Privacy Policy
Toronto Wedding Guide ("TWG", "we", "us") explains here how we collect, use, disclose, and protect personal information when you use our websites, apps, and related services (the "Services").
1. Who we are & contact
Controller: Toronto Wedding Guide
Email: support@torontoweddingguide.com.
2. Scope
This Policy applies to personal information we process about visitors, members, couples, vendors, and other users of the Services. Supplemental notices may apply in your region (e.g., EU/UK, California). If a supplemental notice conflicts with this Policy, the notice controls for the applicable region.
3. Information we collect
A. You provide
- Account & profile data (name, email, username, password, phone numbers, roles, preferences).
- Couple information (names, contact details, wedding plans like date, guest count, location; verification status; contest eligibility data).
- Vendor/business info (legal and trade names, category, descriptions, logos, images, social links, addresses, pricing ranges, availability, staff contacts).
- Content you submit (messages, reviews, ratings, photos, videos, 3D assets, forms, support requests).
- Identity/phone verification (verification codes, status; provider IDs such as Clerk user IDs).
- Transactions (orders, bookings, subscriptions, payments—processed via third‑party processors; we do not store full payment card numbers).
- Contests & promotions (entries, points, submitted media, consent, winner documentation).
B. Automatically collected
- Usage & device data (pages viewed, clicks, referring/exit pages, IP address, device/browser info, OS, app version, language, timestamps).
- Cookies & similar technologies (session, authentication, preferences, analytics, security, and—if applicable—advertising cookies). See Cookies.
- Approximate location derived from IP address or with your permission.
C. From third parties
- Authentication & identity (e.g., Clerk, OAuth providers).
- Analytics & performance (e.g., Google Analytics/Tag Manager).
- Business integrations (e.g., Google Business Reviews; calendar integrations like Google, Outlook, iCloud).
- Fraud prevention & safety services.
4. How we use information
- Provide and maintain the Services (accounts, profiles, listings, search, messaging, bookings, contests).
- Personalize content and experiences.
- Communicate about accounts, updates, security alerts, and marketing (with consent where required).
- Verify identity and phone numbers, prevent spam/abuse, and maintain platform integrity.
- Process payments and facilitate vendor‑customer interactions.
- Improve the Services (research, testing, analytics, machine learning features).
- Legal compliance, enforcing terms, and protecting our rights and users.
5. Legal bases (EEA/UK)
We process personal data under: (a) contract; (b) legitimate interests; (c) consent (for certain marketing/cookies/optional data); and (d) legal obligations.
6. When we share information
- Service providers (hosting, storage, analytics, support, identity/phone verification, email/SMS, payments, security).
- Vendors & couples to fulfill requests you initiate (e.g., inquiries, bookings, reviews).
- Legal & safety when required by law, to protect rights, or in connection with a merger, acquisition, or sale.
- With your consent or direction, including integrations you enable.
7. Cookies & tracking
We use cookies and similar technologies for authentication, security, preferences, performance, and analytics. Manage cookies in your browser and (where offered) in‑product controls. Where required by law, we request consent for non‑essential cookies.
8. Data retention
We retain personal information as long as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type and context.
9. Security
We implement administrative, technical, and physical safeguards proportional to the sensitivity of the data. No method of transmission or storage is 100% secure.
10. Your rights & choices
Canada (PIPEDA): Right to access and challenge accuracy—contact our Privacy Officer. EEA/UK (GDPR/UK GDPR): Rights to access, rectification, erasure, portability, objection, restriction; you may complain to your DPA/ICO. California (CCPA/CPRA): Rights to know, delete, correct, and opt out of sale/sharing; non‑discrimination.
- Access, correct, or delete your information.
- Export your data (where available).
- Object to or restrict certain processing.
- Opt out of marketing communications.
11. Children
We do not knowingly collect personal information from children under 13 (or the age required by your jurisdiction). If you believe a child has provided personal information, contact us to request deletion.
12. International transfers
We may process data in Canada, the United States, and other countries. Where required, we use appropriate safeguards (e.g., standard contractual clauses) for cross‑border transfers.
13. Third‑party links & services
Third‑party sites/services are governed by their own policies.
14. Changes to this Policy
We may update this Policy from time to time. If changes are material, we will provide notice (e.g., by email or in‑app) and update the “Last updated” date.