Privacy Policy

Philip Ullmann
Bürgerstrasse 22
4300 St. Valentin
Austria
Email: contact@wantivo.com
Web: https://www.wantivo.com

Wantivo is a wishlist app for creating, sharing and managing wishlists. Depending on how you use it, we process in particular:

• Account data: name, email address, login provider, provider ID, password hash for email login, verification, password-reset and deletion codes.
• Profile and content data: profile picture, wishlist name, purpose, description, date, currency, visibility, images, wishes, links, descriptions, prices, priority and reservations.
• Participation and sharing data: memberships, roles, invite links or QR codes, invite tokens, usage counters and expiry dates.
• Communication data: transactional emails, notifications, support requests and mail logs.
• Technical data: IP address, user agent, session and CSRF data, device/push tokens, error and security logs, rate limits, internal product and administration events.
• Premium data: product, plan, platform, transaction or purchase token, subscription status and periods.

Please do not store special categories of personal data under Art. 9 GDPR unless this is necessary for a wishlist.

• Performance of a contract, Art. 6(1)(b) GDPR: providing account, login, wishlists, sharing, reservations, groups, notifications and Premium status.
• Consent, Art. 6(1)(a) GDPR: push notifications, analytics/marketing cookies and similar technologies, and optional device permissions when you enable them.
• Legitimate interests, Art. 6(1)(f) GDPR: IT security, abuse prevention, rate limiting, error analysis, product stability and traceability of important system events.
• Legal obligations, Art. 6(1)(c) GDPR: statutory retention, evidence and response obligations.

Where we rely on legitimate interests, you may object on grounds relating to your particular situation.

You can sign in with email and password, Sign in with Apple or Google/Firebase. For email login, we do not store your password in plain text but as a hash. For email verification, password reset and account deletion we use time-limited codes and logs so we can deliver the messages and protect the process.

For Sign in with Apple and Google/Firebase we verify identity tokens and receive, depending on the provider, provider ID, email address and name. According to Google, Firebase Authentication may process email address, IP address and user agent for authentication and abuse prevention. More information: Firebase Privacy and Security, Google Privacy Policy and Apple Privacy Policy.

Wishlists can be private, shared or public. Invite links and QR codes contain tokens; anyone who receives the link may gain access depending on the settings. Share these links only with people you trust.

People with access may, depending on their role and feature, see list data, wishes, images, links, descriptions, prices, reservation status and the names and profile pictures of other participants. Public lists can be reachable without login via their URL. Do not use public lists for confidential content.

If you upload profile, list or wish images, we technically check and process the file, convert it into a supported format and store it for display in Wantivo. For link previews, our server fetches the product page you provide. The target website usually sees a request from the Wantivo server, not your app IP address.

Title, description, image, price, currency and merchant can be extracted from the page. The raw page is not stored permanently; in the wishlist we store only data you accept or enter yourself. Share extensions on iOS and Android may temporarily store shared links or text locally until they are imported into Wantivo or discarded.

If you enable push notifications, we store the device or push token, platform, timestamps and assignment to your account. Push messages are delivered via Firebase Cloud Messaging and, on Apple devices, also via Apple Push Notification service. Depending on the event, notifications may contain list names, wish titles or technical IDs. You can disable push notifications at any time in your device settings.

The apps locally store, among other things, login tokens, pending invites, shared content, push-token status and UI states. iOS uses Keychain and UserDefaults, among others; Android uses EncryptedSharedPreferences and SharedPreferences, among others. Operating-system backups may include local app data depending on your device settings.

Premium purchases and subscriptions are processed via Apple App Store or Google Play. We do not receive payment data such as credit card or bank details. To unlock and verify Premium status, we process technical purchase data such as platform, product ID, plan/base plan, transaction ID or purchase token, subscription status, periods and the latest signed or API-based response.

Apple and Google process App Store, Play Store, payment and account data as separate controllers. Cancellation, renewal and payment management take place in your Apple or Google account. More information is available in the Apple Privacy Policy and the Google Privacy Policy.

On the web we use technically necessary cookies and similar storage for login sessions, security, CSRF protection, language settings and consent management. The consent cookie wl_consent_v1 stores your choice for up to 180 days.

Google Analytics 4 is loaded only if a GA4 ID is configured, and analytics and marketing storage are denied by default. After your consent, GA4 may process page views, clicks, device/browser data, approximate region and cookies or similar identifiers. According to Google Analytics, IP addresses are not logged or stored in GA4. You can withdraw your consent at any time via Cookie settings. More information: Google Analytics privacy information.

Analytics and marketing storage are activated only after your consent.

Wantivo logs selected technical and product-related events, for example registration, login, invites, wishes, reservations, Premium checks, push registration, errors and security events. These logs help us operate the service, find bugs, prevent abuse and keep important operations traceable.

We limit free-text content in such events and use technical identifiers instead of plain text where possible. Security measures include TLS encryption, access restrictions, rate limits, upload checks, size and format limits and protections in link previews against private or unsafe destinations.

Recipients of personal data may include hosting and server providers, email delivery providers, Google/Firebase for authentication, messaging, Google Play and Analytics, Apple for Sign in with Apple, APNs, App Store and StoreKit, app-store/payment providers, external product websites you request through the preview feature, and authorities, courts or advisers.

Service providers that process personal data on our behalf are contractually bound. Google and Apple may process data outside the EU/EEA, especially in the USA. For such transfers we use appropriate safeguards, for example adequacy decisions such as the EU-U.S. Data Privacy Framework, EU Standard Contractual Clauses and additional safeguards provided by the vendors.

We store data only for as long as necessary for the stated purposes or as required by law. Account and wishlist data generally remain stored until you delete them or delete your account. Invites remain until expiry, revocation, use or cleanup; individual invites may be technically long-lived. Verification, reset and deletion codes are time-limited. Session, consent, security, mail, error and event logs are retained only as long as needed for security, evidence, error analysis or legal obligations.

When you delete your account, we remove your account, owned lists and wishes, memberships, invites, notifications, push devices, local subscription assignments, action codes and related uploaded public images. Some technical logs may remain with internal IDs for security, evidence or abuse-prevention purposes.

Under the GDPR you have, in particular, rights of access, rectification, erasure, restriction of processing, data portability and objection. You can withdraw consent at any time with effect for the future. To exercise your rights, contact us at contact@wantivo.com.

You also have the right to lodge a complaint with a data protection supervisory authority. In Austria this is the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, email dsb@dsb.gv.at. We update this Privacy Policy when features, providers or legal requirements change.