Users in the European Economic Area (EEA) are currently unable to access Wink Digital’s website, the company confirmed Thursday, after a disruption stemming from enforcement of the General Data Protection Regulation (GDPR). The website displays a message stating access is unavailable for those in the EEA, citing the GDPR, and provides contact information for inquiries.
The block underscores the increasing scrutiny of data privacy practices and the potential consequences for companies failing to comply with European regulations. Wink Digital’s website directs affected users to contact the company via email at winkdigitalteam@fmbcmail.com or by phone at 239-334-1111.
The GDPR, established by the European Commission, is a comprehensive data protection law applicable throughout the EU and EEA. The European Data Protection Board (EDPB), composed of representatives from national data protection authorities and the European Data Protection Supervisor, is responsible for ensuring consistent application of the regulation. The European Commission participates in the EDPB’s activities but does not have voting rights.
The situation highlights the challenges faced by organizations operating across borders in navigating differing data protection standards. The UK, following its departure from the EU, has been granted an adequacy decision by the EU, meaning personal data can flow from the EEA to the UK without additional safeguards, according to guidance from the UK’s Information Commissioner’s Office (ICO). This decision was renewed as of January 15, 2026.
Within the EEA itself, the transfer of personal data is governed by a unified framework under the GDPR. According to the Autoriteit Persoonsgegevens, the Dutch data protection authority, the EEA functions as a single territorial jurisdiction for data protection, meaning the same rules apply across all member states, Iceland, Liechtenstein, and Norway. Transfers within the EEA are permitted without requiring additional legal agreements, though organizations must still maintain a legal basis for processing data and ensure transparency with data subjects.
The ICO guidance clarifies that the renewed EU adequacy decision for the UK applies to both general processing under the EU GDPR and processing for law enforcement purposes under the Law Enforcement Directive (LED). This allows for the continued transfer of personal information from the EEA to the UK without requiring further measures.
