FeaturesHow It WorksWishCoinBenefitsFAQ
Get Started
Legal

Privacy Policy

Last updated: May 13, 2026

WishWing, a product of Fidcent Technologies Limited, respects your privacy. This Privacy Policy explains what information we collect, why we collect it, how we use it, and the choices you have.

If you do not agree with this Privacy Policy, please do not use the app.

1. Who We Are

Data Controller: Fidcent Technologies Limited (WishWing)

Website: https://wishwing.fidcent.com

Privacy Contact: privacies@fidcent.com

2. What We Collect

We collect information you provide directly, information collected with your permission, and limited technical information.

A. Account and Profile Information

  • Name
  • Email address
  • Phone number
  • Date of birth
  • Password credentials (stored securely and never displayed in plain text)

B. Contact Data (Permission-Based)

  • If you grant Contacts permission, we access selected contact details (such as name and phone number) to power contact-based features.

C. Transaction and Service Data

  • Gift activity, wallet and payment-related records, referral usage, support interactions, and service history needed to provide WishWing features.

D. Device and Technical Data

  • Device type, operating system, app version, push token, identifiers needed for security, reliability, fraud prevention, and notifications.

E. Optional Media Data

  • Profile and wishlist images you choose to upload.

We do not use your camera unless explicitly stated in-app and authorized by you.

3. Why We Collect This Data

We collect and use data to operate core features, including:

  • Contact-driven identity matching: phone number is used as the primary identifier to determine whether a contact is already on WishWing and to support mutual contact relationships.
  • Birthday-driven gifting: date of birth enables birthday reminders, occasion timelines, and birthday-based gift experiences.
  • Account security and verification: including login protection and fraud/risk controls.
  • Transaction and wallet operations.
  • User support, service improvement, and legal compliance.

4. Legal Bases for Processing

Depending on your jurisdiction, we process data on one or more of these grounds:

  • Performance of a contract: to provide WishWing services you request.
  • Legitimate interests: to secure and improve our platform and prevent abuse.
  • Consent: for permission-based data such as Contacts and certain notifications.
  • Legal obligations: where required by applicable law.

5. Contacts and Social Graph Processing

When you enable Contacts:

  • We use contact data to help you find people, identify existing WishWing users, and support gifting/reminder flows.
  • We process only what is reasonably necessary for these features.
  • We do not message your contacts without your action.
  • You can revoke Contacts permission at any time in your device settings, though some features may no longer work as intended.

6. How We Share Information

We do not sell your personal data.

We may share data with:

  • Service providers that host infrastructure, enable notifications, analytics, customer support, fraud prevention, and related operations.
  • Payment and transaction partners where needed for wallet and gifting functions.
  • Legal or regulatory authorities when required by law.
  • Successors in a merger, acquisition, or asset transfer, subject to applicable law.

All processors are expected to protect data and process it only for authorized purposes.

7. Data Retention

We keep personal data only for as long as needed for the purposes described in this Policy, including legal, tax, accounting, fraud prevention, and dispute-resolution obligations.

Typical retention approach:

  • Active account data: kept while your account is active.
  • Account profile data after deletion request: deleted or de-identified within 30 days, except where legal retention is required.
  • Security, audit, and access logs: retained for up to 12 months for security and incident response.
  • Customer support records: retained for up to 24 months after ticket closure.
  • Transaction and financial records: retained for up to 7 years after account closure where required by applicable law, audit, tax, anti-fraud, or anti-money-laundering obligations.
  • Backup snapshots: retained for up to 90 days before automatic overwrite/deletion.

Where a dispute, investigation, or legal hold applies, relevant records may be retained for longer until the matter is resolved.

8. Account Deletion and Your Controls

You can request deletion directly in-app:

More/Settings > Account > Delete Account

What this does:

  • Initiates permanent account deletion workflow.
  • Removes or de-identifies personal data, except where retention is required by law (for example, financial compliance, fraud prevention, or unresolved disputes).

You may also contact privacies@fidcent.com for privacy requests, including:

  • Access
  • Correction
  • Deletion
  • Portability (where applicable)
  • Withdrawal of consent (where processing relies on consent)
  • Objection/restriction (where applicable)

We may verify identity before completing requests.

Nigeria Data Protection (NDPA 2023)

For users in Nigeria, we process personal data in line with the Nigeria Data Protection Act (NDPA) 2023 and applicable regulations. Subject to applicable law, you may request:

  • Confirmation that we process your personal data and access to a copy.
  • Correction of inaccurate or incomplete personal data.
  • Deletion of personal data where retention is no longer necessary or lawful.
  • Restriction of processing in specific circumstances.
  • Objection to processing based on legitimate interests.
  • Data portability where technically feasible and legally required.
  • Withdrawal of consent for consent-based processing.

You can exercise these rights by contacting privacies@fidcent.com. We aim to acknowledge and respond within 30 days, subject to identity verification and lawful exceptions.

You also have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC).

9. International Transfers

Your data may be processed in countries outside your residence. Where required, we apply safeguards designed to protect personal data in cross-border transfers.

10. Security

We use administrative, technical, and organizational safeguards designed to protect personal data, including access controls, encryption in transit, and secure storage practices. No system is absolutely secure, but we continuously improve our safeguards.

11. Children's Privacy

Minimum user age statement:

  • WishWing is intended for users aged 4 years and above.
  • Children under 4 are not permitted to use WishWing.
  • In Nigeria, if a user is under 18, use of the service should be with parent or legal guardian consent and supervision where required by applicable law.

If you believe a child has provided personal data in violation of applicable law, contact privacies@fidcent.com and we will take appropriate action.

12. Third-Party Services

WishWing may link to third-party services. Their privacy practices are governed by their own policies, not this Policy.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version and revise the Last updated date.

14. Contact Us

Email: legal@fidcent.com

Website: https://wishwing.fidcent.com

Company: WishWing, a product of Fidcent Technologies Limited