Wiviy Privacy Policy Terms of Use

Privacy Policy

Last Updated: December 2, 2025

Applies To: Users of WIVIY (“App”, “Website”, “Platform”) operated by Zuntra Digital Private Limited ("we", "us", "our")

Wiviy is intended only for users aged 18 years or older.

1. Introduction

Your privacy is important to us. This Privacy Policy explains how WIVIY collects, uses, stores, shares, and protects your personal data when you use our website, mobile application, or related services (collectively, the "Platform").

By using the Platform, you consent to this Privacy Policy and our processing of your data in accordance with applicable data protection laws, including

By using the Platform, you consent to this Policy and our compliance with:

  • Digital Personal Data Protection Act, 2023 (India)
  • Information Technology Act & Rules (India)
  • General Data Protection Regulation (EU)
  • California Consumer Privacy Act (US)

If you do not agree with this Policy, please discontinue use of the Platform.

2. Scope

This Policy applies to:

  • All registered users, visitors, and subscribers ("Users").
  • All personal data and sensitive personal data that we collect, whether online or offline.
  • Websites, apps, events and other services we operate under the WIVIY brand globally ("Service" and/or "Services").

This Policy applies globally to all the users of the platform. Indian users are protected under the DPDP Act, 2023. Users in jurisdiction such as EU, UK, or California are additionally protected under GDPR, UK-GDPR, and CCPA respectively.

3. Data We Collect

We collect personal data and usage information to operate the Platform, enable matchmaking, ensure user safety, verify identities, personalise your experience, and provide core communication features. When you use the Service, certain information is also generated automatically such as your interactions, preferences, device details, and activity logs. We may additionally receive information about you from third parties, including when you choose to sign in using external platforms (such as Google, Facebook, or Apple), import data from another account, or when verification, safety, or analytics partners provide information needed to maintain the security and integrity of our Platform.

This data is collected and processed strictly for the purposes outlined in this Privacy Policy and in accordance with the Digital Personal Data Protection Act, 2023, GDPR, CCPA, and applicable international laws.

A. Data You Give Us

  • Account Data: When you create an account, you give us basic information for your account to be set up such as your phone number, email address, and date of birth.
  • Profile Data: When you complete your profile, you share additional details about you, such as your gender, interests, preferences, approximate location, etc. Some of this data may be considered sensitive or special in certain countries, such as details about sexual orientation, sexual life, health, racial or ethnic origins, religious beliefs or political affiliations. If you choose to provide this data, you consent to us using it as laid out in this Privacy Policy.
  • Content: When you use our Service, you may post photos, videos, audio, text and other types of content, such as your chats with other members.
  • Purchase Data: When you make a purchase, we keep the details of the transaction (e.g. what you purchased, the date of the transaction, and the price). The exact data depends on the payment method you choose. When you pay directly with us (rather than through a platform such as iOS or Android), you provide your debit or credit card number or other financial info.
  • Marketing, Survey and Research Data: We sometimes run (i) surveys, focus groups, or market studies for research purposes and (ii) promotions, events or contests for marketing purposes. When you choose to participate, you give us information to process your entry and participation, as well as your responses to our questions and your feedback.
  • Third-Party Data: When you choose to share with us information about other people (for example, if you use the contact details of someone you know for a given feature or if you submit a query or report involving a member), we process this data on your behalf to complete your request.
  • Customer Support Data: When you contact us, you provide us with information that may be necessary to help address your enquiry. Other people may also submit queries or reports involving you. Finally, our moderation tools and teams can collect additional data as part of their investigations. Further, we are part of Zuntra Digital Private Limited. Zuntra Digital considers the safety and security of members a top priority. If you were banned from another Zuntra Digital service, your data may be shared with us to allow us to take necessary actions, including closing your account or preventing you from creating an account on our services further. Where legally allowed, we can also receive information about suspected or convicted bad actors from third parties as part of our efforts to ensure our members’ safety and security.

B. Data Generated or Automatically Collected

  • Usage Data: Using the service generates data about your activity, including how you use it (e.g., when you logged in, features you’ve been using, actions taken, information shown to you, referring webpages, ads you interacted with) and how you interact with others (e.g., searching, matching, communicating). We may also receive data related to interactions you had with our ads on third party websites or apps.
  • We also collect behavioural signals such as swipe patterns, dwell time on profiles, scrolling behaviour, match preferences, and other interaction metrics that help our algorithms recommend and personalise matches.

    In addition, we collect metadata used for spam detection, fraud prevention, and bot-identification such as abnormal usage patterns, repeated failed login attempts, or unusual interaction frequency.

  • Technical Data: Using the service involves the collection of data from and about the device(s) you use to access our service, including hardware and software information such as IP address, device ID and type, apps settings and characteristics, app crashes, advertising IDs and identifiers associated with cookies or other technologies that may uniquely identify a device or browser.
  • We may also collect approximate location derived from your IP address, even when you do not grant precise GPS permissions, for security, localisation, and safety purposes.

    You may reset or disable advertising identifiers (such as IDFA or AAID) at any time from your device settings.

    We also collect diagnostic and performance data, such as battery usage, network quality, and crash logs, to improve app stability and functionality.

    For more information about cookies, see our Cookie Policy.

C. Data Collected with Your Permission

  • Geolocation Data: If you give us permission, we can collect your geolocation (latitude and longitude) from your device. If you decline permission, features that rely on precise geolocation may not be available to you.

    We may still derive approximate location (such as city or region) from your IP address for safety, localisation, and fraud-prevention purposes. You may withdraw geolocation permission at any time through your device settings, although doing so may limit discovery, distance-based matching, and nearby-user features.

  • Face Geometry Data: You may choose to participate in certain of our features, like Selfie Verification, that involve the collection of face geometry data, which may be considered biometric data in some jurisdictions.

    This data is used solely for identity verification, safety, fraud-prevention, and to detect impersonation or fake profiles. Biometric/face geometry data is stored only for the verification period and deleted within 30 days unless required for investigating safety violations or fraud.

    You may decline verification at any time; however, this may limit access to certain features (such as visibility boosts, trust badges, or advanced safety functions). We may use trusted third-party verification partners to process this data, who are bound by strict contractual and confidentiality obligations.

  • ID Data: You may provide us with a copy of your government-issued ID to help us check that you’re who you say you are.

    We may collect ID data through direct upload, camera capture, or via third-party KYC/verification service providers.

    ID documents are stored securely and retained only for the period necessary for verification, compliance obligations, or ongoing safety investigations.

D. Sensitive Personal Data (DPDP Act & GDPR)

As mentioned above, we may collect and process sensitive information only with your explicit consent, such as:

 1. Gender, sexual orientation, relationship preferences

 2. Biometric or facial data (for identity or photo verification)

 3. Communication content within chats (end-to-end encrypted where possible)

 4. Optional health or lifestyle information (if shared voluntarily)

We do not use sensitive data for advertising, cross-platform marketing, or any purpose not expressly stated in this Policy.

You may refuse to provide sensitive personal data; however, certain personalised features (such as compatibility-based recommendations, identity verification, or visibility enhancements) may not function fully.

You may withdraw your consent to the processing of sensitive personal data at any time through your account settings or by contacting us. Withdrawal will not affect processing already lawfully carried out prior to withdrawal.

We do not collect financial or criminal record data unless necessary for verified identity programs or required by law.

4. Why and How We Use Your Data

We use your information to:

 1. To provide our Service to you and improve it over time - including connecting you with Users, personalising your experience, and just helping you make the most out of our Service.

 2. To keep all our Users safe and secure while using our Services.

 3. To potentially show relevant ads without using sensitive personal data for advertising or marketing purposes.

 4. Create and maintain your account.

 5. Operating and maintaining the various features on our Service.

 6. Organising sweepstakes and contests.

 7. Responding to your requests and questions.

 8. Monitoring the functioning of our Service and troubleshooting and fixing issues as necessary.

 9. To enable your purchases on our Service, including processing payments and offering discounts/promotions/customising prices.

 10. Facilitate matchmaking and recommendation algorithms.

 11. To operate advertising and marketing campaigns, including:

  • Performing and measuring the effectiveness of advertising campaigns run on our Service.
  • Performing and measuring the effectiveness of marketing campaigns promoting our own Service on third-party platforms.
  • Communicating with you about products and services we believe may interest you.

We do not sell your personal data to advertisers or third parties, and sensitive personal data is never used for targeted advertising.

     12. To improve our Service and create new features and Services, including:

    • Running focus groups, market studies and surveys.
    • Analysing how our Service is used.
    • Reviewing interactions with our customer care teams to improve Service quality.
    • Developing and improving new features and Services, including through machine learning and other technologies, and testing them out.
    • Conducting research and publishing research papers. Any research use is done using anonymised or pseudonymised data only.

     13. To keep all Users safe on our Service, including:

    • Preventing, detecting and fighting against violation of our Terms, fraud and other illegal or unauthorised activities.
    • Developing and improving tools to prevent, detect and fight against violations of our Terms, fraud and other illegal or unauthorised activities.
    • Preventing recurrences, notably by preventing individuals who violate our Terms from creating a new account.
    • Letting individuals who submit a report know what we’ve done about it.
    • Verifying your identity.
    • Securing payments and fighting against financial fraud.

     14. To comply with legal obligations, exercise, establish and defend legal claims and rights, including:

    • Preserving data to comply - and evidence compliance - with applicable law.
    • Supporting investigations and defending potential or ongoing litigation, regulatory action or dispute.
    • Responding to lawful requests from law enforcement, courts, regulators, and other third parties.
    • Reporting illegal or infringing content to law enforcement, government or other authorities.
    • Establishing, exercising, or defending ongoing or threatened claims.
    • Sharing data with law enforcement or partners to combat abusive or illegal behavior.

We share information with law enforcement only upon lawful request, court order, or in cases involving imminent harm.

 15. Enable messaging and in-app interactions.

     16. Personalise your experience and content suggestions.

The grounds for processing the User data mentioned above is as follows:

 1. Performance of our contract with you.

 2. Your consent (where sensitive data or other type of data that requires consent is processed).

 3. Consent (where required under applicable law) and otherwise our legitimate interest. It is in our legitimate interest to promote our Service and to show ads to our Users which are tailored to their interests, as a way to improve their experience and help fund the parts of our service which are free.

 4. Our legitimate interest: It is in our legitimate interest to improve our Service over time.

 5. Consent where required under applicable law (e.g., we may process data deemed sensitive or special in certain countries to help make sure that the various communities using our service are being treated fairly and equitably and that our service remains diverse and inclusive)

 6. Our legitimate interest: It is in our legitimate interest and that of our Users to keep them safe.

 7. Protection of your vital interests and that of other Users.

 8. Compliance with legal obligations that apply to us such as taking down illicit content.

 9. Our legitimate interest: It is in our legitimate interest to comply with applicable law and protect ourselves, our Users and others, including as part of investigations, legal proceedings and other disputes.

 10. Compliance with legal obligations applying to us such as responding to law enforcement requests for information.

5. Consent

1. By registering, you consent to our processing of your personal and sensitive personal data for the purposes described. Consent is taken in a manner that is free, specific, informed, unconditional, and unambiguous, as required under the Digital Personal Data Protection Act, 2023.

2. Sensitive personal data (including sexual orientation, relationship preferences, gender identity, biometric/face verification data, and optional lifestyle information) is processed only based on your explicit consent under Section 7 of the Act. You are not required to provide sensitive personal data unless you choose to enable features that rely on it.

3. You may withdraw consent anytime via your account settings or by emailing **privacy@[appname].com**.

4. Withdrawal of consent may limit your access to certain services or features.

5. You also have the right to refuse consent for optional fields or optional processing (including marketing communications, contact import, personalised advertising, or advanced matchmaking features). Refusal of consent for optional processing will not affect your ability to use core functions of the Service.

6. If we transfer your personal data outside of India, we obtain your consent where required under law and ensure compliance with applicable transfer safeguards.

7. We maintain a record of your consents, withdrawals, and preferences for compliance and audit purposes.

6. Data Storage & Retention

1. Data is stored on secure cloud servers located in India and, where applicable, in other jurisdictions with adequate data protection (e.g., the EU).Where data is stored or processed outside India, such transfers occur with appropriate legal safeguards, including Standard Contractual Clauses, contractual protections, and compliance with applicable cross-border transfer requirements.

2. We retain data only for as long as necessary to fulfill the purposes stated above or as required by law and no longer than is required for lawful, security, operational, or legitimate business purposes. We do not retain personal data in perpetuity.

3. Different categories of data may be retained for different periods based on their purpose. For example, account information is retained during the life of the account; verification selfies/biometric data are stored only for the verification period and deleted within 30 days; chat data is retained for a limited period for safety purposes; abuse reports and moderation logs are retained to prevent repeat violations; and payment records are retained as required under applicable financial laws.

4. Inactive accounts may be deleted after 2 years of non-use, following notice to the User.

5. Once retention periods expire, we securely erase, anonymise, or aggregate the data so that it can no longer identify you.

7. Cross-Border Data Transfer

We may transfer data outside your country of residence (including to the EU, US, or other jurisdictions) for processing, hosting, or backup purposes.

Such transfers occur only:

 1. To countries or entities offering adequate data protection, or

 2. Under standard contractual clauses, binding corporate rules, or User consent (as per GDPR Article 46).

For Indian Users, cross-border transfer complies with Section 16 of the DPDP Act, 2023.

All entities receiving your data whether affiliates, cloud providers, identity verification partners, analytics vendors, or sub-processors—are contractually obligated to apply the same level of protection to your data as required under this Policy, the DPDP Act, and the GDPR.

We ensure that cross-border transfers include safeguards such as encryption, limited access, audit rights, purpose limitation, and restrictions on onward transfers.

We maintain records of cross-border transfers and ensure that all transfers are logged, monitored, and periodically reviewed for compliance.

8. Data Sharing & Disclosure

We do not sell
or rent
User data. We also do not share personal data with third parties
for their own independent marketing or commercial purposes.
We may share
limited data only:

1. With verified vendors or service providers (hosting, analytics, security).

2. With law enforcement or government authorities where required by law.

3. With third parties during mergers, acquisitions, or restructuring — under confidentiality obligations. These third parties are permitted to process data solely for the services they provide to us and not for their own purposes.

All third parties with whom we share personal data are bound by Data Processing Agreements (DPAs), confidentiality obligations, strict security controls, data minimisation requirements, and contractual restrictions preventing onward transfer or misuse. They must delete or return data upon completion of services.

9. User Rights

We respect your rights over your personal data.

Your rights depend on your jurisdiction and applicable law. All Users, regardless of location, are afforded the highest standard applicable among the DPDP Act, GDPR, CCPA and other data protection laws.

Under the DPDP Act 2023 (India)

You have the right to:

1. Access your personal data.

2. Correct or update inaccurate data.

3. Withdraw consent.

4. Request deletion of data (“Right to Erasure”).

5. Nominate an individual to exercise rights in the event of death or incapacity (Section 14)

6. Lodge grievances with the Data Protection Board of India.

Under the GDPR (EU)

EU Users have additional rights:

1. Data portability (receive a copy in structured format).

2. Object to automated processing or profiling.

3. File a complaint with your local supervisory authority.

Under the CCPA (California, USA)

California residents may:

1. Request disclosure of data collected and shared.

2. Request deletion of personal information.

3. Request correction of inaccurate information.

4. Opt out of “sale” or “sharing” of data.

Overall, all Users have the right to:

1. Be informed of the personal data we process about you and/or ask for a copy of it.

2. Amend or update your personal data where it is inaccurate or incomplete.

3. Delete or erase personal data.

4. Object to us processing personal data or to request that we temporarily or permanently stop processing personal data.

5. Withdraw a consent you have given us to process your personal data for a specific purpose.

6. Raise a grievance and receive a response within 7 days (DPDP-compliant).

7. Appeal our decision if we deny a request, and escalate to regulatory authorities.

10. Cookies & Tracking Technologies

We use cookies, web beacons, and analytics tools to:

1. Improve website performance.

2. Personalise recommendations.

3. Monitor safety and detect suspicious activity.

You can manage cookie preferences through browser settings. Essential cookies cannot be disabled as they are necessary for site functionality.

You may manage or withdraw consent for non-essential cookies through your browser, device settings, or through our in-app cookie controls where available. Consent for cookies is as easy to withdraw as it is to give.

11. Security Practices

We employ industry-standard technical and organisational security measures to protect your data from unauthorised access, alteration, disclosure, or destruction. These include:

1. End-to-end encryption for chats and encryption at rest for stored data where applicable.

2. HTTPS and TLS protection for all data transmission.

3. Access controls, firewalls, and intrusion monitoring.

4. Regular audits and vulnerability assessments.

5. Zero-trust security architecture with strict role-based access controls (RBAC).

6. Multi-factor authentication and credential-security standards for internal systems.

7. Continuous monitoring for bot attacks, suspicious behaviour, deepfake attempts, and fraudulent activity.

8. Vendor and third-party security reviews to ensure equivalent protections apply across processors.

9. Employee confidentiality agreements and mandatory security training.

Despite our efforts, no method of transmission over the Internet is 100% secure. Users are advised to share personal details cautiously. While we take commercially reasonable measures to protect your data, no system is fully immune to security risks. We therefore encourage Users to exercise caution when sharing personal or sensitive information with others on the Platform.

In the event of a data breach, we will notify affected Users and the relevant authorities, including the Data Protection Board of India or other supervisory authorities, as required by applicable law.

12. Children's Data

Our platform is not intended for users under 18 years of age. If we become aware that a minor has registered, we will immediately delete their data and disable the account in compliance with the DPDP Act 2023 and COPPA (US). Where required by law, we report child sexual abuse material (CSAM) or other child-safety concerns to law-enforcement authorities and relevant agencies. Underage accounts detected are permanently blocked to prevent re-registration.

13. Automated Decision-Making & Profiling

We may use algorithms to suggest matches and moderate content. Sensitive personal data (e.g. sexual orientation, gender identity, biometric data) is used in automated systems only with your explicit consent and solely for matchmaking and safety-related purposes. These decisions do not have legal or significant effects and are always subject to User control and reporting mechanisms.

14. Grievance Redressal & Data Protection Officer

In compliance with Rule 3(2) of the IT Rules 2021 and Section 11 of the DPDP Act, 2023, we have appointed both a Grievance Officer and a Data Protection Officer (DPO).

Grievance Officer

  • Name: [To be updated]
  • Email: grievance@withapplication.com
  • Address: Zuntra Digital Private Limited, Developed Plot Estate, Plot No. 61, Perungudi, Chennai – 600096

Complaints will be acknowledged within 24 hours and resolved within 15 days.

Data Protection Officer (DPO)

  • Name: [To be updated]
  • Email: [To be updated]
  • Address: Zuntra Digital Private Limited, Developed Plot Estate, Plot No. 61, Perungudi, Chennai – 600096

The DPO oversees compliance with this Policy, responds to User rights requests, advises on data protection practices, and coordinates with regulators where required. Users may escalate unresolved grievances to the Data Protection Board of India under the DPDP Act, 2023.

15. Updates to This Policy

We may modify this Privacy Policy from time to time to reflect changes in law or practices. We will notify you via email, in-app notice, or website banner before material updates take effect. Your continued use of the App after such changes constitutes acceptance.

Annexure A – Data Retention Schedule

This Data Retention Schedule is prepared in compliance with the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000 and allied Rules, the General Data Protection Regulation (EU), the California Consumer Privacy Act (CCPA/CPRA), and all other applicable sectoral and cybersecurity laws. Retention periods are determined based on statutory mandates, contractual obligations, operational necessity, safety and fraud-prevention requirements, and legitimate business purposes. Where multiple laws apply, the longest legally permissible retention period is followed.

Data Category Retention Period
Profile dataUntil account deletion
Photos/videosDeleted within 30 days of account deletion
Verification selfie30 days
Chat messagesUp to 3 months after deletion
Abuse reports24 months
Device logs90 days (IT Rules)
Payment records7 years (if applicable)
Deleted account metadata12 months (fraud-prevention)

Contact Us

Wiviy
Zuntra Digital Private Limited
Developed Plot Estate, Plot No. 61, Perungudi
Chennai – 600096, Tamil Nadu, India
Email: info@withapplication.com