PRIVACY POLICY

LAST UPDATED: 30/04/2025

Elope Easy/ Isabella Monga (“we”, “our”, “us”) operates the website www.elope-easy.co.uk (“Site”), built using Squarespace. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Site in accordance with the UK GDPR, EU GDPR, and applicable data protection laws. Elope Easy also complies with the UK Data Protection Act 2018, ePrivacy Directive (EU Cookie Law), PECR, and Consumer laws.

The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the website and website owners. Furthermore, the way this website processes, stores and protects user data and information will also be detailed within this policy.

1. WHO WE ARE

We are the data controller of the personal data collected via our Site.
Company Name: Elope Easy
Email: elope.easy@outlook.com
Data Protection Officer: Isabella Monga

2. THE WEBSITE

This website and its owners (Elope Easy/ Isabella Monga) take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website complies with all UK and EU laws and requirements for user privacy.

3. USE OF COOKIES

This website uses cookies to better the users experience while visiting the website. These may include:

  • Strictly Necessary Cookies – for core site functionality.

  • Analytics Cookies – to measure traffic and performance (e.g., Google Analytics).

  • Marketing Cookies – for advertising and retargeting (if used).

Where applicable this website uses a cookie control system allowing the user on their first visit to the website to allow or disallow the use of cookies on their computer/device. This complies with recent legislation requirements for website’s to obtain explicit consent from users before leaving behind or reading files such as cookies on a user’s computer/device. Cookies are small files saved to the user’s computers hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.

Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and it’s external serving vendors.

This website uses tracking software to monitor its visitors to better understand how they use it.

This software is provided by Squarespace Analytics, Google Analytics and Google Ads, which use cookies to track visitor usage. The software will save a cookie to your computers hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information. You can read Google’s privacy policy here for further information http://www.google.com/privacy.html.

Other cookies may be stored on your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.

You can manage cookies via the banner or through your browser settings. For more information, see our Cookie Policy.

4. DATA PROTECTION

As you may imagine we hold a lot of personal and sensitive data on our clients. The security of that data is very important to me, and it should be to every supplier you use.  This website gives an indication of what you should look for from every wedding supplier you use, large or small.

4.1 The Six General Principles for General Data Protection Regulations (GDPR)

1. Lawfulness, fairness and transparency – Personal data must be processed lawfully, fairly and in a transparent manner;

I won’t do anything with your data that I wouldn’t want to do to my own.

2. Purpose limitation – Personal data must be collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes (with exceptions for public interest, scientific, historical or statistical purposes);

I will only ask for and collect data that I NEED to run my business.  Anything else I am not bothered about.

3. Data minimisation – Personal data must be adequate, relevant and limited to what is;

I don’t ask you for information that I don’t need to help me do my job.

4. Accuracy – Personal data must be accurate and, where necessary, kept up to date. Inaccurate personal data should be corrected or deleted;

I try to be accurate, but if you move house, change emails etc then let me know. If you want to know what I hold just ask. If you want me to remove it all (including photographs) or update/amend it – just ask.

5. Retention – Personal data should be kept in an identifiable format for no longer than is necessary (with exceptions for public interest, scientific, historical or statistical purposes);

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations.

6. Integrity and confidentiality – Personal data should be kept secure.

My business and your data are about as secure as I can reasonably make it.

4.2 WHAT DATA WE COLLECT

Elope Easy will be what’s known as the ‘Controller’ of the personal data you provide to us. We only collect basic personal data about you which does not include any special types of information or location-based information. This does, however, include name, address, email etc. We may collect and process the following categories of personal data:

  • Contact Information (e.g. name, email, phone number) – if you fill out a form or contact us.

  • Browsing Data (e.g. IP address, device type, browser) – collected automatically via Squarespace and third-party analytics. See under “IP address”.

4.3 HOW WE COLLECT DATA

  • Contact forms you complete on our site

  • Automated tracking tools and cookies

  • Email communications

  • Third-party analytics tools (e.g. Google Analytics)

4.4 WHY WE COLLECT YOUR DATA

We process your data for the following purposes under the lawful bases set out in GDPR:

  • To provide our services and respond to enquiries (Legitimate Interest / Contract)

  • To process transactions and deliver orders (Contract)

  • To manage and improve our website (Legitimate Interest)

  • To comply with legal obligations (Legal Obligation)

4.5 DATA SHARING AND TRANSFERS

We may share your personal data for the sole purposes of providing you with the services outlined in our Terms and Conditions. When this happens, we only share your data with:

  • Squarespace, Inc. (hosting provider)

  • Payment processors

  • Analytics providers (e.g., Google Analytics)

We ensure all third-party service providers comply with GDPR by executing Data Processing Agreements (DPAs) where required. No 3rd parties have access to your personal data unless the law allows them to do so.

Your personal data may be transferred outside the UK/EU to Squarespace’s servers in the US, as Squarespace is a US-based company. These transfers are legal under GDPR if the provider uses Standard Contractual Clauses (SCCs) or similar safeguards. Squarespace does use SCCs and meets GDPR transfer requirements.

4.6 HOW LONG DO WE KEEP YOUR DATA

Data from inquiries may be securely stored for up to 36 months; transaction data may be retained for up to 6 years for legal requirements. We would, however, like to use your name and email address to inform you of our future offers and similar products. This information is not shared or sold to third parties for any purposes and you can unsubscribe at any time via phone, email or our website. Please indicate below if this is something you would like to sign up to.

4.7 WHERE IS YOUR DATA STORED

Squarespace data is primarily stored on Amazon Web Services (AWS) servers. AWS data centers may be located in the US, but may include other global regions depending on load balancing and service design.

5. HOW YOUR DATA IS PROTECTED

  • We only collect data that is necessary for the purposes of our business, as outlined above.

  • We provide a privacy policy.

  • We collect explicit consent before loading non-essential cookies

  • We use reputable platforms and services to operate our business (Squarespace, Microsoft, Google, Adobe)

  • Squarespace, by default, uses industry-standard encryption (HTTPS), enforced across the entire website.

  • Squarespace encrypts form submissions and sends them via secure email to ensure any email or contact forms are secure.

  • Data at rest and in transit is encrypted by Squarespace.

  • Backups and monitoring are handled by Squarespace.

  • Access controls – Only the admin (Isabella Monga) can view stored submissions. Where access is given to another person (I may be ill, away etc) then an audit is carried out to ensure that only the required information is accessed and the passwords are changed.

  • We don’t share or sell user data without proper consent.

  • All of the IT is secured using strong password protection, using a mixture of alphanumeric and symbols.

  • Portable hard drives for use off-site and on location will not have personal information stored on them, and where they do they will have password-protected encryption at the drive level.

  • I ensure all my servers, routers, laptops, desktops, smartphones etc are kept up to date with the relevant security patches and updates by the manufacturer.

6. IP ADDRESSES

GDPR classes IP address as personal information, so I have to mention this.

Some of the cookies mentioned above will collect your IP address. The vast majority of this website’s users will use private Internet Service Providers (ISP) that also use something called Dynamic Host Configuration Protocol (DHCP).  This means every time you log onto the internet you get a different IP address. 

Meaning I can’t track you personally. The IP addresses will point to your ISP, and they would not give me any details unless ordered to do so by a court order.  Users of my website who log in using corporate internet link will have their IP address taken.  Again however that IP address would point to the business NOT to the individual.

7. CONTACT & COMMUNICATION

Users contacting this website and/or its owners do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use, as detailed in the Data Protection Act 1998.

Every effort has been made to ensure a safe and secure form to email submission process but advises users using such form to email processes that they do so at their own risk.

This website and its owners use any information submitted to provide you with further information about the products/services they offer or to assist you in answering any questions or queries you may have submitted.

8. PROCESSING & STORAGE OF DATA

Your personal information and any other data you give will be stored, securely, for a minimum of 36 months.  After that time you will be asked if you wish to remain in our database.  If you do not you will be removed.  If you do not respond within 5 working days you will be removed.  Your data will be deleted and/or destroyed.

This does not apply to wedding photographs or other photographs kept online securely, nor does it apply to invoices/receipts etc which I need to keep, legally, for a period of 6 years.

If you wish the photographs to be destroyed/deleted then I will do this also. It is YOUR responsibility to ensure you have backups.

I do not use any software to automatically process your biometric data – i.e. I don’t use facial indexing that can be found in Adobe Lightroom.

9. REQUESTING COPIES OR AMENDEMENTS

If you wish to request a copy or your personal data, or correct inaccuracies, please contact me on elope.easy@outlook.com. There is no charge for this and will get the information to you, in a form you can use, within 28 days.

10. RIGHT TO EREASURE

If you wish for your personal data to be deleted permanently then please contact me using the contact form at the bottom of the page. This includes all your photos.

You will need to provide me suitable and verified identification, such as –

  • Copy of passport showing passport photograph page

  • Copy of Drivers Licence

  • Utility Bill showing the home address that matches your driver’s license

  • Date of event


I will NOT be able to delete data that is under 7 years old due to HMRC rules. For example, this will include contracts, invoices etc.

Please note

Deletion is permanent.  Your photographs will be permanently deleted once you have proven your identification sufficiently. They will be deleted from all my archive hard drives, from my laptop/desktop IT systems, from any cloud-based storage system, from my website, social media, and from the online gallery.

11. EXTERNAL LINKS

Although this website only looks to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website (External links are clickable text/banner/image links to other websites).

The owners of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should, therefore, note they click on external links at their own risk and this website and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.

12. SOCIAL MEDIA PLATFORMS

Communication, engagement and actions taken through external social media platforms that this website and its owners participate on are customs to the terms and conditions as well as the privacy policies held with each social media platform respectively.

Users are advised to use social media platforms wisely and communicate/engage upon them with due care and caution in regard to their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.

This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.

12.1 Shortened Links in Social Media

This website and its owners through their social media platform accounts may share web links to relevant web pages. By default, some social media platforms shorten lengthy URLs.

Users are advised to take caution and good judgement before clicking any shortened URLs published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine URLs are published many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.

13. AGREEING OR NOT AGREEING

All the contact forms will have a checkbox for you to tick to show you have read, understood and agree to this Privacy Policy.

You are prevented from sending information to Elope Easy unless that checkbox is ticked.

If you DO NOT AGREE do not tick the box; however, you will not be able to contact Elope Easy via the contact form. You can still do so using email or mobile.

14. RIGHT TO COMPLAIN

If at any point you believe the information we process on you is incorrect, you request to see this information and even have it corrected or deleted. If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Officer who will investigate the matter.

If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office (ICO).

Our Data Protection Officer is Isabella Monga and you can contact her at elope.easy@outlook.com