GDPR and Data Protection Compliance

Since the implementation of the EU General Data Protection Regulation (GDPR) in May 2018, businesses worldwide have had to adhere to stricter privacy requirements.

What this means for Wix app builders

GDPR compliance is imperative. The regulation empowers Wix users, particularly EU citizens, to exercise control over their personal data stored by your app. Users may reach out to you regarding accessing, modifying, or deleting their data, necessitating proactive measures from app builders.

Guidelines for GDPR compliance

To ensure compliance with GDPR requirements, you should familiarize yourself with the regulation. Here are essential guidelines to follow when handling user requests related to personal data:

1. Verification of identity: When users request access to their personal data, it's crucial to verify their identity to safeguard security. Requesting proof of identity helps prevent unauthorized access to sensitive information.
2. Acknowledgment of user requests: Promptly inform users that you're processing their request. Sending an acknowledgment email demonstrates transparency and reassures users that their concerns are being addressed.
3. Timely response to requests: Efficiently handle user requests within specified timeframes:
   • For edit or deletion requests, aim to fulfill them within a week, but ensure completion within 30 days at the latest.
   • Regarding access requests, provide the requested data within 30 days. Always utilize the same communication channel through which the user initiated contact.
4. Adhere to visitors' data consent policies: Compliance entails respecting policies such as cookie usage and data selling restrictions. Integrating mechanisms to uphold these policies within your app is essential for maintaining GDPR compliance.