WIX PRIVACY
Some things shouldn’t be shared
Only the highest standards will do
Through our non-negotiable approach to data and security regulations, you can have peace of mind knowing that our teams are working tirelessly to keep your data safe. Our platform complies with regulations for GDPR, CCPA, LGPD, PIPEDA, and the Protection of Privacy Law.
Your data is locked down. Everywhere.
Wix stores and processes personal information in multiple locations worldwide, whether by ourselves or with the help of our affiliates and service providers.
Enterprise customers may opt to store and process data covered under select services within a defined geographic boundary in their own private clouds. By using Velo code, customers can connect an external database to their Wix site to make sure that such data is stored in the customer's local servers.
In other cases, within Wix’s services, Wix may transfer data outside of your jurisdiction, typically where the nature of the services cannot be delivered by implementing the integration with the private cloud.
Regardless of where data is being stored or processed, your security, privacy and confidentiality is of critical importance to us, which is why we act according to data protection regulations to ensure that all of your data is kept as secure as if it was our own"
Data knows no boundaries. But we do.
Technical
We ensure compliance to the highest industry standards for physical, environmental, and hosting controls, in addition to offering end-to-end encryption for your data. All sensitive data is safeguarded through the use of AES 256 encryption within the production database—and is encrypted in transit between the application and client interface using Transport Layer Security (TLS) 1.2 or later.
Organizational
All third party suppliers undergo detailed vetting processes to assess their respective security postures, and ensure they match up to our non-negotiable standards of security. This process is co-orchestrated with the help of our legal, procurement, IT and security teams. Once onboarded, Wix conducts regular security and privacy assessments of each provider at regular intervals.
Contractual
Wix demands a contractual requirement between all third-party suppliers, as well as their subcontractors responsible for processing both our users’ and their end-users’ data—contains agreements that they at a minimum, must provide the equivalent protection of data as that under the agreement between Wix and its third-party suppliers. This guarantees that all data processed continuously meets our security standards.
Ensure data privacy for your business. And your customers.
As a processor of your end-user data, Wix takes consistent actions to ensure full compliance with regulations, and provide you with everything needed to maintain your customers’ trust at the highest level.
Out-of-the-box tools to manage user consent and increase compliance
Data Processing Agreement and sub-processors list for your convenience
Dedicated hub with relevant information on privacy practices
On-call support from our team of privacy compliance experts
Privacy by design
Wix places data privacy at the core of everything we do. The trust you build with your customers—and we with ours—depends on it. Because of this, for every new piece of infrastructure we build, feature we develop, or partnership we engage on, we consider the impact on privacy from the beginning.
We only proceed when we’re certain we’ll be able to maintain the high standards that we, and our customers, expect—and then follow through with a no-compromise approach to upholding international privacy regulations. We are dedicated to safeguarding your data, protecting your privacy, and maintaining the highest standards of trust and transparency.
“We’ve built a culture where privacy is integrated into every aspect of our daily operations, because nothing is more important to us than maintaining our customers’ trust.”
Marcelo Treistman
Head of Wix Policy Team
