Last updated: 2026-06-23. This privacy policy explains how Wedpoint (“we”, “us”, “our”) handles personal information when you use our website at wedpoint.co.uk, our iOS and Android mobile applications (together, the “Service”), and related support channels.
This policy is designed to meet UK data protection law (including UK GDPR) and the transparency expectations of Apple App Store and Google Play. It should be read with our Terms of use. If anything here conflicts with mandatory law in your country, that law prevails.
Not legal advice. This document describes our practices. Obtain independent legal advice before relying on it for regulated or high-risk decisions.
1. Who we are (data controller)
Wedpoint (“we”, “us”, “our”) operates the wedding marketplace and planning platform at https://www.wedpoint.co.uk and our iOS and Android mobile applications.
For UK and EEA data protection law, Wedpoint is the data controller of personal information in this policy, unless we state otherwise for a specific activity.
Contact: privacy and data requests via Contact supportor Help & support in the app. We aim to respond within one month for UK GDPR requests.
ICO registration: if registration is required, our ICO entry will be published here or provided on request.
2. Scope
This policy applies to:
- Visitors and registered users of wedpoint.co.uk;
- Users of the Wedpoint mobile apps (bundle ID / package: com.wed-point.app);
- Guest support enquiries submitted without an account.
Third-party websites, payment providers, or services you reach through listings or messages are governed by their own policies. Wedpoint does not process card payments through in-app messaging; do not share card or bank details in chat.
3. Information we collect
We collect information you provide, information generated by your use of the Service, and limited technical data.
- Account and identity: email address, password (stored hashed by our auth provider), name, account role (e.g. couple, vendor, planner), phone number, address and city fields, wedding date, and business details you choose to provide.
- Authentication providers: if you use Sign in with Google or Sign in with Apple, we receive tokens and profile fields those providers share (such as email and name) to create or sign in to your Wedpoint account.
- Listings and marketplace content: text, images, prices, categories, availability, and other vendor content you publish or view.
- Bookings and planning data: booking requests, dates, messages related to bookings, guest lists, budgets, saved vendors, partner/planner connections, and tasks you create in the app.
- Messages and support: conversation content, attachments you send, and support ticket subject and body.
- Photos and files: images and documents you upload (e.g. listing photos, message attachments, support uploads).
- Approximate location (optional): when you enable location or search by area, we use coarse / reduced-accuracy location to show map context and distance-based discovery. We do not use location for advertising or sell location data.
- Push notifications (optional): device push tokens when you opt in (e.g. when opening Messages and granting permission).
- Security and reliability: IP address, device identifiers used for fraud prevention, authentication attempt logs, and similar technical logs needed to protect accounts and the platform.
- Reports and moderation: content you report, reason codes, and related metadata used to investigate abuse.
We do not use your data for cross-app advertising tracking and do not sell your personal information.
4. How we use information
We use personal data to:
- create and manage accounts and authenticate users;
- provide marketplace discovery, listings, maps, bookings, messaging, and planning tools;
- connect couples with partners and planners where you invite or accept connections;
- operate customer support and respond to enquiries;
- detect, prevent, and investigate fraud, abuse, spam, and security incidents;
- enforce our terms, moderate user-generated content, and protect users;
- improve reliability, fix errors, and develop features;
- comply with law and respond to lawful requests.
We request camera, photo library, location, and notification permissions only for the purposes described in the app and in platform permission dialogs. You can change or revoke permissions in your device settings.
5. Legal bases (UK / EEA)
Where UK or EEA GDPR applies, we rely on one or more of the following:
- Contract: processing needed to provide the Service you sign up for (accounts, bookings, messaging, listings).
- Legitimate interests: security, fraud prevention, service improvement, and moderation, balanced against your rights.
- Consent: where required (e.g. optional push notifications, optional location features where consent is the appropriate basis).
- Legal obligation: where we must retain or disclose data to comply with law.
6. Sharing, processors, and subprocessors
We share personal data only as needed to run the Service. Our processors act on our instructions under data-processing terms appropriate to their role, including:
- Supabase — authentication, database, file storage, and related infrastructure (Supabase privacy).
- Google — Maps and Places for map display and location search; Google Sign-In when you choose that login method (Google privacy).
- Apple — Sign in with Apple when you choose that login method on Apple devices (Apple privacy).
- Firebase / Google Cloud — push notification delivery when enabled (Firebase privacy).
We may also share information with other users as part of the Service (e.g. your profile name on a booking, messages you send, public listing content). We may disclose information if required by law, to protect rights and safety, or in connection with a merger or sale of assets subject to appropriate safeguards.
We do not sell personal data. We do not use your data for cross-app advertising tracking.
6a. Marketplace role
Wedpoint is a platform that helps couples discover vendors and planners and communicate about weddings. Contracts for wedding services are primarily between you and the vendor or planner. Wedpoint is not a party to those agreements and does not process card payments through in-app messaging. Vendors are responsible for their own compliance (including any licences, insurance, and tax obligations) for services they offer.
Content you post (listings, messages, reviews) may be visible to other users as part of the Service. Do not share payment card numbers, bank details, or passwords in chat.
7. International transfers
Our providers may process data in the UK, EEA, United States, or other countries. Where required, we use appropriate safeguards (such as UK IDTA / SCCs or equivalent mechanisms) for transfers outside the UK or EEA.
8. Retention
We keep personal data only as long as needed for the purposes above, including while your account is active and for a reasonable period afterwards for legal, security, and backup needs.
When you delete your account (see below), we deactivate it and schedule permanent removal after a grace period (currently 30 days), unless we must retain certain records longer for legal obligations, disputes, or security.
Aggregated or de-identified data that cannot reasonably identify you may be kept longer for analytics and service improvement.
9. Security
We use technical and organisational measures appropriate to the risk, including HTTPS for data in transit, access controls, and monitoring. No method of transmission or storage is completely secure; you are responsible for keeping your password and device secure.
10. Children
The Service is not directed at children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact support and we will take appropriate steps to delete it.
11. Your rights
Depending on where you live, you may have rights to access, correct, delete, restrict, object to, or port your personal data, and to withdraw consent where processing is based on consent. You may also have the right to complain to the UK Information Commissioner's Office (ICO) or your local supervisory authority.
To exercise rights, use in-app settings where available, Contact support, or Help & support in the app. We may need to verify your identity before responding.
12. Account deletion
You can start account closure in the Wedpoint mobile app: open Profile → Account security → Delete account. This deactivates your account immediately, signs you out, and schedules permanent removal after a 30-day grace period unless you contact support to restore access before that date. Administrator accounts must contact support to close an account.
Deletion may not remove copies already shared with other users (e.g. messages sent) or data we must retain by law. Backups may persist for a limited time before being overwritten.
13. Cookies and similar technologies (website)
Our website may use cookies and similar technologies for essential operation, security, and preferences. Where non-essential cookies are used, we will provide appropriate notices and choices as required by law.
14. User-generated content and moderation
Listings, reviews, and messages are user-generated. You can report content that violates our terms via in-app reporting tools. We may review reports and take action including content removal or account suspension.
15. Changes to this policy
We may update this policy from time to time. We will post the updated version at https://www.wedpoint.co.uk/privacy and update the “Last updated” date. Material changes may be communicated in the app or by email where appropriate. Continued use after changes take effect constitutes acceptance where permitted by law.
16. Contact
Privacy questions, data requests, or complaints: Contact supportor Help & support in the Wedpoint app.
Public policy URL for app stores: https://www.wedpoint.co.uk/privacy