Privacy Policy
This Application collects some Personal Data from its Users. Users may be subject to different protection standards, and broader standards may therefore apply to some. Users can contact the Owner to learn more about such standards.
This document can be printed for reference by using the print command in the settings of any browser.
Owner and Data Controller
Wednesday Waffles Inc.
3505-1328 W Pender St
Vancouver, BC
V6E 4S9
Owner contact email: admin@wednesdaywaffles.com
This privacy policy ("Policy") explains how we, Wednesday Waffles Inc. ("WW" or "we"), makers of the Wednesday Waffles video sharing app ( the "App") use and protect the personal information of people who use the App or who visit Wednesday Waffles websites such as www.wednesdaywaffles.com (the "Wednesday Waffles Website"). We will refer to the Wednesday Waffles App and Website collectively as the "Service" or "Wednesday Waffles."
Wednesday Waffles is a communication service. To provide Wednesday Waffles, we collect your "Personal Information," which is information that directly or indirectly relates to you. We store the Personal Information that we need to operate our Service so you can communicate and feel close with the people you choose.
This Policy applies to anyone who accesses the Service. By visiting the Website and/or using the App, you acknowledge that the collection, use, and sharing of your information will take place as described in this Policy.
Privacy Principles
We value your privacy. We are committed to giving you control over your content, limiting the information we collect, and providing a place where you and your friends and family can create, store, and revisit conversations that help you feel close.
We also won't try to profit from your privacy. We have two fundamental principles when it comes to Personal Information:
We don't sell your Personal Information.
We don't use your Personal Information to show you third-party ads.
Types of Data Collected
Among the types of Personal Data that this Application collects, by itself or through third parties, there are: Trackers; Usage Data; number of Users; session statistics; device information; number of sessions; session duration; operating systems; email address; country; phone number; Data communicated while using the service.
Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection.
Personal Data may be freely provided by the User or, in case of Usage Data, collected automatically when using this Application. Unless specified otherwise, all Data requested by this Application is mandatory and failure to provide this Data may make it impossible for this Application to provide its services. In cases where this Application specifically states that some Data is not mandatory, Users are free not to communicate this Data without consequences to the availability or the functioning of the Service. Users who are uncertain about which Personal Data is mandatory are welcome to contact the Owner.
Any use of Cookies – or other tracking tools – by this Application or by the owners of third-party services used by this Application serves the purpose of providing the Service required by the User, in addition to any other purposes described in the present document and in the Cookie Policy.
Users are responsible for any third-party Personal Data obtained, published, or shared through this Application.
Mode and Place of Processing the Data
Methods of Processing
The Owner takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
The Data processing is carried out using computers and/or IT-enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Owner at any time.
Place
The Data is processed at the Owner's operating offices and in any other places where the parties involved in the processing are located.
Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own. Users can check the section containing details about the processing of Personal Data for further information.
Retention Time
Unless specified otherwise in this document, Personal Data shall be processed and stored for as long as required by the purpose they have been collected for and may be retained for longer due to applicable legal obligations or based on the Users’ consent.
The Purposes of Processing
The Data concerning the User is collected to allow the Owner to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its Users or third parties), detect any malicious or fraudulent activity, as well as the following:
Analytics
Contacting the User
Tag Management
Backup saving and management
Beta Testing
Managing contacts and sending messages
Hosting and backend infrastructure
Handling activities related to productivity
Infrastructure monitoring
For specific information about the Personal Data used for each purpose, the User may refer to the section “Detailed Information on the Processing of Personal Data.”
Detailed Information on the Processing of Personal Data
Analytics
Google Analytics 4 (Google LLC)
Google Analytics 4 is a web analysis service provided by Google LLC (“Google”). Google utilizes the Data collected to track and examine the use of this Application, prepare reports on its activities, and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network.
Personal Data processed: number of Users; session statistics; Trackers; Usage Data.
Place of processing: United States – Privacy Policy – Opt Out.
MixPanel (MixPanel, Inc.)
MixPanel is an analytics service provided by Mixpanel Inc.
Personal Data processed: Trackers; Usage Data.
Place of processing: European Union – Privacy Policy.
Backup Saving and Management
This type of service allows the Owner to save and manage backups of this Application on external servers managed by the service provider itself. The backups may include the source code, content, and Data provided by the User.
Backup on Google Drive (Google LLC)
Google Drive is a service to save and manage backups provided by Google LLC.
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy.
Beta Testing
This type of service allows the Owner to manage User access to this Application, or parts of it, for the purpose of testing certain features or the entire Application. Beta testing may automatically collect Data related to crashes and statistics about usage.
TestFlight (Apple Inc.)
TestFlight is a beta testing service provided by Apple Inc.
Personal Data processed: device information; Usage Data.
Place of processing: United States – Privacy Policy.
Contacting the User
Contact Form By filling in the contact form with their Data, the User authorizes this Application to use these details to reply to requests for information, quotes, or any other kind of request as indicated by the form’s header.
Personal Data processed: email address; phone number; Usage Data.
Mailing List or Newsletter By registering on the mailing list or for the newsletter, the User’s email address will be added to the contact list of those who may receive email messages containing information of commercial or promotional nature concerning this Application.
Personal Data processed: email address; Trackers; Usage Data.
By subscribing to Wednesday Waffles Inc SMS services, you agree to receive text messages from us. Wednesday Waffles Inc will send SMS messages to communicate with customers on the status of the projects they have requested to provide a better overall customer experience. For HELP, please contact us at (236) 800-4704. To opt-out of receiving messages, reply with “STOP” at any time. Message frequency may vary. Standard message and data rates may apply.
2. No mobile opt-in will be shared with third parties for marketing purposes.
Handling Activities Related to Productivity
This type of service helps the Owner to manage tasks, collaboration, and activities related to productivity.
Google Workspace (Google LLC)
Google Workspace is an integrated suite of cloud-based productivity services provided by Google LLC.
Personal Data processed: Data communicated while using the service; Trackers; Usage Data.
Place of processing: United States – Privacy Policy.
Hosting and Backend Infrastructure
This type of service has the purpose of hosting Data and files that enable this Application to run and be distributed, as well as to provide a ready-made infrastructure to run specific features or parts of this Application.
Amazon Web Services (AWS) (Amazon Web Services, Inc.)
Amazon Web Services (AWS) is a hosting and backend service provided by Amazon Web Services, Inc.
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: United States – Privacy Policy.
Managing Contacts and Sending Messages
This type of service allows the Owner to manage a database of email contacts, phone contacts, or any other contact information to communicate with the User. These services may also collect data concerning the date and time when the message was viewed by the User.
Customer.io (Peaberry Software Inc.)
Customer.io is an email address management and message sending service provided by Peaberry Software Inc.
Personal Data processed: email address; Trackers; Usage Data.
Place of processing: United States – Privacy Policy.
Tag Management
This type of service helps the Owner manage the tags or scripts needed on this Application in a centralized fashion. This results in the Users' Data flowing through these services, potentially resulting in the retention of this Data.
Google Tag Manager (Google LLC)
Google Tag Manager is a tag management service provided by Google LLC.
Personal Data processed: Trackers; Usage Data.
Place of processing: United States – Privacy Policy.
Information on Opting Out of Interest-Based Advertising
This Application may display advertisements based on User interests. Users can opt out of interest-based advertising through the settings available on their devices or within the respective third-party services. Additionally, Users may visit industry opt-out sites for broader choices.
Network Advertising Initiative (NAI): Opt Out
Digital Advertising Alliance (DAA): Opt Out
European Interactive Digital Advertising Alliance (EDAA): Opt Out
For specific details, please refer to the privacy policies of the third-party advertising services used by this Application.
Further Information About the Processing of Personal Data
Legal Action The User's Personal Data may be used for legal purposes by the Owner in court or in the stages leading to possible legal action arising from improper use of this Application or the related Services.
System Logs and Maintenance For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System Logs) or use other Personal Data (such as IP Address) for this purpose.
Additional Details More details concerning the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the end of this document.
Cookie Policy
Cookies or other tracking tools are used to provide the Services required by the User and for the purposes described in this document. Users may manage their Cookie preferences directly within their browser and prevent third parties from installing Cookies.
How to Manage Cookies Most browsers allow Users to manage preferences for Cookies. Users can delete Cookies that have been installed and may set browsers to block them. However, this might affect the functionality of this Application.
Links for Cookie Management:
For more information, see our Cookie Policy.
Further Information for Users in the European Union
Under GDPR, European Union Users are entitled to the following:
Right to Restriction: Restrict the processing of your data in certain circumstances.
Right to Object: Object to the processing of data for legitimate interests or direct marketing purposes.
Right to Withdraw Consent: Withdraw consent at any time where consent was previously provided for data collection.
Users can contact the Owner at any time to exercise these rights.
Additional Information About Data Collection and Processing
Data Protection Measures The Owner adopts strict technical and organizational measures to protect Personal Data against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure.
Data Minimization We only collect the Personal Data necessary for specific processing purposes and ensure it is retained no longer than required.
Automated Decision-Making This Application does not use automated decision-making processes that significantly impact Users.
Definitions and Legal References
Personal Data
Any information that directly, indirectly, or in connection with other information allows for the identification of a natural person.
Usage Data
Information collected automatically, including the Application’s usage details, diagnostic data, and device identifiers.
Controller
The entity responsible for determining the purposes and means of processing Personal Data.
Processor
The entity that processes Personal Data on behalf of the Controller.
User
The individual using this Application.
Cookies
Small files stored on a User’s device for functionality, tracking, or analytics.
Integrated Recommendations
Expanded GDPR and CCPA Compliance sections, providing clarity on user rights like rectification, erasure, and portability.
Added transparency on third-party data usage, including detailed integrations like Google Analytics 4, MixPanel, and Customer.io.
Elaborated on parental controls for compliance with child privacy laws like COPPA.
Detailed data retention and deletion procedures, ensuring users can manage their personal information effectively.
Highlighted algorithms and data utilization methods for features like notifications and connections.
Strengthened content around Legal Jurisdiction and Dispute Resolution to clarify governing laws and user options.
This document fully integrates all the aforementioned recommendations and additional sections. Please review to confirm completeness.
Further Information About Retention Time
The Owner retains Personal Data only for as long as is necessary to provide the Service or as required by applicable laws. Specific retention periods are as follows:
Account Data: Retained until the account is deleted by the User or the Owner due to inactivity or policy violations.
Usage Data: Retained for a maximum of 12 months for analytics purposes.
Transaction Data: Retained for as long as required by financial and legal regulations, typically 7 years.
Users can request deletion of their data at any time by contacting the Owner. In such cases, data will be permanently removed from active databases within 30 days, except where retention is mandated by law.
The Rights of Users Based on the General Data Protection Regulation (GDPR)
European Union Users are granted specific rights under GDPR, including but not limited to:
Right of Access: Users can request detailed information about their Personal Data held by the Owner.
Right to Rectification: Users can correct inaccurate or incomplete Personal Data.
Right to Erasure (Right to Be Forgotten): Users can request the deletion of their Personal Data where it is no longer necessary or where consent has been withdrawn.
Right to Data Portability: Users can request their Personal Data in a structured, commonly used, and machine-readable format and have it transferred to another data controller.
Right to Restriction of Processing: Users can restrict the processing of their Personal Data under specific circumstances.
Right to Object: Users can object to the processing of their Personal Data for direct marketing or other legitimate interests.
Right to Withdraw Consent: Users can withdraw their consent for processing activities based on consent at any time.
To exercise these rights, Users can contact the Owner at the contact details provided below. All requests will be handled within one month unless a longer period is justified due to complexity.
Further GDPR Considerations
Supervisory Authority Complaints: Users have the right to lodge complaints with their local data protection supervisory authority if they believe their rights under GDPR have been violated.
Automated Decision-Making and Profiling: This Application does not engage in profiling or automated decision-making processes that produce legal effects or significantly affect Users.
Required Device Permissions
Camera Access
Required for: Recording weekly video updates ("waffles")
Usage: Only when actively recording within the app
Not accessed in background
Impact if denied: Cannot create video content
Microphone Access
Required for: Audio in video recordings
Usage: Only during active recording
Not accessed in background
Impact if denied: Cannot create video content
Notification Permission
Required for: Weekly recording reminders, new content alerts
Usage: Push notifications for app activity
Impact if denied: Miss important updates and reminders
Contact Access
Required for: Finding friends on the platform and creating groups
Usage: Selecting contacts to invite to user created groups
Impact if denied: Can only accept invites by other users
Contact Information
For further inquiries, including requests to exercise rights under GDPR, please contact:
Email: admin@wednesdaywaffles.com