Privacy Policy

Effective Date: 12 May 2025

At IDO, we are committed to protecting your privacy and ensuring the safety of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services through the IDO platform, including our digital invitations and guest list features.

1. Who We Are

IDO is a UK-based platform designed to help couples plan and share their wedding details digitally. Our core services include digital wedding invitation templates and guest list management tools.

2. What Information We Collect

a. Account Registration

When you sign up, we collect:

• Your email address
• Password (encrypted)

b. Event Creation

When creating a wedding event, we ask for:

• First name (you and your partner's)
• Event date

c. Guest List Management

You may provide personal details of your guests, including:

• First name
• Last name
• Email address

You confirm that you have obtained necessary consent from your guests before submitting their information to us.

d. Usage Data

We automatically collect limited technical data such as IP address, browser type, and device information for platform analytics and security.

3. How We Use Your Information

We use your information for the following purposes:

• To create and manage your account
• To allow you to create and personalize event invitations
• To help you manage and communicate with your guest list
• To deliver invitations via email when selected
• To provide support and improve our services
• To comply with legal obligations

4. Legal Basis for Processing

Under the UK General Data Protection Regulation (UK GDPR), our lawful bases for processing your data include:

• Consent (for storing and sending invitations to guest emails)
• Performance of a contract (to provide services you request)
• Legitimate interests (to improve services and ensure security)

5. Sharing Your Information

We do not sell your data. We may share data with trusted service providers (such as email delivery providers or hosting services) solely for operational purposes and under data processing agreements. All third parties are required to comply with data protection laws.

6. Data Retention

We retain your data for as long as necessary to provide our services or until you request deletion. You may delete your event or account at any time.

7. Your Rights

Under UK data protection law, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (right to be forgotten)
• Object to processing or request restriction
• Withdraw consent (for guest email communications)
• Lodge a complaint with the Information Commissioner's Office (ICO)

8. Security

We use encryption and secure access controls to protect your data. While we strive to use commercially acceptable means to protect your personal information, no method is 100% secure.

9. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect data from children.

10. International Transfers

All data is processed in compliance with UK data protection standards. If data is transferred outside the UK, we ensure adequate protection through appropriate safeguards such as standard contractual clauses.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes via the platform or email.

12. Contact Us

If you have any questions or concerns, you can contact us at:

Email: [email protected]