Privacy Policy
Last updated: 31 October 2025
This Privacy Policy describes how WESY S.A.S. ("WESY", "we", "us", or "our") collects, uses, and shares personal data when you use our websites, applications, products, and services, including the Vippie app and related offerings (collectively, the "Services").
Who we are (Controller)
WESY S.A.S.
88 BIS Boulevard Ney, 75018 Paris, France
Email: privacy@ivippie.com
WESY S.A.S. is the controller of your personal data for the purposes described in this Policy.
Websites and Apps covered
This Policy also applies to any other sites or apps that link to it.
Personal data we collect
Data you provide directly:
- Account details (name, username, password, profile photo, language, country).
- Contact details (email, phone number, billing address).
- Payment and billing information (transaction identifiers, payment method metadata). We do not store full card numbers; payments are processed by PCI‑compliant providers.
- Support communications and content you send to us.
Data we collect automatically:
- Usage and diagnostic data (app events, logs, crash data, performance, device type, OS, app version).
- Network identifiers (IP address, approximate location derived from IP, device identifiers as permitted).
- Cookies and similar technologies (see Cookies).
Data from your device/address book (only with your permission in the app):
With your explicit consent, the Vippie app may access your phone’s contacts to help you find and connect with people you already know, display caller names, and indicate which contacts also use Vippie. A privacy‑protected, hashed or otherwise minimized copy of relevant identifiers may be processed on our servers for matching. You can revoke this permission at any time in your device settings.
Call and messaging metadata:
- To provide telecom features, we process metadata such as caller/callee identifiers, timestamps, duration, and routing information. Where required by law and for troubleshooting, limited call recordings may be enabled only with notice and, where applicable, consent.
Why we process your data (Legal bases)
- To perform a contract: create and manage your account, deliver calling/messaging features, provide support, and bill for paid services.
- Legitimate interests: keep Services secure, prevent fraud/abuse, improve performance, and understand product usage. We balance these interests against your rights.
- Consent: optional features such as address‑book matching, certain analytics/marketing cookies, and call recording where required. You may withdraw consent at any time.
- Legal obligations: comply with telecom, tax, anti‑fraud, and data‑protection laws.
How we use your data
- Provisioning and improving the Services and features.
- Authentication, security, fraud detection, and preventing misuse (e.g., spam calling).
- Customer support and troubleshooting.
- Billing, payments, and account administration.
- Communicating service updates and (if you opt in) marketing about WESY products. You can opt out at any time.
- Compliance with applicable law and enforcing our terms.
Sharing your data
We do not sell your personal data. We may share it with:
- Processors that help us run the Services (cloud hosting, analytics, payment providers, SMS/voice carriers, customer support tools). They act on our instructions under data‑processing agreements.
- Telecom partners and number providers to enable calls, SMS, and number provisioning/porting.
- Corporate transactions (merger, acquisition, reorganization) subject to safeguards and this Policy.
- Legal where required by law or to protect rights, safety, and security.
- With your consent for other purposes that we explain at the time.
International transfers
We operate globally and may transfer personal data outside the EEA/UK/Switzerland. Where we do, we use appropriate safeguards such as the EU Standard Contractual Clauses (SCCs) and additional measures as needed.
Data retention
We keep personal data only as long as necessary for the purposes described above, including to comply with legal/telecom retention obligations, resolve disputes, and enforce agreements. Retention periods vary by data type and legal requirements.
Your rights
Depending on your location (e.g., EEA/UK), you have rights to:
- Access, correct, or delete your personal data
- Object to or restrict certain processing
- Data portability
- Withdraw consent where processing is based on consent
- Lodge a complaint with your data‑protection authority (in France: CNIL)
To exercise rights, contact us at privacy@ivippie.com. We may need to verify your identity.
Children’s privacy
Our Services are not directed to children. Where parental consent is required by local law (e.g., under age thresholds such as 15 in France), we process children’s data only with verifiable consent of a parent/guardian.
Security
We implement technical and organizational measures appropriate to the risk, including encryption in transit, access controls, monitoring, and regular reviews. However, no Internet transmission or storage system is fully secure.
How to contact us
Data Protection contact: privacy@ivippie.com
Postal: WESY S.A.S., 88 BIS Boulevard Ney, 75018 Paris, France
Changes to this Policy
We may update this Policy from time to time. We will post the updated version here and adjust the “Last updated” date. Material changes may be notified in‑app or by email.
If you need this Policy in Arabic or French, please contact us.