Track 1 platform and get the weekly governance digest. No credit card required.
This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology
This document establishes Wix's data collection, processing, and use practices for individuals who create accounts on the Wix platform, visit Wix.com, or visit websites built with Wix's tools. Wix collects personal data from both registered account holders and visitors to Wix-powered websites, including browsing behavior, device identifiers, and IP addresses. The policy authorizes use of collected data for targeted marketing, analytics, and international transfers, and establishes data subject rights including access, deletion, and portability for users in covered jurisdictions.
This document is Wix.com's Privacy Policy, governing the collection, use, storage, and sharing of personal data from users of the Wix website-building platform and associated services, with legal bases including consent, contractual necessity, and legitimate interests as articulated under GDPR and comparable frameworks. The policy states that Wix collects a broad range of personal data including registration information, usage data, device and browser identifiers, payment information, and user-generated content, and the terms authorize sharing this data with third-party service providers, business partners, and affiliates for purposes including platform operation, marketing, analytics, and fraud prevention. Notably, the policy covers not only direct Wix users (registered account holders) but also visitors to websites built on the Wix platform, meaning individuals who never directly contracted with Wix may have their data processed under these terms; the policy also reserves broad rights to use aggregated and de-identified data without restriction, and asserts the right to transfer data internationally. The policy engages GDPR and the EU ePrivacy Directive for EU and EEA users, the UK GDPR post-Brexit, the California Consumer Privacy Act and CPRA for California residents, and Brazil's LGPD for Brazilian users, with Wix serving as both data controller for its own users and data processor for data collected through user-built websites. Compliance teams should note the dual controller-processor role creates layered obligations, and the adequacy of international data transfer mechanisms (Standard Contractual Clauses) should be verified against current regulatory guidance.
Institutional analysis available with Compliance
Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.
Start Compliance free trialMonitoring
Wix has updated this document before.
Monitor includes same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
Compliance Governance Intelligence
Need provision-level monitoring and regulatory mapping?
Compliance includes governance timelines, compliance memos, audit-ready analysis, and full provision tracking.
Start Compliance free trialCross-platform context
See how other platforms handle Collection of Users of Users Data and similar clauses.
Compare across platforms →Governance Monitoring
Structured alerts for policy changes, governance events, and provision updates across 318+ platforms.