Privacy Policy

Privacy Policy

Privacy Policy

Privacy Policy

Introduction

We, Efficient Operations GmbH, operate a SaaS platform that enables wedding couples to collect audio and video contributions from their guests and receive a personalized wedding montage. We take the protection of your personal data seriously and want to inform you about how we process your personal data.

Due to the EU General Data Protection Regulation (Regulation (EU) 2016/679; hereinafter “GDPR”), we are required to inform you transparently about the nature, scope, purposes, duration, and legal basis of our processing of your personal data.

These privacy notices inform you about the processing of your personal data by us.

Definitions

Following Art. 4 GDPR, the following definitions apply:

  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”). A person is identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

  • “Processing” means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure, or destruction.

  • “Controller” means the natural or legal person who determines the purposes and means of the processing of personal data.

  • “Processor” means a natural or legal person who processes personal data on behalf of the controller.

  • “Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Controller and Contact Details

Efficient Operations GmbH
Schürenbruch 13
32479 Hille, Germany
Email: daniel@wedwi.com

Obligation to Provide Personal Data

In general, you are not legally or contractually required to provide personal data. However, if you do not provide certain data, we may not be able to offer you our services or only to a limited extent.

Collection and Purpose of Personal Data

We process personal data for the following purposes:

  • Provision of our platform and services

  • Payment processing

  • Creating personalized wedding montages

  • Providing customer support and communication

  • Analytics and service optimization

  • Compliance with legal obligations (e.g. tax law)

  • Fraud prevention and IT security

Personal data may include:

  • Contact data (name, email, address)

  • Payment data

  • Usage data (IP address, log files, device info)

  • Uploaded audio and video content from guests

  • Other user-generated content

Important: Even if we do not link uploaded audio and video contributions to specific guest accounts, such contributions may contain personal data (e.g. faces, voices) that qualify as personal data under the GDPR.

Legal Basis of Processing

Processing personal data is generally prohibited unless permitted by law. The legal bases for processing are:

  • Art. 6 (1)(a) GDPR: Consent

  • Art. 6 (1)(b) GDPR: Performance of a contract

  • Art. 6 (1)(c) GDPR: Legal obligations

  • Art. 6 (1)(f) GDPR: Legitimate interests

For storing or accessing data on your device (cookies etc.), the legal basis is:

  • § 25 (1) TDDDG (German Telecommunications-Digital Services Data Protection Act) if consent is required; or

  • § 25 (2) TDDDG if strictly necessary for technical reasons.

Storage Period

We delete personal data as soon as it is no longer required for the purposes for which it was collected unless retention is required by law or necessary for legal disputes.

Data may be stored longer in cases of legal disputes or statutory retention obligations.

Data Security

We implement technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access. These measures are continuously improved in line with technological developments.

No Automated Decision-Making

We do not use your personal data for automated decision-making, including profiling.

Change of Purpose

We only process your data for other purposes if permitted by law or if you have given consent. If we intend to process your data for purposes other than those for which it was collected, we will inform you in advance.

Processors and Recipients

We use external service providers (processors) to provide certain services. These service providers process data strictly according to our instructions under Art. 28 GDPR.

Recipients may include:

  • IT service providers (e.g. hosting, payment processing, IT security)

  • Government authorities where legally required

  • Auditors, banks, insurance companies, legal advisers

Personal data is only transferred to third parties if legally permitted or if you have consented.

Data Transfers to Third Countries

Your personal data may be transferred outside the European Economic Area (EEA). For countries without an EU adequacy decision, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)

  • Certifications under the EU-U.S. Data Privacy Framework

  • Binding corporate rules, or

  • Other suitable safeguards.

Cookies and Tracking

We use cookies and similar technologies for:

  • Technical functionality of our platform

  • Analytics and service optimization

  • Marketing and remarketing purposes

Legal basis: Consent under Art. 6 (1)(a) GDPR and § 25 TDDDG, unless technically necessary cookies are used under § 25 (2) TDDDG.

You can manage your consent via our cookie consent tool at any time.

Tools and Services Used
Google Analytics 4

(1) We use Google Analytics 4 provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA, USA (“Google”). The controller for EEA is Google Ireland Limited, Gordon House, Barrow Street, Dublin, Ireland.

(2) Google Analytics 4 helps analyze website usage. Google processes data including shortened IP addresses. Google stores the data for up to 2 months.

(3) Google Analytics 4 may use demographic information (age, gender, interests). Data is anonymized and cannot be linked to individuals.

(4) We may use Google Signals and User-ID for cross-device analytics if you have linked devices to a Google account and consented. Data remains statistical for us.

(5) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw consent at any time via our cookie banner.

(6) Google processes data in the USA. Under the EU-U.S. Data Privacy Framework, there is an adequate level of protection. Google is certified under the framework.

Further information: Google Privacy Policy.

Google Tag Manager

(1) We use Google Tag Manager from Google LLC. The controller for the EEA is Google Ireland Limited.

(2) Google Tag Manager does not itself store personal data but triggers other services. Your IP address may be transmitted to Google servers.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw your consent at any time via our cookie banner.

(4) Google processes data in the USA. There is an adequate level of protection under the EU-U.S. Data Privacy Framework.

Further information: Google Privacy Policy.

Meta Pixel

(1) We use Meta Pixel from Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA, USA. The controller for the EEA is Meta Platforms Ireland Ltd., Merrion Road, Dublin 4, Ireland.

(2) Meta Pixel tracks visitors after clicking a Meta ad and enables analysis of ad effectiveness and marketing optimization. Meta stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) The collected data is anonymous for us but may be linked to your Meta profile. Meta may use the data for its own advertising purposes. We cannot influence this processing.

Further information: Meta Privacy Policy.

You can disable “Custom Audiences” here. If you do not have a Facebook account, you can disable interest-based advertising from Meta via the European Interactive Digital Advertising Alliance.

(5) Meta processes your data also in the USA. Under the EU–U.S. Data Privacy Framework, there is an adequate level of protection, and Meta is certified under the framework.

Pinterest Tag

(1) We use Pinterest Tag from Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

(2) Pinterest Tag tracks user interactions and allows us to measure the effectiveness of Pinterest ads for statistical and marketing purposes. Pinterest stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) Data is anonymous for us as website operators but may be linked to user profiles at Pinterest. Pinterest may use this data for its own purposes. We cannot influence this processing.

Further information: Pinterest Privacy Policy.

Pinterest may transfer data to the USA under the EU-U.S. Data Privacy Framework.

Rights of Data Subjects

You have the following rights under the GDPR:

  • Right to access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to data portability (Art. 20 GDPR)

To exercise your rights, contact: daniel@wedwi.com

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).


This Privacy Policy is valid as of July 2025. We may update it as technology or laws evolve. We will inform you of changes where required.

 
Introduction

We, Efficient Operations GmbH, operate a SaaS platform that enables wedding couples to collect audio and video contributions from their guests and receive a personalized wedding montage. We take the protection of your personal data seriously and want to inform you about how we process your personal data.

Due to the EU General Data Protection Regulation (Regulation (EU) 2016/679; hereinafter “GDPR”), we are required to inform you transparently about the nature, scope, purposes, duration, and legal basis of our processing of your personal data.

These privacy notices inform you about the processing of your personal data by us.

Definitions

Following Art. 4 GDPR, the following definitions apply:

  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”). A person is identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

  • “Processing” means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure, or destruction.

  • “Controller” means the natural or legal person who determines the purposes and means of the processing of personal data.

  • “Processor” means a natural or legal person who processes personal data on behalf of the controller.

  • “Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Controller and Contact Details

Efficient Operations GmbH
Schürenbruch 13
32479 Hille, Germany
Email: daniel@wedwi.com

Obligation to Provide Personal Data

In general, you are not legally or contractually required to provide personal data. However, if you do not provide certain data, we may not be able to offer you our services or only to a limited extent.

Collection and Purpose of Personal Data

We process personal data for the following purposes:

  • Provision of our platform and services

  • Payment processing

  • Creating personalized wedding montages

  • Providing customer support and communication

  • Analytics and service optimization

  • Compliance with legal obligations (e.g. tax law)

  • Fraud prevention and IT security

Personal data may include:

  • Contact data (name, email, address)

  • Payment data

  • Usage data (IP address, log files, device info)

  • Uploaded audio and video content from guests

  • Other user-generated content

Important: Even if we do not link uploaded audio and video contributions to specific guest accounts, such contributions may contain personal data (e.g. faces, voices) that qualify as personal data under the GDPR.

Legal Basis of Processing

Processing personal data is generally prohibited unless permitted by law. The legal bases for processing are:

  • Art. 6 (1)(a) GDPR: Consent

  • Art. 6 (1)(b) GDPR: Performance of a contract

  • Art. 6 (1)(c) GDPR: Legal obligations

  • Art. 6 (1)(f) GDPR: Legitimate interests

For storing or accessing data on your device (cookies etc.), the legal basis is:

  • § 25 (1) TDDDG (German Telecommunications-Digital Services Data Protection Act) if consent is required; or

  • § 25 (2) TDDDG if strictly necessary for technical reasons.

Storage Period

We delete personal data as soon as it is no longer required for the purposes for which it was collected unless retention is required by law or necessary for legal disputes.

Data may be stored longer in cases of legal disputes or statutory retention obligations.

Data Security

We implement technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access. These measures are continuously improved in line with technological developments.

No Automated Decision-Making

We do not use your personal data for automated decision-making, including profiling.

Change of Purpose

We only process your data for other purposes if permitted by law or if you have given consent. If we intend to process your data for purposes other than those for which it was collected, we will inform you in advance.

Processors and Recipients

We use external service providers (processors) to provide certain services. These service providers process data strictly according to our instructions under Art. 28 GDPR.

Recipients may include:

  • IT service providers (e.g. hosting, payment processing, IT security)

  • Government authorities where legally required

  • Auditors, banks, insurance companies, legal advisers

Personal data is only transferred to third parties if legally permitted or if you have consented.

Data Transfers to Third Countries

Your personal data may be transferred outside the European Economic Area (EEA). For countries without an EU adequacy decision, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)

  • Certifications under the EU-U.S. Data Privacy Framework

  • Binding corporate rules, or

  • Other suitable safeguards.

Cookies and Tracking

We use cookies and similar technologies for:

  • Technical functionality of our platform

  • Analytics and service optimization

  • Marketing and remarketing purposes

Legal basis: Consent under Art. 6 (1)(a) GDPR and § 25 TDDDG, unless technically necessary cookies are used under § 25 (2) TDDDG.

You can manage your consent via our cookie consent tool at any time.

Tools and Services Used
Google Analytics 4

(1) We use Google Analytics 4 provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA, USA (“Google”). The controller for EEA is Google Ireland Limited, Gordon House, Barrow Street, Dublin, Ireland.

(2) Google Analytics 4 helps analyze website usage. Google processes data including shortened IP addresses. Google stores the data for up to 2 months.

(3) Google Analytics 4 may use demographic information (age, gender, interests). Data is anonymized and cannot be linked to individuals.

(4) We may use Google Signals and User-ID for cross-device analytics if you have linked devices to a Google account and consented. Data remains statistical for us.

(5) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw consent at any time via our cookie banner.

(6) Google processes data in the USA. Under the EU-U.S. Data Privacy Framework, there is an adequate level of protection. Google is certified under the framework.

Further information: Google Privacy Policy.

Google Tag Manager

(1) We use Google Tag Manager from Google LLC. The controller for the EEA is Google Ireland Limited.

(2) Google Tag Manager does not itself store personal data but triggers other services. Your IP address may be transmitted to Google servers.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw your consent at any time via our cookie banner.

(4) Google processes data in the USA. There is an adequate level of protection under the EU-U.S. Data Privacy Framework.

Further information: Google Privacy Policy.

Meta Pixel

(1) We use Meta Pixel from Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA, USA. The controller for the EEA is Meta Platforms Ireland Ltd., Merrion Road, Dublin 4, Ireland.

(2) Meta Pixel tracks visitors after clicking a Meta ad and enables analysis of ad effectiveness and marketing optimization. Meta stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) The collected data is anonymous for us but may be linked to your Meta profile. Meta may use the data for its own advertising purposes. We cannot influence this processing.

Further information: Meta Privacy Policy.

You can disable “Custom Audiences” here. If you do not have a Facebook account, you can disable interest-based advertising from Meta via the European Interactive Digital Advertising Alliance.

(5) Meta processes your data also in the USA. Under the EU–U.S. Data Privacy Framework, there is an adequate level of protection, and Meta is certified under the framework.

Pinterest Tag

(1) We use Pinterest Tag from Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

(2) Pinterest Tag tracks user interactions and allows us to measure the effectiveness of Pinterest ads for statistical and marketing purposes. Pinterest stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) Data is anonymous for us as website operators but may be linked to user profiles at Pinterest. Pinterest may use this data for its own purposes. We cannot influence this processing.

Further information: Pinterest Privacy Policy.

Pinterest may transfer data to the USA under the EU-U.S. Data Privacy Framework.

Rights of Data Subjects

You have the following rights under the GDPR:

  • Right to access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to data portability (Art. 20 GDPR)

To exercise your rights, contact: daniel@wedwi.com

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).


This Privacy Policy is valid as of July 2025. We may update it as technology or laws evolve. We will inform you of changes where required.

 
Introduction

We, Efficient Operations GmbH, operate a SaaS platform that enables wedding couples to collect audio and video contributions from their guests and receive a personalized wedding montage. We take the protection of your personal data seriously and want to inform you about how we process your personal data.

Due to the EU General Data Protection Regulation (Regulation (EU) 2016/679; hereinafter “GDPR”), we are required to inform you transparently about the nature, scope, purposes, duration, and legal basis of our processing of your personal data.

These privacy notices inform you about the processing of your personal data by us.

Definitions

Following Art. 4 GDPR, the following definitions apply:

  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”). A person is identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

  • “Processing” means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure, or destruction.

  • “Controller” means the natural or legal person who determines the purposes and means of the processing of personal data.

  • “Processor” means a natural or legal person who processes personal data on behalf of the controller.

  • “Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Controller and Contact Details

Efficient Operations GmbH
Schürenbruch 13
32479 Hille, Germany
Email: daniel@wedwi.com

Obligation to Provide Personal Data

In general, you are not legally or contractually required to provide personal data. However, if you do not provide certain data, we may not be able to offer you our services or only to a limited extent.

Collection and Purpose of Personal Data

We process personal data for the following purposes:

  • Provision of our platform and services

  • Payment processing

  • Creating personalized wedding montages

  • Providing customer support and communication

  • Analytics and service optimization

  • Compliance with legal obligations (e.g. tax law)

  • Fraud prevention and IT security

Personal data may include:

  • Contact data (name, email, address)

  • Payment data

  • Usage data (IP address, log files, device info)

  • Uploaded audio and video content from guests

  • Other user-generated content

Important: Even if we do not link uploaded audio and video contributions to specific guest accounts, such contributions may contain personal data (e.g. faces, voices) that qualify as personal data under the GDPR.

Legal Basis of Processing

Processing personal data is generally prohibited unless permitted by law. The legal bases for processing are:

  • Art. 6 (1)(a) GDPR: Consent

  • Art. 6 (1)(b) GDPR: Performance of a contract

  • Art. 6 (1)(c) GDPR: Legal obligations

  • Art. 6 (1)(f) GDPR: Legitimate interests

For storing or accessing data on your device (cookies etc.), the legal basis is:

  • § 25 (1) TDDDG (German Telecommunications-Digital Services Data Protection Act) if consent is required; or

  • § 25 (2) TDDDG if strictly necessary for technical reasons.

Storage Period

We delete personal data as soon as it is no longer required for the purposes for which it was collected unless retention is required by law or necessary for legal disputes.

Data may be stored longer in cases of legal disputes or statutory retention obligations.

Data Security

We implement technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access. These measures are continuously improved in line with technological developments.

No Automated Decision-Making

We do not use your personal data for automated decision-making, including profiling.

Change of Purpose

We only process your data for other purposes if permitted by law or if you have given consent. If we intend to process your data for purposes other than those for which it was collected, we will inform you in advance.

Processors and Recipients

We use external service providers (processors) to provide certain services. These service providers process data strictly according to our instructions under Art. 28 GDPR.

Recipients may include:

  • IT service providers (e.g. hosting, payment processing, IT security)

  • Government authorities where legally required

  • Auditors, banks, insurance companies, legal advisers

Personal data is only transferred to third parties if legally permitted or if you have consented.

Data Transfers to Third Countries

Your personal data may be transferred outside the European Economic Area (EEA). For countries without an EU adequacy decision, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)

  • Certifications under the EU-U.S. Data Privacy Framework

  • Binding corporate rules, or

  • Other suitable safeguards.

Cookies and Tracking

We use cookies and similar technologies for:

  • Technical functionality of our platform

  • Analytics and service optimization

  • Marketing and remarketing purposes

Legal basis: Consent under Art. 6 (1)(a) GDPR and § 25 TDDDG, unless technically necessary cookies are used under § 25 (2) TDDDG.

You can manage your consent via our cookie consent tool at any time.

Tools and Services Used
Google Analytics 4

(1) We use Google Analytics 4 provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA, USA (“Google”). The controller for EEA is Google Ireland Limited, Gordon House, Barrow Street, Dublin, Ireland.

(2) Google Analytics 4 helps analyze website usage. Google processes data including shortened IP addresses. Google stores the data for up to 2 months.

(3) Google Analytics 4 may use demographic information (age, gender, interests). Data is anonymized and cannot be linked to individuals.

(4) We may use Google Signals and User-ID for cross-device analytics if you have linked devices to a Google account and consented. Data remains statistical for us.

(5) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw consent at any time via our cookie banner.

(6) Google processes data in the USA. Under the EU-U.S. Data Privacy Framework, there is an adequate level of protection. Google is certified under the framework.

Further information: Google Privacy Policy.

Google Tag Manager

(1) We use Google Tag Manager from Google LLC. The controller for the EEA is Google Ireland Limited.

(2) Google Tag Manager does not itself store personal data but triggers other services. Your IP address may be transmitted to Google servers.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw your consent at any time via our cookie banner.

(4) Google processes data in the USA. There is an adequate level of protection under the EU-U.S. Data Privacy Framework.

Further information: Google Privacy Policy.

Meta Pixel

(1) We use Meta Pixel from Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA, USA. The controller for the EEA is Meta Platforms Ireland Ltd., Merrion Road, Dublin 4, Ireland.

(2) Meta Pixel tracks visitors after clicking a Meta ad and enables analysis of ad effectiveness and marketing optimization. Meta stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) The collected data is anonymous for us but may be linked to your Meta profile. Meta may use the data for its own advertising purposes. We cannot influence this processing.

Further information: Meta Privacy Policy.

You can disable “Custom Audiences” here. If you do not have a Facebook account, you can disable interest-based advertising from Meta via the European Interactive Digital Advertising Alliance.

(5) Meta processes your data also in the USA. Under the EU–U.S. Data Privacy Framework, there is an adequate level of protection, and Meta is certified under the framework.

Pinterest Tag

(1) We use Pinterest Tag from Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

(2) Pinterest Tag tracks user interactions and allows us to measure the effectiveness of Pinterest ads for statistical and marketing purposes. Pinterest stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) Data is anonymous for us as website operators but may be linked to user profiles at Pinterest. Pinterest may use this data for its own purposes. We cannot influence this processing.

Further information: Pinterest Privacy Policy.

Pinterest may transfer data to the USA under the EU-U.S. Data Privacy Framework.

Rights of Data Subjects

You have the following rights under the GDPR:

  • Right to access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to data portability (Art. 20 GDPR)

To exercise your rights, contact: daniel@wedwi.com

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).


This Privacy Policy is valid as of July 2025. We may update it as technology or laws evolve. We will inform you of changes where required.

 
Introduction

We, Efficient Operations GmbH, operate a SaaS platform that enables wedding couples to collect audio and video contributions from their guests and receive a personalized wedding montage. We take the protection of your personal data seriously and want to inform you about how we process your personal data.

Due to the EU General Data Protection Regulation (Regulation (EU) 2016/679; hereinafter “GDPR”), we are required to inform you transparently about the nature, scope, purposes, duration, and legal basis of our processing of your personal data.

These privacy notices inform you about the processing of your personal data by us.

Definitions

Following Art. 4 GDPR, the following definitions apply:

  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”). A person is identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

  • “Processing” means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure, or destruction.

  • “Controller” means the natural or legal person who determines the purposes and means of the processing of personal data.

  • “Processor” means a natural or legal person who processes personal data on behalf of the controller.

  • “Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Controller and Contact Details

Efficient Operations GmbH
Schürenbruch 13
32479 Hille, Germany
Email: daniel@wedwi.com

Obligation to Provide Personal Data

In general, you are not legally or contractually required to provide personal data. However, if you do not provide certain data, we may not be able to offer you our services or only to a limited extent.

Collection and Purpose of Personal Data

We process personal data for the following purposes:

  • Provision of our platform and services

  • Payment processing

  • Creating personalized wedding montages

  • Providing customer support and communication

  • Analytics and service optimization

  • Compliance with legal obligations (e.g. tax law)

  • Fraud prevention and IT security

Personal data may include:

  • Contact data (name, email, address)

  • Payment data

  • Usage data (IP address, log files, device info)

  • Uploaded audio and video content from guests

  • Other user-generated content

Important: Even if we do not link uploaded audio and video contributions to specific guest accounts, such contributions may contain personal data (e.g. faces, voices) that qualify as personal data under the GDPR.

Legal Basis of Processing

Processing personal data is generally prohibited unless permitted by law. The legal bases for processing are:

  • Art. 6 (1)(a) GDPR: Consent

  • Art. 6 (1)(b) GDPR: Performance of a contract

  • Art. 6 (1)(c) GDPR: Legal obligations

  • Art. 6 (1)(f) GDPR: Legitimate interests

For storing or accessing data on your device (cookies etc.), the legal basis is:

  • § 25 (1) TDDDG (German Telecommunications-Digital Services Data Protection Act) if consent is required; or

  • § 25 (2) TDDDG if strictly necessary for technical reasons.

Storage Period

We delete personal data as soon as it is no longer required for the purposes for which it was collected unless retention is required by law or necessary for legal disputes.

Data may be stored longer in cases of legal disputes or statutory retention obligations.

Data Security

We implement technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access. These measures are continuously improved in line with technological developments.

No Automated Decision-Making

We do not use your personal data for automated decision-making, including profiling.

Change of Purpose

We only process your data for other purposes if permitted by law or if you have given consent. If we intend to process your data for purposes other than those for which it was collected, we will inform you in advance.

Processors and Recipients

We use external service providers (processors) to provide certain services. These service providers process data strictly according to our instructions under Art. 28 GDPR.

Recipients may include:

  • IT service providers (e.g. hosting, payment processing, IT security)

  • Government authorities where legally required

  • Auditors, banks, insurance companies, legal advisers

Personal data is only transferred to third parties if legally permitted or if you have consented.

Data Transfers to Third Countries

Your personal data may be transferred outside the European Economic Area (EEA). For countries without an EU adequacy decision, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)

  • Certifications under the EU-U.S. Data Privacy Framework

  • Binding corporate rules, or

  • Other suitable safeguards.

Cookies and Tracking

We use cookies and similar technologies for:

  • Technical functionality of our platform

  • Analytics and service optimization

  • Marketing and remarketing purposes

Legal basis: Consent under Art. 6 (1)(a) GDPR and § 25 TDDDG, unless technically necessary cookies are used under § 25 (2) TDDDG.

You can manage your consent via our cookie consent tool at any time.

Tools and Services Used
Google Analytics 4

(1) We use Google Analytics 4 provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA, USA (“Google”). The controller for EEA is Google Ireland Limited, Gordon House, Barrow Street, Dublin, Ireland.

(2) Google Analytics 4 helps analyze website usage. Google processes data including shortened IP addresses. Google stores the data for up to 2 months.

(3) Google Analytics 4 may use demographic information (age, gender, interests). Data is anonymized and cannot be linked to individuals.

(4) We may use Google Signals and User-ID for cross-device analytics if you have linked devices to a Google account and consented. Data remains statistical for us.

(5) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw consent at any time via our cookie banner.

(6) Google processes data in the USA. Under the EU-U.S. Data Privacy Framework, there is an adequate level of protection. Google is certified under the framework.

Further information: Google Privacy Policy.

Google Tag Manager

(1) We use Google Tag Manager from Google LLC. The controller for the EEA is Google Ireland Limited.

(2) Google Tag Manager does not itself store personal data but triggers other services. Your IP address may be transmitted to Google servers.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can withdraw your consent at any time via our cookie banner.

(4) Google processes data in the USA. There is an adequate level of protection under the EU-U.S. Data Privacy Framework.

Further information: Google Privacy Policy.

Meta Pixel

(1) We use Meta Pixel from Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA, USA. The controller for the EEA is Meta Platforms Ireland Ltd., Merrion Road, Dublin 4, Ireland.

(2) Meta Pixel tracks visitors after clicking a Meta ad and enables analysis of ad effectiveness and marketing optimization. Meta stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) The collected data is anonymous for us but may be linked to your Meta profile. Meta may use the data for its own advertising purposes. We cannot influence this processing.

Further information: Meta Privacy Policy.

You can disable “Custom Audiences” here. If you do not have a Facebook account, you can disable interest-based advertising from Meta via the European Interactive Digital Advertising Alliance.

(5) Meta processes your data also in the USA. Under the EU–U.S. Data Privacy Framework, there is an adequate level of protection, and Meta is certified under the framework.

Pinterest Tag

(1) We use Pinterest Tag from Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

(2) Pinterest Tag tracks user interactions and allows us to measure the effectiveness of Pinterest ads for statistical and marketing purposes. Pinterest stores data for up to 180 days unless the user revisits the website.

(3) Legal basis: your consent under Art. 6 (1)(a) GDPR. You can change your cookie settings anytime.

(4) Data is anonymous for us as website operators but may be linked to user profiles at Pinterest. Pinterest may use this data for its own purposes. We cannot influence this processing.

Further information: Pinterest Privacy Policy.

Pinterest may transfer data to the USA under the EU-U.S. Data Privacy Framework.

Rights of Data Subjects

You have the following rights under the GDPR:

  • Right to access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to data portability (Art. 20 GDPR)

To exercise your rights, contact: daniel@wedwi.com

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).


This Privacy Policy is valid as of July 2025. We may update it as technology or laws evolve. We will inform you of changes where required.

 

Ready to Hear the Voices That Matter Most?

Ready to Hear the Voices That Matter Most?

Ready to Hear the Voices That Matter Most?

Just a few clicks, and your loved ones’ voices become memories you’ll keep forever.

Get Started Free

Get Started Free

Get Started Free

Ready to Hear the Voices That Matter Most?

Just a few clicks, and your loved ones’ voices become memories you’ll keep forever.

Get Started Free

120+ couples chose Wedwi this month for a digital guestbook that lasts forever!

Get Started

120+ couples chose Wedwi this month for a digital guestbook that lasts forever!

Get Started

120+ couples chose Wedwi this month for a digital guestbook that lasts forever!

Get Started

120+ couples chose Wedwi this month for a digital guestbook that lasts forever!

Get Started