Your analysis is confidential. We treat it that way.

Data encryption

In transit: All connections between your browser and WiseMark's servers are encrypted using TLS 1.2 or higher. No data is ever sent unencrypted.

At rest: Documents you upload are stored on AWS S3 with AES-256 server-side encryption, the industry standard for data at rest. Your annotation data and account information are stored in PostgreSQL hosted on Railway, which encrypts all data at the storage layer. Backups are also encrypted.

Infrastructure

The application is hosted on Railway. File storage is on AWS S3 in Europe. The database is PostgreSQL on Railway's managed infrastructure, with automated backups and monitoring; the database is not shared with other tenants. There are no self-hosted servers and everything runs on managed infrastructure from established providers (AWS, Railway) with their own security certifications and SLAs.

Documents: upload, processing, deletion

Upload: Documents are transmitted over TLS and stored encrypted on AWS S3. They are only accessible to the authenticated user who uploaded them.

Processing: Documents are rendered in the browser using pdf.js. WiseMark does not modify, reformat, or extract text from your original document server-side beyond what is needed for the annotation functionality. The original PDF remains intact.

Deletion: When you delete a document, the file and all associated annotations are permanently removed from storage.

Your data is yours

Export anytime: You can export your full annotation library at any time in a structured format. Your data is never locked in.

Delete anytime: Request account deletion and all associated data (documents, annotations, account information) is permanently removed from all systems, including backups, within 30 days.

No vendor lock-in: WiseMark is designed so that your annotation data remains useful and portable. You built it, you own it.

No AI, no training, no third-party data sharing

WiseMark does not use AI. Your documents are not processed by any AI model. Your annotations are not analysed, summarised, or interpreted by any automated system.

Your data is never used for training. Unlike AI-powered document tools, WiseMark never sends your documents or annotations to any language model, machine learning pipeline, or third-party AI service.

Compliance and data location

We are GDPR compliant. Data is hosted in Europe. Encryption at rest and in transit is as described above.