Privacy Policy and Data Security

1. Data We Access from Google

When you sign in to our application using your Google account, we request your permission to access the following basic information:

• Your Name: We use your name to personalize your experience within the application (e.g., "Welcome, Jane!").

• Your Email Address: Your email serves as the primary identifier for your account, ensuring it is unique and secure. We also use it for essential communication related to your account.

• Your Profile Picture: We display your profile picture in the app's user navigation to help you identify that you are signed in.

We only request the minimum data necessary to create and manage your account.

2. How We Use Your Data

The Google user data we access is used strictly for core application functionality:

• Account Management: To create, secure, and manage your user account.

• Personalization: To display your name and profile picture within the app for a personalized experience.

• Service Delivery: To associate you with the wedding plans, guest lists, budgets, and other data you create within the application.

3. How We Share Your Data

We do not sell or rent your Google user data to any third parties. Data is shared only under the following limited circumstances:

• With Google (as a Service Provider): Our application is built on Google's Firebase platform. Therefore, your data (including authentication information and application data) is securely stored and processed within Google's infrastructure (specifically Firebase Authentication, Firestore, and Cloud Storage for Firebase). This is essential for the application to function.

• For Legal Compliance: We may disclose your information if required by law or to protect the rights and safety of our users and our service.

4. Data Storage and Protection

We are committed to protecting your data and have implemented the following security measures:

• Secure Authentication: We rely on Google Sign-In and Firebase Authentication, which provide a robust and secure system for user login.

• Data Encryption: All data transmitted between your browser and our services is encrypted using HTTPS (TLS). Data stored in our Firebase database is also encrypted at rest by Google.

• Access Controls: We use strict Firebase Security Rules to ensure that users can only access their own personal and wedding-related data.

5. Data Retention and Deletion

• Data Retention: We retain your account information and wedding data as long as your account is active to ensure you have continuous access to our services.

• Data Deletion: You have full control over your data. You can request the permanent deletion of your account and all associated data at any time. To do so, please send an email to support@mywedding.org.lk. We will process your request and permanently delete your data from our systems within 30 days.