Privacy Policy

This page describes what Wamid collects, why, and what you can do about it. Short, because collection is too.

What we collect on this site

If you join the waitlist, we store:

• Your email address.
• The date of registration.
• Your approximate country (inferred from your IP by Cloudflare).
• The user agent (browser).

No tracking cookies. No third-party analytics. No advertising pixels. The site is served statically via Cloudflare Pages, with privacy-first Cloudflare Web Analytics (cookieless, GDPR-friendly).

Why

To send you a single email: the opening of the beta. Then, we will keep your email as long as you use the service or until you unsubscribe.

What we don't do

• No reselling.
• No sharing with third parties for marketing purposes.
• No advertising profiling.

The Android app

The Wamid Android application is local-first. Your notes and reminders stay on your device in currently shipped versions (V0.x series). When the optional cloud Recall layer ships (V0.41+), it will be clearly announced, opt-in, with end-to-end encrypted backups and minimal telemetry. Free tier remains fully local.

Your rights

You can request at any time access, rectification or deletion of your data. For account deletion specifically (with timing, scope and identity check), see the dedicated page Delete your account.

For any other right (access, rectification, portability, objection) write to privacy@wamid.app.

Recourse

You have the right to lodge a complaint with a supervisory authority:

• CNIL (France): www.cnil.fr/fr/plaintes
• CNDP (Morocco): www.cndp.ma
• Or the supervisory authority of your habitual residence (EEA list: edpb.europa.eu).

AI Transparency (EU AI Act)

• Recall is an AI system within the meaning of Article 3(1) of Regulation (EU) 2024/1689 (AI Act).
• Provider of underlying model: Google LLC (Vertex AI Gemini Flash 2.5).
• Deployer: Yassine El Idrissi (Wamid).
• Article 50(2): you are informed that the Morning Letter is generated by an AI system.
• Article 50(4): each Morning Letter is flagged in-app with an "AI-generated" label.
• Recall tone is governed by our tone charter.

Subprocessors

• Cloudflare, Inc. — hosting (Pages + KV) and cookieless Web Analytics — US, EU-US Data Privacy Framework (DPF) certified.
• Resend — transactional email delivery — US, DPA signed.
• Google Cloud (Vertex AI Gemini Flash 2.5) — Recall Morning Letter — us-central1, EU SCC + DPF.
• Supabase Inc. — authentication + encrypted cloud storage — EU region, DPA signed.

Cookies

The site uses only strictly necessary cookies (Cloudflare bot management) and a cookieless audience tool (Cloudflare Web Analytics). Full details on the dedicated Cookie policy page.

Hosting

Site hosted by Cloudflare (Pages + KV). Data stored in Cloudflare's infrastructure (global network with regional replication). Email delivery handled by Resend. Full publisher and hosting information on the Legal notice page.

Security disclosure

To report a security vulnerability, see /.well-known/security.txt or write to security@wamid.app.

Contact

For any privacy question: contact@wamid.app.