Privacy

Introduction

wedium GmbH is committed to protecting your personal data. This is only natural, since data protection is one of the reasons we founded wedium. This Privacy Policy explains how we collect, process, store, and protect your data when you use our social media platform wedium. Our services are hosted in the European Union on servers operated by bunny.net, ensuring GDPR compliance and secure data residency within the EEA.

 

2. Data Controller

The data controller is:

wedium GmbH
Tempelhofer Damm 2, 12101 Berlin, Deutschland
E-Mail: hello@wedium.social

 

3. What Data We Collect

  • Account Information: name, email, username, password (hashed), phone number (if provided), age (for age-restricted access).
  • Device and Usage Data: IP address, browser type, device identifiers, session duration.
  • Content Data: posts, comments, likes, bookmarks, uploads, shared media.
  • Interaction Data: preferences, interactions with other users, reports, and blocks.
  • Optional Data: profile photos, location data (if enabled), newsletter opt-in.

 

4. How We Use Your Data

We use your personal data to:

  • Operate the platform and provide user services
  • Authenticate and manage user accounts
  • Personalize recommendations and feeds (without addictive patterns)
  • Moderate content using a combination of human review and AI
  • Enable communication features
  • Prevent abuse, spam, and fraud
  • Fulfill legal obligations
  • Provide optional monetization and creator tools

 

5. Legal Bases for Processing

We rely on the following legal bases:

  • Consent (e.g., for optional features, marketing)
  • Contract (to provide the service you signed up for)
  • Legitimate interest (e.g., to improve security or personalize content)
  • Legal obligation (e.g., for tax, compliance, or minor protection)

 

6. Data collection during registration/verification

To ensure maximum security, keep bots out, and ensure that all users adhere to netiquette, interaction (posting, sharing, liking, etc.) on wedium is only possible with verification. When setting up an account, a one-time verification process is therefore carried out using ID (ID card, passport) via an external European provider.

  • Once the verification process is complete, you will be recognized as a “Trusted User” by other users and will be able to interact. However, you do not have to provide your real name; we strongly recommend that minors use a nickname.
  • If the platform is only used as a “Guest User,” only read access is available, and only content suitable for minors is displayed.
  • “Light Users” who have registered via Apple ID, Google, or by phone number (SIM card) may use the ‘Subscribe’ function, but may not interact beyond that; the content displayed corresponds to that of “Guest” access.

 

7. Data Hosting & Transfers

All personal data is hosted securely on bunny.net servers located in the European Union. We do not transfer your data outside the EEA unless necessary and with appropriate safeguards (e.g., Standard Contractual Clauses).

 

8. Use of Artificial Intelligence (AI)

We may use AI for:

  • Recommendation of content (interest-based)
  • Automated moderation (e.g., flagging harmful content)
  • Abuse prevention
  • We do not use AI for profiling with legal effect. Users can opt out of personalized AI recommendations in account settings.

 

9. Data Retention

  • Account data: stored as long as the account is active, and deleted 3 months after closure.
  • Posts/comments: retained until deleted by user or account deactivation.
  • Analytics and security logs: retained up to 12 months.
  • Legal data: retained up to 10 years if required by law.

 

10. Children and Youth Protection

Use is only permitted from the age of 13, but only when accompanied by a legal guardian. To set up an account, verification by means of ID (identity card, passport) is required (see point 6). In the case of a minor user, this is done by linking the account to the account of the legal guardian. If only “guest” access without verification is used, the user will only be shown content suitable for minors, and no interaction is possible, i.e., other users cannot contact the minor.

Default settings for minors:

  • Private profiles
  • Non-personalized feed
  • Limited discoverability
  • Parental supervision options (planned)

 

11. Your Rights

Under the GDPR, you have the right to:

  • Access your data
  • Rectify incorrect data
  • Delete your data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

 Requests can be made by emailing: hello@wedium.social

 

12. Security Measures

We implement encryption, role-based access, monitoring, and regular audits. While no system is 100% secure, we follow industry best practices to minimize risk.

 

13. Cookies and Tracking

We use essential cookies for login and session security. You may opt in to analytics or performance cookies. We do not use third-party ad trackers.

 

14. Updates to This Policy

We may update this Privacy Policy. In case of major changes, we will notify users via email or app notification. Version history is published transparently.

Bei wesentlichen Änderungen informieren wir dich per E-Mail oder direkt in der App. Änderungshistorie wird transparent gemacht.

 

15. Contact

For any inquiries or data requests: hello@wedium.social

We are always happy to hear from you!

wedium is the first social media platform for real people only