Skip to content

Limited Time Offer! 60% OFF 💍💖

Welcome guest

Please login or register

Privacy Policy

Last updated: 05/02/2025

Happy Ever Afters (“we,” “us,” or “our”) operates the Happy Ever Afters online store through Shopify (the “Site”), offering digital wedding invitation templates and planning tools (the “Services”). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Site or purchase our products. By accessing or using our Site, you acknowledge that you have read, understood, and agree to the practices described in this policy.

We are a UK-based business, but our primary customer base is in the United States. We comply with UK data protection laws (including the UK General Data Protection Regulation or “UK GDPR”) and with applicable US privacy laws (such as the California Consumer Privacy Act, “CCPA”) as required. Personal information we collect from customers in the EU/UK or California is processed in accordance with these laws.

Information We Collect

We collect information that you provide to us directly, as well as information that is collected automatically when you use our Site. The categories of personal data we collect include:

  • Contact and Account Information: When you place an order or create an account, we collect your name, email address, phone number, and (if applicable) billing and shipping addresses. This allows us to process your order and communicate with you.

  • Order and Transaction Information: We collect details of your purchases (such as products ordered, order date, and invoice information) and payment information (e.g., payment confirmation, last four digits of your credit card, or PayPal transaction ID). Note: We do not store full credit card numbers on our servers; all payment processing is handled securely by third-party payment providers.

  • Account Credentials: If you create an account with us, we collect your chosen username and a password. We store passwords in encrypted form.

  • Newsletter and Marketing Preferences: If you subscribe to our email newsletter or opt in for updates, we collect your email address and any preferences you select.

  • Customer Communications: We retain information you submit when you contact us (for example, via email or contact form) for customer service purposes. This may include the content of your messages and any additional data you provide.

  • Automatically Collected Data (Analytics and Usage Data): When you visit our Site, we and our service providers automatically collect certain information about your device and browsing actions. This may include your IP address, browser type and settings, operating system, device information, pages viewed, time and date of your visit, referral URL, and other log information. We use cookies and similar tracking technologies (see Cookies and Tracking Technologies below) to gather this data for analytics and site optimization.

  • Information from Third-Party Sources: We may receive personal information about you from third-party services we use. For example, Shopify (our e-commerce platform) and our payment processors (such as Stripe, PayPal, or Shopify Payments) may provide us with data necessary to complete transactions. We may also obtain information from our advertising, analytics, and social media partners (e.g., Google Analytics, Facebook) if you interact with our advertising or our social media pages. Any information we receive from third parties is treated in accordance with this Privacy Policy.

How We Use Your Information

We use your personal information for the purposes described below and for any other purpose for which you provide it. In particular, we use information to:

  • Process Orders and Deliver Products: We use your contact, order, and payment information to process and fulfill your purchases. This includes processing payments, sending order confirmations and receipts, delivering digital products to your email, and arranging any requested refunds or exchanges. Fulfilling these tasks is necessary to perform the contract you have with us (purchasing our products).

  • Provide Customer Service and Communications: We use your information to communicate with you about your orders, requests, and account. For example, we may send you emails or messages regarding order status, customer support inquiries, or important updates about our Services. We also use your information to improve our responsiveness and customer support.

  • Marketing and Promotional Communications: With your consent, we may use your email address to send newsletters, promotional offers, and information about new products or sales. You may opt out of receiving marketing emails at any time by clicking the “unsubscribe” link in any marketing email we send or by contacting us. Even if you opt out of marketing communications, we will still send you transactional and account-related messages (such as order confirmations).

  • Website and Service Improvement: We analyze usage data (e.g., site visits, popular products, and user behavior) to better understand how customers use our Site and Services. We use this information to improve our website, customize content, develop new products, and enhance the overall user experience. This may involve using third-party analytics tools.

  • Fraud Detection and Security: We use personal information to protect against and identify fraudulent or illegal activity. This includes verifying your information, monitoring transactions, and preventing unauthorized access to your account or our systems. Maintaining the security of our Services and our customers is in our legitimate business interest.

  • Legal Compliance: We use and retain information as necessary to comply with applicable laws and regulations. For example, we may retain transaction records and billing information to meet tax or accounting requirements. We may also use your information to enforce our terms of service or to cooperate with law enforcement if required.

How We Share Your Information

We may share your personal information with third parties in the following circumstances:

  • Service Providers: We engage third-party companies and individuals to perform services on our behalf. These include:

    • E-commerce and Hosting: Shopify hosts and runs our online store. Shopify may collect and store your personal information as part of providing the platform. You can review Shopify’s privacy policy for details on their practices.

    • Payment Processing: We use payment processors such as Stripe, PayPal, Shopify Payments, or others to handle credit card, debit card, and other payment transactions. These providers collect payment information directly to process your payment and share with us only the necessary transaction details. We do not have access to your full payment credentials.

    • Email and Marketing: We may use third-party email service providers (e.g., Shopify Email, Mailchimp, Klaviyo) to send newsletters and promotional emails. These providers use their own tracking technologies to measure email performance.

    • Fulfillment and Delivery: Although our products are digital, if we ever use any service to deliver content (e.g., digital download services or email delivery platforms), those services will have access to your email address or other delivery information.

    • Customer Support and IT Services: We may share information with customer support platforms or IT service providers that help us manage our website, data storage, and communications.

    • Analytics and Advertising: We use analytics and advertising services (such as Google Analytics, Facebook Pixel, or Shopify Audiences) to evaluate the performance of our marketing campaigns and site features. These services may receive personal information (e.g., via cookies or user IDs) to generate reports or serve targeted ads.

    These service providers are contractually bound to use your information only to provide their services to us and to maintain appropriate security measures.

  • Advertising Partners: We may share certain data with marketing and advertising partners to improve our advertising efforts. For instance, we might allow partners like Facebook or Google to match your hashed email address for ad targeting, or we may use Shopify Audiences to create lookalike audiences. These partners will use your information according to their own privacy policies. We do not sell your personal data to unrelated third-party marketers.

  • Legal Requirements and Safety: We may disclose personal information if required by law, subpoena, or court order. We may also disclose information to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or others. For example, we may share information to enforce our terms of service or if we believe disclosure is necessary to prevent illegal activity.

  • Business Transfers: If Happy Ever Afters is involved in a merger, acquisition, financing transaction, or sale of assets, your personal information may be transferred as part of that transaction. In such a case, we will require any new entity to honor this Privacy Policy.

  • With Your Consent: We may share information with third parties when you have given us consent to do so, such as integrating your account with a social media or wedding planning tool.

  • Sale of Personal Data (CCPA): We do not sell your personal information for monetary gain. Under the CCPA, a “sale” is broadly defined and can include sharing data for targeted advertising. We currently do not engage in activities that we would consider a sale of personal data. However, we may share information with service providers and advertising partners to improve our marketing; California residents have the right to opt out of such sharing (see Your Rights below).

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and collect information about how our Site is used. Cookies are small text files stored on your device. We use them for purposes such as:

  • Essential Cookies: Necessary for the basic functionality of the Site (e.g., remembering what’s in your shopping cart, enabling secure login, or ensuring website stability).

  • Performance and Analytics Cookies: We use cookies (including Google Analytics and Shopify’s built-in analytics) to collect data on website performance and user interactions. This helps us understand how visitors use the Site and how we can improve it. Data collected may include the pages you visit, time spent on each page, and how you navigate the Site.

  • Advertising and Targeting Cookies: We may use cookies and similar technologies to deliver personalized advertisements and to measure the effectiveness of our marketing efforts. This may involve third-party cookies placed by advertising networks (e.g., Facebook Ads, Google Ads). These partners may use cookies to track your visits to our Site and other sites to serve relevant ads to you.

Most web browsers allow you to control cookies through their settings. You can choose to refuse cookies or to delete existing cookies. Please note that if you disable or delete cookies, some features of our Site may not function properly. For information about the cookies used by Shopify, you may visit Shopify’s official Cookie Policy.

Data Retention and Security

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy and to meet legal requirements:

  • Retention Period: We will keep your personal data for as long as needed to serve the purposes described above (such as processing your order and supporting your account) and for a reasonable period afterward to comply with legal obligations (e.g., we retain transaction and billing records for up to 5 years to comply with tax and financial regulations). Once data is no longer needed for these purposes, we will securely delete or anonymize it.

  • Data Disposal: When personal data is no longer required, we securely erase or aggregate it so that you are no longer identifiable.

We take reasonable technical and organizational measures to protect your information from unauthorized access, disclosure, alteration, and destruction:

  • Security Measures: We use encryption (such as SSL/TLS) to protect data transmitted to our Site. We store data on secure servers and databases with access controls and firewalls. We also follow security best practices (such as regular software updates and encryption of sensitive data) to keep your information safe.

  • Payment Security: All payment transactions are processed through secure, PCI-compliant payment gateways. We do not store your full payment card details on our servers. Instead, those details are handled by our payment processors (e.g., Stripe, PayPal, Shopify Payments), which use industry-standard security measures to protect your financial information.

  • No Guarantee: Although we strive to protect your data, no security measure is 100% secure. We cannot guarantee absolute security of any data you transmit to us or from our Site. Please take precautions when transmitting sensitive information over the internet. If you suspect any security breach or misuse of your information, please contact us immediately.

Children’s Privacy

Our Site and Services are intended for general audiences and not for children. We do not knowingly collect or process personal information from anyone under the age of 16 (or under 13 in the United States). If we learn that we have inadvertently collected personal data from a child under the applicable age limit, we will promptly delete that information.

Under UK/EU law, parental consent is required to process personal data of children under 16; under the US Children’s Online Privacy Protection Act (COPPA), parental consent is required for children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so that we can delete it. We also do not knowingly sell personal information of minors.

Your Rights

Depending on where you live and the applicable laws, you may have certain rights regarding your personal information:

  • Right to Access (Know): You may request access to the personal information we hold about you. This includes the right to know what categories of data we have collected, the purposes of processing, and to obtain a copy of your data in a readable format.

  • Right to Correction (Rectification): You may request that we correct or update any inaccurate or incomplete personal information we maintain about you.

  • Right to Deletion (Erasure): You may request that we delete your personal information, subject to certain legal obligations or exceptions (for example, we may retain data to comply with tax laws or to resolve disputes).

  • Right to Restrict Processing: You may have the right to request that we restrict the processing of your personal information (for instance, while a dispute is being resolved).

  • Right to Data Portability: Where applicable (such as under UK/EU law), you may request a portable copy of your personal information in a structured, machine-readable format, to the extent this is possible.

  • Right to Object: You may object to our processing of your personal data on grounds relating to your particular situation (for example, if we are relying on legitimate interests or direct marketing). If you object, we will no longer process the data unless we can demonstrate compelling legitimate grounds or need it for legal claims.

  • Right to Withdraw Consent: If we rely on your consent to process your data (for example, for email marketing), you may withdraw that consent at any time by unsubscribing or contacting us. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

  • Marketing Opt-Out: You can opt out of receiving marketing emails from us at any time by clicking the “unsubscribe” link in our emails or by contacting us. Once you opt out, we will stop sending you promotional emails (though we may still send you non-promotional, transactional messages).

  • California Privacy Rights: If you are a California resident, you have additional rights under the CCPA and CPRA. These include the right to request: (a) disclosure of the categories and specific pieces of personal information we have collected about you, the sources of that information, the purpose for collecting it, and the categories of third parties with whom we share it; (b) deletion of your personal information (subject to exceptions); and (c) opt-out of the “sale” or “sharing” of your personal information. We do not sell personal information for monetary gain, but we may share it with service providers for marketing purposes (which under CCPA is considered a “share”). California residents may opt out of such sharing. We will not discriminate against you for exercising any of these rights.

To exercise any of these rights, please contact us as described below. We may require you to verify your identity before fulfilling your request, and we will respond in accordance with applicable law (generally within 30 or 45 days, depending on jurisdiction). You may also designate an authorized agent to submit requests on your behalf (we may require proof of authorization).

Legal Basis for Processing Personal Data

For individuals in the UK/EU, the UK GDPR requires that we have a lawful basis to process personal data. The legal bases on which we rely include:

  • Performance of a Contract: Processing that is necessary to fulfill our contract with you (e.g., to process your order, deliver products, or provide customer support).

  • Consent: Processing based on your consent, such as when you agree to receive marketing emails or subscribe to newsletters. You may withdraw consent at any time (see Your Rights).

  • Legal Obligation: Processing necessary for us to comply with legal obligations (for example, tax, accounting, or data retention laws).

  • Legitimate Interests: Processing for our legitimate business interests (or those of third parties) when those interests are not overridden by your rights. This includes activities such as improving our Services, detecting fraud, and maintaining the security of our website. Before relying on legitimate interests, we balance our interests against your privacy interests.

We will inform you if we process your data on the basis of consent and we will not collect more data than necessary for the purposes identified.

International Data Transfers

Because we operate globally (we are UK-based with many customers in the US), your personal information may be transferred to, stored, and processed in countries outside your country of residence. For example, our Shopify store and servers may be located in the United States. When transferring personal data from the UK/EU to other countries, we ensure appropriate safeguards are in place. For transfers from the UK/EU to the United States, we rely on the UK’s International Data Transfer Addendum to Standard Contractual Clauses (also known as UK Model Clauses). We will only transfer your personal data to jurisdictions that the UK recognizes as providing an adequate level of protection or under contractual frameworks approved by UK data protection authorities. By using our Site and services, you consent to the transfer of your data as described here.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, our Services, or applicable laws. When we make material changes, we will update the “Last updated” date above and, if required, notify you (for example, by email or by posting a notice on our Site). We encourage you to review this page periodically for the latest information. Your continued use of our Site after any changes to this policy constitutes your acceptance of those changes.

Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, or if you wish to exercise your rights, please contact us:

  • Email: miahappyeverafters@gmail.com

  • Phone: (754) 287-6955

Your Cart

Your cart is currently empty

Search our store