WINEDEN

Privacy Policy

Effective date: 22 May 2026 · Last updated: 22 May 2026

This Privacy Policy explains how DevsDen (Pty) Ltd ("we", "us") collects, uses, and shares personal information when you use the WineDen mobile application and related services (the "Service"). WineDen is an invite-based blind wine tasting platform.

The short version. We collect your name, email, phone number, and date of birth so you can sign in and host or attend tastings. We use Twilio to send WhatsApp invites you trigger. We do not sell your data, run advertising trackers, or use third-party analytics. You can export or delete your account in-app at any time.

1. Who we are

The Service is operated by DevsDen (Pty) Ltd, a company incorporated in South Africa. You can reach our data team at support@devsden.co.za.

2. Eligibility

WineDen is intended for adults of legal drinking age. You must be at least 18 years old to create an account. We enforce this with a date-of-birth check at registration; if you provide a date that indicates you are under 18, your account will not be created. We do not knowingly collect data from children.

3. Information we collect

3.1 Information you provide

3.2 Information collected automatically

We do not use third-party analytics SDKs, advertising identifiers, or device fingerprinting.

4. How we use information

5. Lawful bases (GDPR / POPIA)

6. Sharing

We share personal data only with:

We do not sell personal data and we do not share it for cross-context behavioural advertising.

7. Retention

8. Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict, or port the personal data we hold about you, and to object to or withdraw consent from certain processing.

9. Security

Passwords are hashed with ASP.NET Core Identity defaults. Authentication tokens are short-lived JWTs stored in OS-level secure storage (iOS Keychain / Android KeyStore) on your device. Traffic between the app and our API is TLS-encrypted. We restrict database access, rotate credentials, and run on managed infrastructure with provider-level isolation. No system is perfectly secure; we will notify you of any incident affecting your data without undue delay where required by law.

10. International transfers

Our hosting may store data in regions outside South Africa. Where personal data is transferred internationally, we rely on the contractual safeguards of our infrastructure providers.

11. Children

The Service is not directed to children under 18 and we do not knowingly collect their data. If you believe a minor has registered, contact support@devsden.co.za and we will remove the account.

12. Changes

If we change this policy materially we will update the "Last updated" date above and, where appropriate, notify you in the app or by email before the change takes effect.

13. Contact

DevsDen (Pty) Ltd
Email: support@devsden.co.za
Website: devsden.co.za