Legal Notice
Overview
This website is owned by Wandercraft, a simplified joint-stock company (Société par Actions Simplifiée) with a share capital of €82,288.40, whose registered office is located at 88 rue de Rivoli, 75004 PARIS (France), registered with the Versailles Trade and Companies Register (RCS Versailles) under SIRET number 788 627 198 000 21, and whose intra-Community VAT number is FR02788627198.
Wandercraft's Marketing and Communication Department is responsible for monitoring the site and is located at 88 rue de Rivoli – Paris.
Phone number FR: 01 79 35 09 49
US phone number: 646-448-4787
Email: contact@wandercraft.health
Accommodations
The website www.wandercraft.euis hosted by Webflow, Inc. whose headquarters are located at 398 11th Street, 2nd Floor, San Francisco, CA 94103
E-mail: contact@webflow.com
Terms of Access and Use
The user of the website www.wandercraft.eu acknowledges that he/she has the necessary skills and means to access and use this website.
General Warnings
Wandercraft makes every effort to provide users with available and verified information and/or tools. Despite all the care taken, the information is provided without guarantee of any kind. It is non-contractual, may contain technical or typographical inaccuracies and is subject to change without notice.
Wandercraft is not responsible for errors or absences. We thank users of the site for informing us of any omissions, errors or corrections, by sending an e-mail to contact@wandercraft.health
Similarly, Wandercraft cannot be held responsible in the event of misuse of the service by the user or in the event of temporary unavailability of the service (in the event of force majeure, a maintenance period or technical incident of any kind). It is expressly understood by the user of this site that under no circumstances can Wandercraft be held responsible for any damage whatsoever, whether direct or indirect, material or immaterial, resulting in particular from the consultation and/or use of this website (or other sites linked to it) and any downloadable applications, as well as from the use of any textual or visual information that may have been collected, and in particular for any financial or commercial prejudice, or loss of programs or data in its information system. By using this site, the user acknowledges having had the opportunity to read this warning.
Intellectual Property Rights
By virtue of Article L111-1 of the French Intellectual Property Code, the website, its general structure, as well as the texts, images (animated or not), sounds, know-how, drawings, graphics and any other element making up the site, are the exclusive property of Wandercraft. The same applies to the databases on the Wandercraft website, which are protected by the provisions of Article L112-3 of the French Intellectual Property Code relating to the legal protection of databases, and of which Wandercraft is the producer.
The trademarks of Wandercraft and its partners, as well as the logos appearing on the site, are registered trademarks (semi-figurative or not). Any use or reproduction, in whole or in part, of the site, its components and/or the information contained therein, by any means whatsoever, is strictly prohibited and constitutes an infringement punishable under Articles L335-2 to L335-4 of the French Intellectual Property Code, except with the prior written consent of Wandercraft.
Hyperlinks
We may provide links to sites that are not operated by Wandercraft. If you visit any of these linked sites, we encourage you to read their policies, including their privacy policies. We are not responsible for the policies or practices of other companies. Wandercraft undertakes to remove links to other websites at the first request of the companies to which the linked sites belong. Wandercraft cannot be held responsible for hypertext links to other resources on the Internet. Wandercraft must give its prior written consent to the creation of a hypertext link to the www.wandercraft.eu website and reserves the right to remove this link at any time.
Complaints - mediation
If you have a complaint about the content of the site or your experience with our products, please send an email to contact@wandercraft.health
Photo credits
Photos: Wandercraft
Videos : Wandercraft
Governing Law
The Site is subject to French law and to the exclusive jurisdiction of the French courts
Common Vulnerability Disclosure Policy - Updated May 2026
Wandercraft recognizes the important role that security researchers—whether individuals or organizations—play in helping to promote secure design practices and security risk mitigation, both within the medical device industry specifically and across the healthcare ecosystem. This policy is intended to provide security researchers with clear guidelines for conducting vulnerability discovery activities and to outline our preferences regarding how to report discovered vulnerabilities to us.
This policy describes which systems and types of research are covered by this policy, how to submit vulnerability reports to us, and how long we ask security researchers to wait before publicly disclosing vulnerabilities.
We encourage you to contact us to report potential vulnerabilities in our systems.
Purpose
The purpose of the Wandercraft Coordinated Vulnerability Disclosure Program is to coordinate the investigation and disclosure of potential new vulnerabilities in Wandercraft products. The shared goal of security researchers and Wandercraft should always be to reduce risk, while giving due consideration to the entire operating environment affected by any discovered vulnerability.
Scope
This Coordinated Vulnerability Disclosure Statement applies to all commercially available Wandercraft products, including associated apps (“Wandercraft Products”).
This process is intended for reporting potential new vulnerabilities in Wandercraft Products. Vulnerabilities in operating systems and other third-party components should not be reported through this process.
Although we develop and maintain other systems and services accessible via the Internet, we ask that active research and testing be conducted only on the systems and services covered by the scope of this document. If there is a particular system not included in the scope that you believe warrants testing, please contact us to discuss it first. We will expand the scope of this policy over time.
Reporting Prerequisites
Security researchers must comply with the following prerequisites throughout the research and disclosure process, including initial research and testing:
• Comply with all applicable laws and regulations in your location and in the location where the Wandercraft Product is located;
• Do not use a vulnerability to take disproportionate action, such as exploiting a vulnerability for any purpose other than to prove its existence, collecting more data than is minimally necessary to substantiate the vulnerability, altering or removing sensitive data from the product, or creating a backdoor within the product or otherwise introducing further vulnerabilities into it for subsequent use;
• Do not conduct research or testing on systems where there is any risk of harm to patients;
• Do not test products or network infrastructure in clinical settings or other active environments where Wandercraft Products are being used for any type of patient diagnosis, treatment, care, or monitoring, or could inadvertently be used in this way;
• Any Wandercraft product intended for subsequent use in a clinical setting should be returned to its original condition once testing is complete. Contact Wandercraft for service assistance;
• Be sure to obtain written permission from the owner of the Wandercraft Product before conducting any testing to ensure that the scope is clear.
• Do not disclose details of the vulnerability to the public until the timeframe mutually agreed upon with Wandercraft has expired;
• Do not operate outside the scope described in this document; and
• Please provide us with details of any communications to regulatory agencies or other third parties regarding any discovered vulnerability, without delay.
Once you have determined that a vulnerability exists or have encountered any sensitive data
(including personally identifiable information, protected health information, financial information, intellectual property, proprietary information, or trade secrets of any party), you must stop your test, notify us immediately, and not disclose this data to anyone else.
Test method
The following test methods are not permitted:
• Network denial-of-service (DoS or DDoS) tests or other tests that impair access to or damage a system or data
• Physical testing (e.g., office access, open doors, tailgating), social engineering (e.g., phishing, vishing, smishing), or any other non-technical vulnerability testing
Reporting a Vulnerability
To report a potential new vulnerability to Wandercraft’s Product Security Team, please send an email to (cvd@wandercraft.health). Please use our PGP key or other suitable encryption tools to protect any sensitive information. Please do not include sensitive data (e.g., identifiable patient data, protected health information) in the body of the email or in any attachments (e.g., screenshots, images, or log files).
Information submitted under this policy will be used solely for defensive purposes—to mitigate or remediate vulnerabilities.
This CVD email should not be used for inquiries regarding vulnerabilities that have already been disclosed or vulnerabilities in third-party components (not within the Wandercraft Product). Information regarding previously disclosed vulnerabilities can be requested by contacting Wandercraft.
What we ask of you
To help us triage and prioritize submissions, we recommend that your reports:
• Describe the location where the vulnerability was discovered and the potential impact of its exploitation.