WISO Prep logo

WISO PREP

Cart

Policy Document

Privacy Policy

This policy explains how we collect, use, store, and protect personal data under UK GDPR and related UK privacy laws.

Last updated: February 19, 2026

1. Data controller and contact

Philipp Knobelspies (Sole Trader) trading as WISO Prep is the data controller for this website.

  • Controller contact email: hello@wu-aufnahmetest.com
  • Business address: 124 City Road, EC1V 2NX, London, United Kingdom
  • Supervisory authority: Information Commissioner's Office (ICO), United Kingdom

2. Personal data we collect

  • Identity and account data: name, email address, hashed password, account verification status.
  • Authentication and security data: login events, session/token metadata, and security alerts.
  • Learning activity data: attempts, answers, scores, bookmarks, and progress metrics.
  • Purchase data: package, quantity, amount, currency, payment status, Stripe identifiers.
  • Support data: messages and details you provide when contacting support.
  • Technical data: device/browser information, IP-derived security/rate-limit fingerprints, cookie choices.

3. Why we use your data and lawful bases

  • To provide your account, purchased access, and core platform features: contract performance.
  • To process payments and accounting records: contract performance and legal obligation.
  • To secure the platform, prevent abuse, and investigate incidents: legitimate interests.
  • To send essential account/security emails (verification, password reset, security alerts): legitimate interests.
  • To process non-essential analytics cookies (when enabled): consent.

4. Processors and sharing

We share personal data only where required to operate the service, such as:

  • Payment processing providers (for example Stripe).
  • Hosting/infrastructure and database providers.
  • Email delivery providers used for account and security communications.

We do not sell personal data. We require processors to handle data under written contractual safeguards and security obligations.

5. International transfers

Some providers may process personal data outside the UK. Where this happens, we use appropriate safeguards (such as adequacy regulations or approved transfer clauses) and apply supplementary protections where needed.

6. Retention periods and criteria

  • Account and learning records: while your account is active and for a reasonable period after closure.
  • Purchase/accounting records: retained as required by tax/accounting law (typically up to 6 years).
  • Security and fraud-prevention logs: retained only as long as operationally necessary.
  • Support correspondence: retained for support continuity and dispute handling, then deleted or minimized.

We may retain limited data longer where required by law, for legal claims, or to prevent fraud and abuse.

7. Security measures

We use technical and organizational safeguards including access controls, encryption in transit, environment hardening, and security monitoring. No internet system is 100% secure, but we continuously improve protections.

8. Your rights

Subject to applicable law, you can request:

  • Access to personal data.
  • Correction of inaccurate data.
  • Deletion (erasure) where applicable.
  • Restriction of processing.
  • Data portability for data you provided to us.
  • Objection to processing based on legitimate interests.
  • Withdrawal of consent for consent-based processing (for example optional cookies).

9. Data source and requirement to provide data

We primarily collect data directly from you. Certain technical/security data is generated automatically when you use the service. If you do not provide required account or payment details, we may be unable to create your account, process payment, or provide purchased services.

10. Automated decision-making

We do not use solely automated decision-making that produces legal or similarly significant effects about you.

11. Personal data incidents

We maintain procedures for investigating and responding to personal-data incidents. Where required by law, we notify the relevant authority and affected individuals without undue delay.

12. Contact and complaints

For privacy requests or account data questions, contact hello@wu-aufnahmetest.com. You can also lodge a complaint with Information Commissioner's Office (ICO), United Kingdom.