Skip to main content

GDPR Compliance

Last Updated: December 3, 2025

1. Introduction

WinkSocial is committed to protecting the privacy and security of your personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements and your rights as a data subject.

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given explicit consent for specific processing activities
  • Contract: Processing is necessary to fulfill our contract with you
  • Legal Obligation: Processing is required by law
  • Legitimate Interests: Processing is necessary for our legitimate business interests

3. Your GDPR Rights

Under GDPR, you have the following rights:

Right to Access

You have the right to request copies of your personal data. You can download your data through your account settings.

Right to Rectification

You have the right to correct inaccurate or incomplete personal data about you.

Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data in certain circumstances.

Right to Restrict Processing

You have the right to request that we limit how we use your personal data.

Right to Data Portability

You have the right to receive your personal data in a structured, machine-readable format.

Right to Object

You have the right to object to certain types of processing, including direct marketing.

4. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance. You can contact our DPO at:

Email: dpo@joinwink.app

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

6. International Data Transfers

When we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Exercising Your Rights

To exercise any of your GDPR rights:

We will respond to your request within 30 days.

8. Complaints

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority.