Privacy Policy — Prelude for Weddings

Who we are

Prelude for Weddings ("Prelude", "we", "us", "our") is operated by Steven Ringrose. If you have any questions about this policy, you can contact us at privacy@prelude.day.

What this policy covers

This policy explains what personal data we collect when you use the Prelude for Weddings iOS app and the prelude.day web platform, how we use it, how long we keep it, and what your rights are.

What data we collect

Account data

When you sign in with Apple, we receive a unique Apple User ID and, if you choose to share it, your email address. We store this alongside your account creation date and subscription status.

Wedding data

Information you enter about Weddings you manage, including couple names, venue name, venue address, venue coordinates (latitude and longitude), Wedding date, your role (Videographer, Photographer, or Hybrid), and any notes or timeline events you create.

Timeline and schedule data

Event titles, times, locations, descriptions, and supplier information you add to your Wedding timelines.

Location data

Venue coordinates you provide when creating a Wedding. These are used to calculate sunset times, golden hour windows, airspace checks, and weather forecasts for that venue. We do not track your real-time device location.

Device tokens

Push notification tokens issued by Apple (APNs) that allow us to send Live Activity updates to your device on your Wedding day. These are stored alongside your active Wedding ID and are automatically deleted when a Live Activity ends or your Wedding day passes.

Usage analytics

We collect anonymised analytics events including app launches, feature usage, and error logs to help us improve the app. These are tied to your user ID but do not include personally identifiable information beyond what is listed above.

Questionnaire data

If you generate a questionnaire link for a couple, their responses are stored against your account. This may include personal information provided by the couple such as names, contact details, and Wedding preferences. Questionnaire data is automatically and permanently deleted 30 days after the Wedding date.

Group Shot tokens

Temporary share tokens generated when you use the Live Group Shot feature. These expire and are deleted automatically after use.

Subscription data

Your subscription status and purchase history are managed by RevenueCat. We store your entitlement status (free or Pro) but do not store payment card details. All payment processing is handled by Apple.

Wedding usage log

A permanent record of every Wedding you have ever created is maintained in a secure append-only log. This log records your user ID, an anonymised Wedding identifier, and the Wedding date. It is used solely to enforce the free tier Wedding limit and cannot be deleted by you or modified by anyone. On account deletion, this log is also permanently deleted.

Error and crash data

We use Sentry for crash reporting. Sentry may collect device type, iOS version, app version, and a stack trace at the point of a crash. We have configured Sentry to minimise collection of personally identifiable information.

How we use your data

We use your data to:

Provide the core app functionality, creating and managing Weddings, displaying your schedule, and running Live Activities on your Wedding day
Send push notifications and Live Activity updates to your device
Calculate sunset quality forecasts, golden hour windows, and airspace information for your Wedding venues
Process and display questionnaire responses from your couples
Monitor app performance, diagnose errors, and improve the app
Manage your subscription and verify your entitlement status
Enforce the free tier Wedding creation limit
Comply with our legal obligations

We do not use your data for advertising. We do not sell your data to third parties. We do not use your data to train AI or machine learning models.

Legal basis for processing (UK GDPR)

We process your data under the following legal bases:

Contract performance. Processing necessary to provide the app services you have signed up for.
Legitimate interests. Anonymised analytics and crash reporting to improve the app, and maintaining the Wedding usage log to enforce the free tier limit, where these do not override your rights.
Consent. Where you have explicitly provided information such as questionnaire data or chosen to share a Wedding with a colleague.

Data sharing and third parties

We share data with the following third-party services only to the extent necessary to operate Prelude:

Service	Purpose
Supabase	Backend database and authentication. Data stored in EU (Ireland). GDPR compliant.
Apple	Sign in with Apple authentication and APNs push notification delivery.
RevenueCat	Subscription management. Processes your Apple User ID and purchase history.
Sentry	Crash and error reporting. Device and error data only.
Sunsethue	Sunset quality forecast. Only venue coordinates and Wedding date are sent, no personal data.
DJI FlySafe / TheDroneMap	Airspace information. Only venue coordinates are sent.
Vercel	Hosting for prelude.day. May process request metadata including IP addresses.

We do not share your data with any other third parties.

Data retention

We retain your data for as long as your account is active. Specifically:

Data type	Retention period
Wedding data, timeline events, venues, suppliers	Until you delete the Wedding or your account. Detailed data is automatically deleted 30 days after the Wedding date; couple name and venue name are retained indefinitely.
Questionnaire submissions and tokens	Automatically deleted 30 days after the Wedding date.
App launch events	14 days.
Other session and analytics events	12 months.
Device tokens	Deleted automatically at end of Wedding day or when Live Activity ends.
Error logs	90 days.
Group Shot tokens	Deleted automatically after use or expiry.
Wedding usage log	Until account deletion. Cannot be manually deleted.
Subscription records	7 years for tax and financial compliance, even after account deletion.

Your rights

Under UK GDPR you have the following rights:

Right to access. You can request a copy of the personal data we hold about you.
Right to rectification. You can ask us to correct inaccurate data.
Right to erasure. You can request deletion of your personal data. See Section 9 for how to delete your account within the app.
Right to restriction. You can ask us to restrict processing of your data in certain circumstances.
Right to data portability. You can export your Wedding data at any time using the Export feature within the app (Settings, Export).
Right to object. You can object to processing based on legitimate interests.
Right to withdraw consent. Where processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, contact us at privacy@prelude.day. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Deleting your account and data

You can delete your account and all associated data at any time from within the app:

Settings, Account, Delete Account.

When you delete your account, the following data is permanently and irreversibly deleted from our systems:

Your user profile and authentication record
All Weddings and associated timeline events
All venue and location data
All supplier and contact information
All device tokens and Live Activity state
All session and analytics events
All questionnaire tokens and submissions
All group shot records and share tokens
All error log entries associated with your account
Your Wedding usage log

Deletion is processed server-side and takes effect immediately. This action cannot be undone.

Note that subscription records may be retained for up to 7 years for financial compliance purposes. Your Apple ID and any associated purchase history remains subject to Apple's own data retention policies.

After deleting your account, you may also wish to cancel your Prelude Pro subscription via the App Store to prevent future charges. Go to Settings (iOS), your Apple ID, Subscriptions, Prelude for Weddings.

Children's privacy

Prelude is intended for use by professional wedding photographers and videographers. We do not knowingly collect data from anyone under the age of 18. If you believe a minor has provided us with personal data, please contact us at privacy@prelude.day and we will delete it promptly.

Data security

We take reasonable technical and organisational measures to protect your data, including:

All data in transit is encrypted using TLS
All data at rest is encrypted by Supabase's infrastructure
Access to production systems is restricted to authorised personnel only
Row-level security policies are applied to our database to ensure users can only access their own data
Authentication is handled entirely by Apple's Sign in with Apple, we never store passwords
The Wedding usage log is append-only and cannot be modified or deleted by any client

International data transfers

Our primary data storage is in the EU (Supabase, Ireland). Some third-party services (RevenueCat, Sentry) may process data in the United States. Where data is transferred outside the UK or EU, we ensure appropriate safeguards are in place including Standard Contractual Clauses where required.

Changes to this policy

We may update this policy from time to time. We will notify you of significant changes via the app or by email where we hold your address. The "last updated" date at the top of this page will always reflect the most recent version. Continued use of the app after changes constitutes acceptance of the updated policy.

Section 14 · Contact

Questions, requests, or concerns

Steven Ringrose

For privacy enquiries, please include "Privacy" in the subject line.

Email privacy@prelude.day · Web prelude.day