Wyder Privacy Policy

ARTICLE 1 IDENTITY CONTROLLER - APPLICABILITY

This privacy policy contains information on the processing of personal data by the undertaking with the tradename Wyder (hereinafter “Wyder” or “we”).

Wyder processes personal data in accordance with the European Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data ("General Data Protection Regulation" / "GDPR") and the Belgian Act of 30 July 2018 on the protection of natural persons regarding the processing of personal data.

Children under the age of 13 are not allowed to use Wyder’s application. Wyder has implemented technical measures to prevent users under this age from knowingly accessing and using the application.

By accessing, downloading and using Wyder’s application, you acknowledge you have been informed on the processing of your personal data.

ARTICLE 2 THE PERSONAL DATA WE COLLECT, THE PURPOSES AND THE LEGAL GROUNDS

Wyder gathers information about you, which may include details that directly or indirectly identify you, if you or other Wyder users choose to share it with Wyder. The types of information we collect, along with their respective sources, fall into three categories:

Information you provide to us
Information collected automatically when you use our Services
Information we receive from other sources, such as connected apps or other users

Below we describe the specific types of personal data Wyder processes in the course of providing its services for the application, their uses, legal bases for processing, and the types of service providers who may assist us.

Identifiers, such as your name, avatar, account ID, email address, or other similar details, are collected and used to create and maintain your account, verify your identity, provide customer support, and deliver the Services you request. Identifiers also enable us to secure and protect the platform, debug technical issues, perform analytics, improve quality, and conduct audits and research and development. Our legal bases for processing identifiers include performance of a contract (to provide the Services), our legitimate interests, and your consent where required. To carry out our activities, identifiers may be shared with trusted service providers including data hosting and analytics providers, operational logistics providers, social networks (when you choose to share), as well as Wyder’s partners.

Age, as identified by you, helps us provide the Services appropriately (for example, by ensuring age-appropriate access), maintain the security and integrity of the platform, and support internal research, analytics, and service improvements. Age data is necessary for the performance of our contract with you, which is the legal basis of our processing. Age information may be shared with trusted service providers, including data hosting and analytics providers.

Internet and electronic network activity information, such as device information (ID, platform), session logs, app analytics, and other usage data generated when you interact with our Services. This information is used to help ensure the security and integrity of the platform, support debugging and troubleshooting, and enable the proper functioning of our features. We also process this data to conduct internal research, improve and upgrade the Services, and verify quality and reliability. The legal bases for processing this information include the performance of a contract and our legitimate interests in maintaining and improving Wyder. To support these purposes, internet and network activity information may be shared with trusted providers such as data hosting and analytics providers.

Geolocation data, including details about the sports type, pace, distance, meeting location and route of your workouts, is collected to perform services for the business, ensure the safety and quality of the platform, enhance features, and conduct internal research and development. We do not track your device location when the Services are not in use. To enable most core features, such as workout creation, workout searching, and workout matching, you must grant the necessary permissions in your device’s privacy settings to allow location tracking during use. Processing of this data relies on your consent, which you may withdraw at any time by adjusting your device settings. To carry out these purposes, geolocation data may be shared with authorized service providers such as data hosting and analytics providers, operational logistics providers, social networks (when you choose to share), and Wyder’s partners.

Electronic, visual, or similar information, including photos uploaded by you, is collected and used to provide and maintain the Services, support business operations, verify and maintain quality and safety, and enhance or upgrade the platform. This information may also be used to support internal research and technological development or demonstration. The processing of such information is based on your consent, which you may withdraw at any time. To carry out these purposes, electronic and visual information may be shared with authorized service providers, including data hosting providers, social networks (when you choose to share), and Wyder’s partners.

Inferences derived from any of the above information we collect, including insights used to generate profiles reflecting your preferences, characteristics, behavior, abilities, or aptitudes, are used to provide and maintain the Services, support business operations, verify and maintain quality and safety, and improve or upgrade the platform. These inferences may also be used to conduct internal research and technological development and to comply with applicable legal obligations, such as auditing and data protection requirements. The processing of this information is based on your consent and our legitimate interests, which include platform security, service improvement, and research. To carry out these purposes, inferred information may be shared with trusted service providers, including data hosting and analytics providers and Wyder’s partners.

Information from third-party accounts, such as accounts from Google (collectively, “Third-Party Accounts”), may be shared by you when you use these accounts to sign up or log in to the Services. This may include your name, email address, profile details, and preferences, as authorized by you. The third-party providers control and share this information with Wyder according to their privacy policies. You may manage or restrict the information that Wyder receives through the privacy settings of your third-party account.

Lastly, we may collect your information through our surveys, or from interactions with other users.

ARTICLE 3 HOW WYDER USES PERSONAL DATA

Wyder uses the personal data we collect or receive to provide, maintain, and improve our Services, as well as to protect our users and the platform. The purposes for processing your personal data are described below.

To provide and personalize the Services

We use your information to enable core features of Wyder, including:

Generating and publishing planned workouts. For example, we use personal information, including your name, avatar, preferred sports type, pace, distance, and more to generate and publish your planned workout for matching with other athletes.
Suggesting new routes. For example, historical workout routing data may be used to suggest future routes.
Workout matching. For example, we use all personal search parameters for our matching algorithm as entered by you.
User interaction. For example, facilitating social features such as connecting with other users, joining clubs, and sharing workouts.
Service communications. For example, we use your contact information, such as name and email address, to reach you about the Services. This includes notifications about updates, changes to terms, or important information related to your account and the Services.

Certain information from your account, such as your profile details, name, uploaded photos, the users you follow and who follow you, clubs you join, and your workouts may be shared within Wyder to enable full participation in the Services. Some information, including your name and select profile details, may also be visible to people who do not have a Wyder account.

To make suggestions

Your data may be used to provide personalized recommendations, such as suggesting new workouts to join, suggesting routes, suggesting clubs, or suggesting users to follow, as well as to highlight new features that match your interests.

To protect users and Wyder’s platform

Personal data are used to maintain security, prevent abuse, and promote user safety.

For example, we may:

Detect and remove harmful or dangerous content, such as hate speech or spam.
Investigate and suspend accounts engaged in misuse or unsafe activity.
Use automated tools to detect unusual activity or potential threats.
Maintain platform integrity using device information and logs.

To provide customer support

We use your data to respond to support requests, troubleshoot issues, and replicate reported problems. The latter may involve accessing related account or activity information to assist you effectively.

To improve and develop Wyder’s Services

Feedback, usage patterns, and other collected data are analyzed to enhance functionality, design, and overall user experience.

To communicate with you

Your contact information may be used to provide updates, market and promote the Services, respond to inquiries, notify you about changes, or inform you of events, partnerships, or initiatives relevant to your use of Wyder.

ARTICLE 4 RECIPIENTS OF PERSONAL DATA

Wyder may deidentify and aggregate the personal data you make available in connection with the services (“Aggregated data”), such as information about routes, and share it with third parties, without revealing your personal data. Wyder may use or share this Aggregated data with third parties for research, business or other purposes such as to improve performing sports or organizing activities in cities.

In accordance with mandatory laws or regulations or based on a court order Wyder may share your personal data with public authorities, tax and customs authorities, financial investigation services and judicial and police services.

In addition, Wyder may share your personal data with third parties, such as external service providers (software suppliers) or local government. We may also work with trusted service providers who collect information on our behalf about how you use the Services over time. This helps us improve your experience and provide relevant content. All these actors only have access to the information necessary to perform their limited functions and are required to protect and secure your information accordingly.

In the event these third parties are located outside the European Economic Area (“EEA”), Wyder will ensure that your personal data is processed with the same level of security and protection as Wyder applies within the EEA and will take appropriate measures to protect your data during such transfers.

By default, certain personal data you provide in connection with the Services, such as your workout history and profile statistics, will be assigned a “Private” visibility status. You have control over the visibility of your information through Wyder’s workout privacy settings, which allow you to manage who can see your profile details, workouts, and other content. If you set any visibility setting to “Public” in your privacy controls, this also entails that certain parts of your information might be included in search engine results.

If you use a third-party account to access Wyder, we share only the minimum information necessary to facilitate login and maintain account security. You may also choose to share your workouts through email, messaging apps, or social media. When doing so, certain details, such as your location or workout information, may be visible on these external platforms. We encourage you to carefully consider the privacy settings and practices of any third-party service before sharing your information.

In the event of a merger, acquisition, sale of assets, corporate restructuring, bankruptcy, or any similar transaction or preparation thereof affecting Wyder, your personal data may be shared with or transferred to the relevant third party.

ARTICLE 5 YOUR PRIVACY CONTROLS

Wyder’s workout privacy controls help you manage how the personal data related to your workouts are shared. For example, you can make your workouts visible to everyone or restrict it to users who follow you or are co-member of one of your joined or owned Wyder clubs. You are encouraged to review and adjust these settings to ensure they reflect your desired level of privacy.

Notifications and Email Preferences

Administrative or service-related emails, such as confirmations, policy updates, or important notices, are necessary to provide the Services and cannot be unsubscribed from. It is your responsibility to provide a valid email address and keep it up to date to ensure you receive these communications.

Updating and Correcting Account Information

You may update, correct, or amend your profile and account information at any time through your account settings.

Downloading and Deleting Your Data

You may request a copy or the deletion of your account and personal data. Once deletion is requested, your data will be permanently and irreversibly removed from Wyder’s systems (including backups), which may take up to 45 days to be complete. Some information may be retained to comply with legal obligations. Content that has been shared publicly or with other users may remain accessible outside of Wyder’s control, including on search engines or third-party platforms.

ARTICLE 6 THE SECURITY OF PERSONAL DATA

We have taken appropriate technical and organizational measures to protect your personal data against unauthorized destruction, accidental loss and other unauthorized processing of personal data. Wyder’s security measures include encryption and transmission to Wyder’s cloud infrastructure, protection of database by access control systems, including user roles and access scopes, two-factor authentication and industry standard security measures provided by our partner hosting.

In addition, you should take measures to safeguard your account and personal information yourself. This includes choosing a strong, unique password for your Wyder account that you do not use for any other service, keeping your password confidential, and promptly notifying us if you notice any suspicious activity or believe your account has been accessed without authorization.

You acknowledge and agree that your personal data may be transferred to, processed, and stored in countries within the EEA or other regions where Wyder or its service providers operate. These transfers are conducted in accordance with applicable law, and we implement appropriate safeguards to ensure that your personal information receives a level of protection consistent with the requirements of your jurisdiction.

ARTICLE 7 DATA SUBJECT’S RIGHTS

In exercise of your rights under the GDPR, you have the right to request us the following:

Right to information and access to personal data, including a copy of the personal data undergoing processing;
Right to restrict, rectify and erase (‘right to be forgotten’) personal data under specific circumstances;
Right to object to the processing of your personal data, in the event this is based on a legitimate reason. In any event you will have the right to object to the use of personal data for direct marketing purposes;
Right to data portability: you have the right to receive your personal data in a structured, digital and readable format or to request the transfer of your personal data to another controller, insofar as this is technical feasible;
Right to withdraw your consent at any time: to the extent that the processing is based on your explicit consent;
Right to lodge a complaint with your local data protection authority under applicable laws, if you consider that your rights regarding the processing of your personal data are not respected. For Belgium, that would be the “Gegevensbeschermingsautoriteit” (GBA), Drukpersstraat 35, 1000 Brussels, contact@apd-gba.be.

You can exercise your rights by sending an email to legal@wyder.io.

ARTICLE 8 RETENTION PERIOD

We store personal data as long as it is necessary for the purposes of the processing and in accordance with legal requirements. In determining how long to retain information, we take into account the nature and sensitivity of the data, the purposes of processing, whether those purposes can be achieved by other means, and applicable legal requirements.

ARTICLE 9 POLICY UPDATES

Wyder reserves the right to update or modify this Privacy Policy at any time. When changes are made, we will post the revised Privacy Policy along with its effective date on our website. For updates we consider significant or material, we will provide prominent notice in advance to help you stay informed. If you do not agree with any changes to this Privacy Policy, you should discontinue your use of the Services and delete your account. Your continued use of the Services after the updated Privacy Policy becomes effective constitutes your acceptance of the revised terms.