Privacy notice

Privacy for orders, accounts, and personal pages

This notice explains which personal data we process in Moments when you create, order, pay for, use, or manage a digital page or customer account.

1. Controller and contact

The controller is the Moments operator named in the legal notice. For privacy inquiries, please use the contact details listed there.

2. Data processed

We process data such as email address, customer account ID, order number, checkout token, customer country, product, plan, amount, currency, payment method, payment status, invoice data, and the content entered for the personal page, including names, texts, dates, locations, gift and reveal content, images, image titles, quiz questions, RSVP details, allergy notes, messages, and voting data.

3. Purposes and legal bases

Processing is carried out to perform the contract, create and unlock the page, verify payment, issue invoices, communicate with customers, manage accounts, provide exports, handle deletion requests, prevent misuse, and maintain technical security. Legal bases include contract performance, legal obligations, legitimate interests, and consent where required in checkout or for specific features.

4. Payment processing

For bank transfers, we process reference, status, and assignment data internally. For PayPal, PayPal order and capture IDs as well as payment status are stored. International orders are processed through Stripe Managed Payments; Stripe may process receipts, taxes, and payment data as merchant of record. Moments does not store credit card numbers or full payment instrument details.

5. Emails, invoices, and notifications

We use your email address for order confirmations, payment information, unlock links, password reset links, account messages, and support communication. Internal notifications inform the operator about new orders. Invoices and receipts may be generated and stored to meet tax obligations.

6. Access, security, and technical data

Passwords are stored as hashes; checkout tokens, reset tokens, and access details are used for secure assignment. The application may use technically necessary cookies for language, login, session, and protection functions. Server and security logs may include IP address, time, URL, user agent, and error data.

7. Recipients and service providers

Data may be transferred to hosting, email, payment, and technical service providers where needed for operation, payment, security, or communication. This may include PayPal and Stripe. Service providers are contractually bound where possible; statutory disclosure or retention obligations remain reserved.

8. Retention, archiving, and deletion

Active order and page data are stored as long as needed for delivery, contract handling, security, or evidence. Paid pages are generally archived or removed from active data after 6 months, or after 18 months for Wedding Plus; image folders may be stored as archive files. When an account is deleted, the account, active and archived orders, active pages, image folders, and image archives are deleted unless statutory retention duties prevent deletion.

9. Data export and excluded security data

In the customer account, you can request a ZIP data export. It may contain account, order, archived order, page, image, and invoice data. Password hashes, reset tokens, checkout tokens, and page password hashes are excluded for security reasons.

10. Your rights

Subject to the GDPR, you have rights of access, correction, deletion, restriction, portability, objection, and complaint with a competent data protection authority. Invoice or business records that must be retained by law may be excluded from immediate deletion.