Legal

Privacy Policy

Last updated: January 2025

WeddingFrame ("we", "us", "our") is committed to protecting your privacy. This policy explains what information we collect, how we use it, and what rights you have.

What we collect

For photographers who create an account:

• Name and email address provided during sign-up
• Google OAuth tokens when you connect Google Drive (stored securely, used only to read your Drive folders)
• Razorpay subscription and payment data (processed by Razorpay — we do not store card details)
• Wedding project details you enter: couple names, dates, venue, event names

For clients (couples) who access a gallery via a shared link:

• First name entered on first visit
• Photo selection data: which photos were kept, skipped, starred, and any notes added
• Session token embedded in the gallery URL to restore progress across visits

What we do not collect

• We do not store your photos. We read photo metadata and file IDs from Google Drive — the actual image files remain in your Drive at all times.
• We do not collect client email addresses or phone numbers unless explicitly provided.
• We do not run advertising or sell data to third parties.

How we use your data

• To provide the WeddingFrame service: displaying photos, saving selections, generating selected folders
• To process subscription payments via Razorpay
• To send transactional emails (selection notifications, payment receipts) via Resend
• To improve the product based on aggregate, anonymised usage patterns

Google Drive access

When you connect Google Drive, we request read access to your Drive files and write access to create new folders. We use this access only to:

• List photos in folders you specify
• Display photo thumbnails to your clients
• Copy selected files into a new "WeddingFrame Selected" folder when you trigger it

We never read, modify, or delete any files outside of folders you explicitly connect to a WeddingFrame project.

Data retention

Photographer accounts and associated project data are retained for as long as your account is active. You can request deletion of your account and all associated data at any time by emailing privacy@weddingframe.in.

Client session data (name and selections) is retained for the lifetime of the wedding project. When a photographer deletes a project, all associated client data is deleted.

Third-party services

• Supabase — database and authentication hosting
• Google Drive API — photo access and folder creation
• Razorpay — payment processing
• Resend — transactional email delivery
• Vercel — application hosting

Your rights

You have the right to access, correct, or delete your personal data. To exercise any of these rights, contact us at privacy@weddingframe.in.

Contact

Questions about this policy? Email us at privacy@weddingframe.in.