GDPR and Data Rights

Bidwise is designed to support GDPR-aligned handling of personal data by minimizing stored information, protecting access, and giving users a clear path to exercise privacy rights.

Legal Basis

Bidwise processes personal data where necessary to provide the service, secure accounts, enforce plan access, comply with legal obligations, and pursue legitimate interests in service reliability and fraud prevention.

Data Subject Rights

Users may request access, correction, deletion, restriction, objection, or portability of personal data, subject to applicable law and reasonable verification of identity.

International Transfers

Depending on infrastructure choices, data may be processed outside the European Economic Area. Deployment operators should ensure appropriate contractual and technical safeguards are in place with their vendors.

Data Minimization

Bidwise should be configured to retain only the data necessary for account access, feature enforcement, fraud prevention, and limited operational troubleshooting.

Breach Response

Deployment operators should maintain an incident response plan so unauthorized access, service compromise, or material data exposure can be investigated, contained, and disclosed where legally required.