Skip to main content
GiftPlan.io

Privacy Policy

Last updated: January 2026

1. Who We Are

GiftPlan.io is a wedding gift registry service operated in the United Kingdom. We enable couples to create gift registries and receive contributions from their guests.

For any privacy-related questions, please contact us at: privacy@giftplan.io

2. Data We Collect

We collect the following types of data:

Account Data

  • Email address
  • Password (stored securely hashed)
  • Names (for registry display)
  • Wedding/ceremony date

Registry Data

  • Gift items and descriptions
  • Target amounts and funding progress
  • Personal messages
  • Cover photos

Contribution Data

  • Guest names and email addresses
  • Contribution amounts
  • Personal messages

Payment Data

Payment processing is handled by Stripe. We do not store credit card numbers or bank account details directly. We store Stripe account IDs and transaction references.

3. Legal Basis for Processing

We process your data based on:

  • Contract: To provide the registry service you signed up for
  • Legitimate Interest: To improve our services and prevent fraud
  • Consent: For optional marketing communications (if applicable)
  • Legal Obligation: To comply with UK tax and financial regulations

4. Data Retention

We retain your data as follows:

  • Active registries: Until archived (30 days after ceremony date)
  • Archived registries: 60 days after archival, then deleted
  • Account data: Until you delete your account
  • Financial records: 7 years (UK legal requirement)

5. Data Sharing

We share data with:

  • Stripe: For payment processing
  • Amazon: For product data (ASINs only, no personal data)
  • Resend: For sending emails
  • AWS: For hosting infrastructure

We do not sell your personal data to third parties.

6. Your Rights (GDPR)

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise these rights, use the account settings in your dashboard or contact us at privacy@giftplan.io.

7. Cookies

We use essential cookies to maintain your session and preferences. We do not use third-party tracking cookies without your consent.

8. Security

We implement industry-standard security measures including HTTPS encryption, secure password hashing, and regular security audits. All payment processing is handled by PCI-compliant Stripe.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email.

10. Contact Us

For privacy inquiries, contact us at: privacy@giftplan.io