Privacy Policy
Effective Date: [Month Day, Year]
Who we are: [Organization/Host Name], [mailing address].
Contact: [privacy@yourdomain.com]
1) What we collect
-
RSVP details: first/last name, email, phone (optional), attendance choice (morning, evening, both), guest names/relationships, notes (dietary, access needs), consent checkbox.
-
Access list (on-base event): full names of attendees and adult guests for base access.
-
Payments (evening event): Stripe processes card data. We never see or store full card numbers. We receive non-sensitive payment metadata (amount, status, last 4, brand).
-
Technical data: IP address, device/browser info, page URLs, and server logs.
-
Cookies: used only to run the RSVP form (e.g., success message) and basic site functionality.
2) Why we collect it (legit purposes)
-
Create/manage guest lists and seat counts.
-
Communicate event details and changes (email or phone if provided).
-
Submit required names for on-base access to base security.
-
Take and reconcile evening reception payments via Stripe.
-
Prevent spam/fraud and keep the site running (security logs).
-
Comply with legal and safety obligations.
3) Who gets your data
-
Base security (morning ceremony only): we share attendee and adult guest names as required for access. We do not send ID numbers; you present ID at the gate.
-
Payment processor: Stripe, Inc. handles all card data. Their policy: https://stripe.com/privacy
-
Service providers: managed hosting, email delivery (WordPress
wp_mail/SMTP), error logging—only what’s needed to operate the site. -
We don’t sell your data. We don’t share it for targeted advertising.
4) ID and minors
-
ID for base entry: All adults 18+ must present a government-issued photo ID at the gate. We do not collect or store ID numbers/images on this website.
-
Minors: Guests under 18 may attend with an adult. We don’t knowingly collect personal info directly from minors.
5) Payments
-
Card payments for the evening reception are processed by Stripe on their pages. We receive confirmation that payment succeeded; we don’t store your card details.
-
If you need a refund exception or receipt copy, contact us at [billing@yourdomain.com].
6) Retention
-
RSVP records & access lists: kept until 90 days after the event, then deleted or anonymized.
-
Payment records (non-card): kept for 7 years for accounting/tax.
-
Server logs: up to 30 days unless needed for security.
7) Your choices & rights
-
Update or delete: email [privacy@yourdomain.com] with your request and the name/email you used to RSVP.
-
Unsubscribe: every confirmation email includes a way to reach us; we don’t run newsletters off this list.
-
California (CCPA/CPRA): you can request access, correction, or deletion and opt out of “sale/share” (we don’t sell/share data). Use [Do Not Sell or Share link or email].
-
EEA/UK visitors (GDPR): legal bases are contract (your RSVP/payment), legitimate interest (security/ops), and legal obligation (accounting, base rules). You can request access, correction, deletion, restriction, and objection at [privacy@yourdomain.com].
8) Security
-
We use HTTPS, access controls, and least-privilege for admin accounts. No method is perfect, but we work to keep your data safe.
9) International transfers
-
Our site may be hosted in the U.S. If you are outside the U.S., your information may be processed here.
10) Photos & video
-
The events may be photographed. If you prefer not to be included in published photos, tell the photographer or email us at [privacy@yourdomain.com].
11) Cookies (plain English)
-
Functional cookie: remembers the RSVP success state.
-
No marketing pixels by default. If we add analytics later, we’ll update this page.
12) Contact
Questions or requests: [privacy@yourdomain.com]
Mail: [Host Name], [Address]
13) Changes to this policy
If we change what we collect or how we use it, we’ll update the effective date and summarize changes here.