective date and may notify by email/in-app.
16. Contact
info@govwise.ai | +351 211 246 365
WISECOMPANY, S.A., Rua 25 de Abril, N.º 49, 2080-382 Benfica do Ribatejo, Portugal
Page: https://www.govwise.ai/privacy