WedX.Click
Sign inSign up free
Legal

Privacy Policy

Last updated · 8 May 2026

Draft notice.This document is a working draft prepared for beta launch and has not been reviewed by legal counsel. It will be replaced with a final version reviewed by an Indian solicitor before paid plans go live on 1 June 2026. If you are reading this and have legal questions, please email hello@wedx.click.

1. Who we are

WedX.Click (“WedX”, “we”, “us”) is a wedding-website platform operated from Mumbai, India. We help couples publish a wedding site, manage their guest list and RSVPs, and collect photos from family and friends.

2. What we collect

We collect only what we need to run the service. Specifically:

  • Account data — email address, password (stored as a one-way hash by Amazon Cognito), couple names, wedding date, venue, and the subdomain you choose.
  • Site content — anything you publish on your wedding site: headlines, photos, ceremony schedule, story, attire notes.
  • Guest data you import — names, contact details and RSVP responses you collect through your site. You decide what fields to capture.
  • Photos uploaded by guests — when guests upload via your private passcode, we store those images on Amazon S3 in the AWS Mumbai region.
  • Operational data — IP address, browser user-agent, request timestamps and basic device information used for security, abuse prevention and troubleshooting.

We do not currently use third-party analytics (Google Analytics, Facebook Pixel, etc.). If we add any analytics in the future, we will update this policy and surface a cookie banner before activating them.

3. How we use your data

  • To operate your wedding site and admin dashboard.
  • To send transactional email you initiate (password reset, security alerts).
  • To verify CAPTCHA challenges via Cloudflare Turnstile during signup.
  • To diagnose problems and respond to support requests you send us.
  • To enforce our Terms of Service and protect against abuse (spam, fraud, unauthorised access).

We do notsell your personal information, your guests’ information, or photos to anyone, ever. We do not use your data to train any machine-learning models.

4. Who we share data with

We rely on a small number of vetted infrastructure providers:

  • Amazon Web Services (Mumbai, ap-south-1) — hosting, database, storage, authentication.
  • Cloudflare — Turnstile CAPTCHA on the signup form.
  • Email provider — for transactional email (we will name the provider here once finalised before paid launch).

We share data only as needed to deliver the service. We do not share data with advertisers or data brokers.

5. Cookies and similar technologies

We use only the cookies necessary to keep you signed in and to remember basic preferences. See our Cookies Policy for the full list.

6. How long we keep your data

  • Active sites — kept for as long as your subscription or beta access is active.
  • After your hosting period ends — your site is taken offline; the underlying data (photos, guest list, content) is retained for 30 days so you can export or reactivate, then permanently deleted.
  • Account email — retained for 12 months after final deletion to support security investigations and prevent re-use of the same address by an impersonator.
  • Operational logs — retained for 90 days, then deleted.

7. Your rights

You have the right to:

  • Access the personal data we hold about you.
  • Ask us to correct inaccurate data.
  • Ask us to delete your account and your wedding site.
  • Export your guest list and photos in a machine-readable format.
  • Withdraw consent for any optional processing (currently there is no optional processing — everything we do is necessary to provide the service).

To exercise any of these rights, email hello@wedx.click from the address on your account. We will respond within 30 days.

8. Data security

Passwords are hashed and never stored in plaintext. Photos are stored in private S3 buckets with per-tenant prefixes; access requires a presigned URL we generate only after authenticating the caller. All traffic between your browser and WedX uses HTTPS. We enable point-in-time recovery on our database. No system is perfectly secure, but we operate with the principle of least privilege and review access controls regularly.

9. Children

WedX is intended for adults arranging a wedding. We do not knowingly collect data from children under 13. If a guest happens to be a minor and their photo appears in a gallery you (the couple) host, you are responsible for any consent required from their parent or guardian.

10. International users

Our infrastructure runs in the AWS Mumbai region. If you sign up from outside India, your data is processed in India. By using WedX you consent to the transfer and processing of your data in India.

11. Changes to this policy

If we make material changes, we will email account holders at least 14 days before the change takes effect and update the “Last updated” date above.

12. Contact

Privacy questions, data export requests, deletion requests: hello@wedx.click.