LEGAL

Privacy Policy

Plain-language explanation of how we handle your data. No legal jargon where we can avoid it.

Last updated: 31 March 2026 · Effective: 31 March 2026

1. Who We Are

Wiggly Tails is a free, non-profit platform helping rescue dogs find homes across Europe. We are operated by Fabio Gonçalves from Munich, Germany, under the laws of the European Union.

Data Controller: Fabio Gonçalves (Wiggly Tails)

Email: privacy@wiggly-tails.eu

Location: Munich, Germany

Website: wiggly-tails.eu

2. What Data We Collect

We only collect data that is necessary to run the platform. Here is exactly what:

Account Data

Email address (for login and notifications)
Display name (optional, shown on your profile)
Password (hashed — we never see or store it in plain text)
Language preference

Rescue Organisation Data

Organisation name, address, city, country
Contact details (email, phone, website)
Logo and gallery images
Permit numbers (Tierschutzgesetz, SIAC) — for verification only

Messages & Applications

Messages sent to rescues via the contact form
Adoption application answers (name, living situation, experience)

What We Do NOT Collect

We do not use Google Analytics or any analytics service
We do not use Facebook Pixel or any advertising tracker
We do not sell, share, or monetise your personal data
We do not transfer data outside the European Union

3. Legal Basis (Art. 6 GDPR)

Processing Activity	Legal Basis
Account creation and login	Contract performance — Art. 6(1)(b)
Rescue profile management	Contract performance — Art. 6(1)(b)
Sending messages to rescues	Contract performance — Art. 6(1)(b)
Essential cookies (session, language)	Legitimate interest — Art. 6(1)(f)
Functional cookies (journey progress)	Consent — Art. 6(1)(a)
Newsletter (if subscribed)	Consent with double opt-in — Art. 6(1)(a)
Platform security and abuse prevention	Legitimate interest — Art. 6(1)(f)

4. Cookies & Local Storage

We use a minimal number of cookies. No tracking cookies, no advertising cookies. Here is the complete list:

Essential Cookies (always active)

These are required for the website to function. They cannot be disabled.

Name	Purpose	Duration
sb-*-auth-token	Keeps you logged in (Supabase authentication session)	Browser session
preferred_lang	Remembers your language (English, German, or Portuguese)	1 year
wt_community	Remembers your selected region/community	1 year
cookie_consent	Stores your cookie consent choice so we do not ask again	1 year

Functional (requires your consent)

These improve your experience but are not required. You can disable them in the cookie banner.

Name	Purpose	Duration
wt_journey_progress	Saves your adoption journey checklist progress (stored only in your browser via localStorage — never sent to our servers)	Until cleared
wt_favourite_posts	Saves which blog guides you marked as favourites (stored only in your browser via localStorage — never sent to our servers)	Until cleared

shield

Zero tracking cookies. We do not use Google Analytics, Facebook Pixel, Hotjar, Mixpanel, or any third-party tracking service. Your browsing behaviour on Wiggly Tails is not tracked, profiled, or shared with anyone.

5. Where Your Data Is Stored

🇪🇺

Database: Supabase (Frankfurt, Germany)

All user data, rescue profiles, dog listings, messages, and applications.

🌐

Website hosting: Netlify (CDN with EU nodes)

Static website files. No personal data is processed by Netlify.

📧

Email: Supabase Auth (Frankfurt, Germany)

Confirmation and password reset emails only. No marketing unless you opted in.

We do not transfer personal data to countries outside the European Economic Area without adequate safeguards as required by Chapter V of the GDPR.

6. Data Retention

We keep your data only as long as needed. Here are the specific retention periods:

Data Type	Retention Period	What Happens Then
Account data	Until you delete your account	Deleted within 30 days
Rescue organisation profile	Until the rescue deletes it	Removed from platform, archived 90 days, then deleted
Messages to rescues	1 year after last activity	Permanently deleted
Adoption applications	2 years after completion	Permanently deleted
Newsletter consent	Until you unsubscribe	Email removed, consent log kept for 3 years (legal proof)
Cookie consent records	3 years	Deleted (kept for GDPR accountability)
Server logs	7 days	Automatically deleted

7. Your Rights Under GDPR

You have full control over your personal data. These rights are free to exercise:

visibility

Right of Access (Art. 15)

Request a copy of all personal data we hold about you.

edit

Right to Rectification (Art. 16)

Correct any inaccurate or incomplete data.

delete

Right to Erasure (Art. 17)

Ask us to delete your data ("right to be forgotten").

pause_circle

Right to Restrict Processing (Art. 18)

Limit how we use your data while a dispute is resolved.

download

Right to Data Portability (Art. 20)

Receive your data in a machine-readable format (JSON/CSV).

block

Right to Object (Art. 21)

Object to processing based on legitimate interest.

undo

Right to Withdraw Consent (Art. 7(3))

Withdraw any consent at any time — no questions asked.

8. How to Exercise Your Rights

To make a data subject request, email us at:

emailprivacy@wiggly-tails.eu

We will respond within 30 days as required by the GDPR.

We may ask you to verify your identity before processing your request.

All requests are free of charge.

9. Supervisory Authority

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with a data protection supervisory authority. Since we are based in Bavaria, Germany, the relevant authority is:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)

Promenade 18, 91522 Ansbach, Germany

Website: lda.bayern.de

Email: poststelle@lda.bayern.de

You may also contact the supervisory authority in your own EU member state.

10. Changes to This Policy

We may update this policy from time to time. If we make significant changes, we will notify you via the website or email. The "Last updated" date at the top of this page always reflects the current version.