Privacy Policy

1.1 Information You Provide

We collect information you provide directly, including but not limited to:

• contact information (email address, mobile number)
• profile details (skills, work experience, education, salary preferences, location preferences)
• content you upload, including documents, certificates, achievements, portfolios, work samples, or other materials
• files, images, and documents (protected with Wigi-DNA™)
• messages exchanged within Wigiwork
• employer or company details, recruiter authorization, and verification documents
• identity or authorization documents when required for compliance, verification, or safety

You choose what optional content to provide.
Verification data is used strictly for safety, fraud-prevention, and compliance purposes.

Wigiwork minimizes collection of personal data and prioritizes non-identifiable and structured professional information wherever possible.

1.1.1 WigiPic™ Photo-to-Avatar Generation

Wigiwork may allow you to upload a photo solely to generate a WigiPic™ avatar.

Any uploaded photo is processed once for avatar creation and is permanently deleted immediately after generation.

Wigiwork does not store, retain, analyze, or reuse uploaded photos for any other purpose.

WigiPics are stylized, symbolic illustrations designed to preserve anonymity. They are not intended to resemble your real appearance and do not infer or represent:

• gender
• ethnicity or race
• age
• attractiveness
• disability status
• identity
• or any other personal or protected characteristic

Wigiwork does not create biometric identifiers and does not use avatar imagery to infer personal traits or demographic categories.

1.2 Information Collected Automatically

We automatically collect limited technical information, including:

• IP address
• device and browser information
• login timestamps
• approximate location (city/country)
• cookies and similar technologies
• platform activity signals (for safety and performance)

This information supports platform functionality, security, and fraud prevention.

1.3 Information from Third Parties

We may receive information from trusted and regulated third-party partners, including:

• identity verification services
• company verification and authorization partners
• payment processors
• security and fraud-prevention providers
• communication infrastructure services
• regulatory and compliance screening tools

Trusted Third-Party Verification Providers
Only the minimum information required is shared for verification.
All verification providers operate under strict contractual confidentiality obligations.

To protect system integrity, Wigiwork does not disclose verification methods, criteria, or provider identities.

2.1 Platform Operation

We use information to:

• create and manage accounts
• support anonymous profiles
• facilitate communication
• enable discovery and shortlisting
• verify identity and hiring authority
• maintain platform safety and reliability

2.2 Safety, Security & Fraud Prevention

Information is used to:

• detect suspicious or abusive behavior
• prevent identity misuse
• enforce geographic and access restrictions
• protect candidate anonymity
• maintain NDA-Safe™ confidentiality

Wigiwork does not disclose internal detection methods or safety logic.

2.3 Communications

We may send communications related to your use of the platform, including:

• verification codes
• account and access alerts
• critical security notices
• system and service updates
• optional job alerts and notifications
• private, platform-mediated messages sent through Wigiwork's messaging system

Messages between users are delivered only within the Wigiwork platform.
When a user initiates contact, messages are sent via Wigiwork's systems and do not disclose personal contact details unless explicitly approved by the recipient.

Certain communications are essential for platform operation, security, and compliance and cannot be disabled.

2.4 Legal Compliance

We process information to comply with applicable data protection and privacy laws, including:

• GDPR and UK GDPR
• CCPA / CPRA
• PIPEDA (Canada)
• Singapore Personal Data Protection Act (PDPA)
• Australian Privacy Act 1988 and Australian Privacy Principles (APPs)
• India Digital Personal Data Protection Act (DPDPA) 2023
• UAE Federal Personal Data Protection Law (PDPL)
• DIFC and ADGM Data Protection Laws, where applicable

We also process data to meet regulatory obligations, respond to lawful requests, and prevent fraud or unauthorized activity.

Wigiwork operates an anonymous-by-default profile model:

• identity is hidden unless a candidate explicitly approves access
• employers view anonymous profiles during discovery
• identity is never used for ranking, matching, or recommendations
• Wigi IQ Labs™ processes professional information only
• identity data is strictly separated from professional signals

This design protects confidentiality and reduces bias.

Wigiwork is designed to separate identity data from professional data wherever possible.

Data processing is structured to reduce exposure and limit the use of identifiable information.

Where applicable, personal data is processed under:

• Contract – to provide Wigiwork services
• Legitimate Interest – platform operation, safety, and fraud prevention
• Consent – cookies, optional features, and public discoverability
• Legal Obligation – compliance and audit requirements

Consent may be withdrawn at any time where applicable.

5.1 Service Providers (Categories Only)

We use service providers for:

• hosting and infrastructure
• data storage and backups
• identity and company verification
• communication services (email, SMS, OTP)
• security and compliance screening
• analytics and performance
• payment processing (Stripe)
• customer support and contract services

Vendor names are not publicly listed to protect platform security.

Service providers are contractually restricted from using data for their own purposes and may only process data on behalf of Wigiwork in accordance with strict confidentiality, security, and data protection obligations.

5.2 Verification Providers

Limited data is shared solely to confirm identity or company legitimacy.

5.3 Employers (Only With Candidate Approval)

Employers receive identity information only after a candidate explicitly approves an Access Request.

Before approval, employers see anonymous profiles only.

5.4 Legal & Regulatory Obligations

Information may be disclosed when required by law, regulation, legal process, or governmental request, including for fraud prevention, compliance, enforcement, or protection of rights.

5.5 Internal Use of Data

Wigiwork may use data internally to:

• improve platform functionality and user experience;
• develop and refine AI systems and matching technology;
• analyze trends, performance, and usage patterns;
• detect fraud, abuse, or system manipulation;
• maintain platform integrity and security.

All such use is conducted on a limited, controlled, and non-identifiable basis where possible.

Wigiwork operates globally. Data may be processed or stored in:

• United States
• European Union
• United Kingdom
• United Arab Emirates (Dubai)
• Singapore
• Canada
• Australia
• Ukraine
• India

We use Standard Contractual Clauses (SCCs) and equivalent safeguards where required. EU user data remains in the EU and U.S. user data remains in the U.S., where applicable.

7.1 Account Deletion (Right to Erasure)

Users may request account deletion at any time.

When deletion is requested:

• the account enters a 30-day deletion period;
• employer access ends immediately;
• identity access and associated permissions are removed;
• logging back in during the 30-day period may reactivate the account.

After 30 days, the account is permanently deleted or irreversibly anonymized and cannot be restored, subject to legal, regulatory, fraud-prevention, tax, payment, audit, and compliance obligations.

7.2 Limited Retention

Minimal information may be retained only where required for fraud prevention, legal compliance, tax or payment records, and audit obligations.

7.3 Backup & Log Data

Encrypted backups and logs follow lawful retention schedules and are not used for active processing.

Cookies are used for security, authentication, performance, analytics, and user preferences.
See the Cookie Policy for details.

Depending on jurisdiction, you may request:

• access
• correction
• deletion
• restriction or objection
• data portability
• opt-out of sale or sharing (CCPA/CPRA)
• withdrawal of consent

Requests may be submitted to [email protected].

Wigiwork does not sell personal data to third parties for advertising, marketing, or unrelated commercial purposes.

Wigiwork may use aggregated, anonymized, or non-identifiable data to operate, improve, analyze, and develop the platform, provided such data cannot be used to identify any individual.

Eligible users may opt out via privacy controls, cookie settings, or [email protected].

Wigiwork may process data for internal business purposes, including product development, analytics, system optimization, fraud prevention, and platform performance.

Such use does not involve the disclosure of identifiable personal data to external parties for independent commercial use.

11.1 Company Data We Process

We process employer-provided data ("Company Data"), including:

• job postings and hiring requirements
• company profiles and recruiter contact details
• internal notes and workflow metadata
• business verification documents
• hiring activity logs
• subscription and billing information (via Stripe)

Recruiters and agencies must disclose the employer client they represent for each posting or search.

11.2 Ownership of Company Data

Employers retain ownership of Company Data.
Wigiwork retains ownership of all platform technology, anonymization systems, Wigi IQ Labs™, Wigi-DNA™, WigiPic™, aggregated non-identifiable data, and all Wigiwork intellectual property.

11.3 Confidentiality & Access Controls

Company Data is accessed only for verification, compliance, fraud prevention, and operational support. Internal access is logged and restricted.

11.4 Business Transactions

In the event of a merger, acquisition, restructuring, or asset transfer, Company Data may be transferred. Any successor must uphold equal or stronger privacy protections.

11.5 Retention of Company Data

Company Data is retained only as necessary for active accounts, legal obligations, fraud prevention, and audit requirements.

11.6 Prohibited Use

Wigiwork does not use Company Data for advertising, resale, dataset mixing, employer exposure, or external commercial exploitation.
Employers may not redistribute, reuse, or externally store candidate data beyond approved access.

Wigiwork applies appropriate technical and organizational security measures to protect personal and company data.
Specific security mechanisms are not disclosed to protect system integrity.

Wigiwork applies strict internal access controls, monitoring, and audit processes to ensure that data is accessed only where necessary for legitimate operational, security, and compliance purposes.

12.1 Anonymity & Platform Limitations

Wigiwork is designed as an anonymity-first platform and implements safeguards to protect user identity.

However, no digital system can guarantee absolute anonymity or security. Residual risks may arise from factors beyond our reasonable control, including user behavior, third-party services, network conditions, regulatory requirements, or evolving technical threats.

Wigiwork does not intentionally identify, reveal, or deanonymize users outside of explicit user-approved access or lawful obligations.
Users remain responsible for the information they choose to share and the actions they take while using the platform.

Wigiwork is not intended for individuals under 18.
We do not knowingly collect data from minors.

This Policy may be updated to reflect legal, security, operational, or feature changes.
Updates will include a revised Effective Date.

For privacy questions or rights requests:

Wigiwork Inc.
[email protected]

Wigiwork's use of data is designed to support platform functionality, security, fraud prevention, and continuous improvement, while maintaining user privacy, anonymity, and compliance with applicable laws.

Wigiwork does not permit the use of personal data in a manner that would expose identity or compromise the anonymity-first design of the platform.