How we collect, use, and protect your personal data at My Wedding Diary.
Last updated: 23 February 2026
My Wedding Diary ("we", "us", "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website and services at myweddingdiary.co.uk.
We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take our responsibilities regarding the protection of personal data very seriously and are committed to being transparent about how we handle your information.
By using our website and services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this policy, please do not use our services.
My Wedding Diary is the data controller responsible for your personal data. We are a UK-based organisation operating the wedding planning platform at myweddingdiary.co.uk.
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at:
We collect different types of personal data depending on how you interact with our services:
When you register for a couple's planning account, we collect:
When you use our planning portal, we store the data you enter, including:
If you register as a vendor on our platform, we collect:
When you submit a contact form enquiry, we collect:
When you browse our website, we automatically collect certain technical data, including:
We use your personal data for the following purposes:
| Data Category | Purpose |
|---|---|
| Account data | To create and manage your account, authenticate login sessions, and provide personalised access to your planning portal |
| Wedding planning data | To deliver our core planning features (dashboard, budgets, guest lists, itinerary, calendar, checklists) and enable real-time syncing across your devices |
| Vendor data | To display vendor profiles on our marketplace directory and enable vendor portal access |
| Contact form data | To respond to your enquiries and provide customer support |
| Automatically collected data | To understand how our website is used, improve our services, and maintain website security and performance |
We may also use your email address to send task deadline reminders if you have set deadlines within your planning checklist. These reminders are a core part of the planning service you have signed up for.
Under UK GDPR, we must have a lawful basis for processing your personal data. The bases we rely upon are:
| Lawful Basis | Processing Activity |
|---|---|
| Performance of a contract (Article 6(1)(b)) | Account creation, delivering the wedding planning portal features, vendor portal services, and syncing data across your devices. This processing is necessary to provide you with the services you have requested. |
| Legitimate interests (Article 6(1)(f)) | Website analytics (to improve our services), website security and fraud prevention (via Cloudflare), and sending service-related communications. Our legitimate interests do not override your fundamental rights and freedoms. |
| Consent (Article 6(1)(a)) | Setting non-essential cookies for analytics purposes. You may withdraw your consent at any time by adjusting your browser settings. |
| Legal obligation (Article 6(1)(c)) | Where we are required by law to retain certain records or comply with regulatory requirements. |
We use the following third-party services to operate our platform. Each provider processes data in accordance with their own privacy policies:
| Service | Provider | Purpose |
|---|---|---|
| Firebase Authentication | Google LLC | Secure account creation and login. Handles password hashing so that passwords are never stored in plain text. |
| Firebase Realtime Database | Google LLC | Storing and syncing your wedding planning data (events, guests, budgets, checklists, calendar entries) in real time across devices. |
| Google Analytics | Google LLC | Collecting anonymised website usage statistics to help us understand how our services are used and to improve the user experience. |
| Cloudinary | Cloudinary Ltd | Image storage and delivery for vendor profile photos and media uploads. |
| Cloudflare | Cloudflare, Inc. | Content delivery network (CDN), DNS management, and website security protection. |
| Font Awesome | Fonticons, Inc. | Delivering icon fonts used in our website design. Your IP address may be logged when your browser requests icon files. |
Data storage location: Our Firebase database is hosted in the EU (europe-west1 region). However, some third-party providers (Google, Cloudflare, Cloudinary) may process data in locations outside the United Kingdom. Where data is transferred internationally, these providers rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or UK adequacy decisions to ensure your data remains protected.
We encourage you to review the privacy policies of these third-party providers for further details on how they handle personal data.
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure, or destruction. These measures include:
Whilst we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security but are committed to implementing and maintaining best-practice security measures.
We retain your personal data only for as long as is necessary to fulfil the purposes for which it was collected:
| Data Type | Retention Period |
|---|---|
| Couple account data | Retained whilst your account is active. Deleted upon account deletion or upon your request. |
| Wedding planning data | Retained whilst your account is active. All portal data (events, budgets, guests, checklists, calendar entries) is deleted when your account is removed. |
| Vendor data | Retained whilst your vendor listing is active on the platform. Deleted upon request or when the listing is removed. |
| Contact form submissions | Retained for up to 12 months from the date of submission, after which they are securely deleted. |
| Analytics data | Subject to Google Analytics data retention settings. Anonymised usage data is retained for up to 14 months. |
If you wish to request early deletion of your data, please contact us using the details provided in Section 13.
Under the UK General Data Protection Regulation, you have the following rights in relation to your personal data:
How to exercise your rights: To make a request regarding any of the above rights, please email us at contact@myweddingdiary.co.uk with the subject line "Data Protection Request". We will respond to your request within one month, as required by UK GDPR.
Right to lodge a complaint: If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Our website uses cookies and similar technologies to ensure proper functionality and to improve your experience. Below is a summary of the types we use:
These are necessary for the website to function and cannot be switched off. They include:
We use Google Analytics to understand how visitors interact with our website. These cookies collect anonymised information about page visits, time on site, and navigation patterns:
Cloudflare may set performance and security cookies to protect our website from malicious traffic and to optimise content delivery.
We also use browser local storage and session storage for application functionality:
Our website uses a Service Worker to cache static assets for faster loading and limited offline access. This cache is automatically managed and updated when new versions of the website are deployed.
Managing cookies: You can control and delete cookies through your browser settings. Please note that disabling essential cookies may affect the functionality of our website, particularly the login and planning portal features. For more information on managing cookies, visit aboutcookies.org.
Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children under 16 years of age. Accounts should only be created by persons aged 16 or over.
If we become aware that we have inadvertently collected personal data from a child under 16, we will take steps to delete that information promptly. If you believe a child under 16 has provided us with personal data, please contact us immediately at contact@myweddingdiary.co.uk.
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you via our website.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of our services after any changes to this policy constitutes your acceptance of the updated terms.
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please do not hesitate to get in touch:
For data protection enquiries, please use the subject line "Data Protection Enquiry" so we can direct your message to the appropriate team member.
We aim to respond to all data protection requests within one month of receipt, in accordance with UK GDPR requirements.