GDPR Statement
How Wuomy supports European data subjects, controllers, and processors under the General Data Protection Regulation.
Last updated March 2, 2026
Legal summary
Clear language, operational detail.
These pages are structured for quick reading on mobile and full reference on desktop.
Our role
Wuomy typically acts as a processor for customer account data handled through the platform, while customers remain the controller for their own portfolio, lead, and tenant records.
For limited operational information such as billing, support, or direct demo requests, Wuomy may act as a controller.
Data subject rights
We support requests for access, rectification, erasure, portability, restriction, and objection in line with GDPR requirements.
Customers can manage, export, or delete much of their operational data directly in the product, and our support team handles processor-assisted requests when necessary.
Subprocessors and transfers
Where data is transferred outside the EEA or UK, Wuomy relies on appropriate transfer mechanisms such as Standard Contractual Clauses and equivalent safeguards.
- Infrastructure providers are reviewed for security and contractual posture.
- Access is restricted to personnel with a legitimate business need.
- Transfers are limited to the minimum necessary for service delivery.
Retention and deletion
Operational customer data is retained for the contract term and deleted or returned after termination according to customer instructions and applicable law.
Backups are retained for a limited period consistent with disaster-recovery requirements before secure deletion.
Questions
Need clarification?
Reach our team for privacy, compliance, or commercial questions and we will route you to the right person.