Privacy Policy

Last updated: April 17, 2026

VowFolio ("we", "our", "us") is a studio management platform for wedding photographers. This Privacy Policy explains how we collect, use, and protect your information when you use our iOS app and web services.

1. Information We Collect

Account information: When you create an account, we collect your email address and password. You may also provide your name, studio name, phone number, location, and profile photo.

Wedding and client data: Information you enter about your clients and weddings, including names, dates, venues, contacts, timelines, shot lists, payments, notes, and uploaded photos.

Client-submitted data: When your clients fill out questionnaires, we collect the information they provide (names, phone numbers, wedding preferences, etc.).

Device information: We collect device tokens for push notifications. We do not collect device identifiers for tracking purposes.

2. How We Use Your Information

To provide and maintain the VowFolio service
To send transactional emails (questionnaire invites, contract signing, feedback requests)
To deliver push notifications you have enabled
To power the AI assistant feature (see Section 7)
To display your profile to other photographers in the Crew directory (if you enable discoverability)

3. Legal Basis for Processing

We process your personal data under the following legal grounds under the GDPR:

Performance of a contract — to provide the VowFolio service you have signed up for
Legitimate interests — to improve, secure, and maintain the service, and to prevent abuse
Consent — for optional features such as the AI assistant, push notifications, and Crew directory discoverability
Legal obligation — where required to comply with applicable law (e.g., tax, accounting, or law enforcement requests)

4. Data Storage and Security

Your data is stored securely on Supabase (hosted on AWS in the EU-West-1 region). All data is encrypted in transit (TLS) and at rest. We use Row Level Security (RLS) to ensure users can only access their own data.

Our website is hosted on Cloudflare Pages. Emails are sent via Resend.

We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

5. Data Sharing and International Transfers

We do not sell your data. We share data only with the following service providers, solely to operate the service:

Supabase — database and authentication (EU)
Cloudflare — web hosting and CDN (global edge network)
Resend — transactional email delivery
Apple Push Notification Service — push notifications
Anthropic (Claude) — AI assistant (see Section 7)
Apple MapKit — venue search and address lookup

International transfers. Some of our service providers (including Anthropic and Cloudflare) may process data outside the European Economic Area (EEA), including in the United States. In such cases we ensure appropriate safeguards are in place, such as the European Commission's Standard Contractual Clauses or equivalent mechanisms.

6. Cookies and Tracking

We do not use cookies or similar technologies for tracking or advertising purposes. Essential cookies may be used for basic functionality (e.g., remembering your language preference on the website). Our iOS app does not include third-party analytics or tracking SDKs.

7. AI Assistant

VowFolio includes an optional AI assistant powered by Anthropic's Claude. When you use the AI feature, relevant wedding context (names, dates, timeline, notes) is sent to Anthropic's API to generate responses. This data is not used by Anthropic to train their models.

You can disable AI features at any time in your settings, and you are not required to use the AI assistant to use VowFolio.

8. Crew Directory

If you enable discoverability in your profile, your name, studio name, location, bio, and contact information will be visible to other VowFolio users in the Crew directory. You can disable this at any time in your profile settings.

9. Client Data

As a photographer using VowFolio, you are the data controller for your clients' information. You are responsible for obtaining appropriate consent from your clients before collecting their data through VowFolio (questionnaires, contracts, feedback forms). We act as a data processor on your behalf.

10. Your Rights

Under applicable data protection law (including the GDPR), you have the right to:

Access your data at any time through the app
Correct your data by editing it in the app
Delete your account and all associated data through the Profile section in the app
Export your data by contacting us
Object to certain processing activities, including processing based on legitimate interests
Restrict processing of your data in specific circumstances
Withdraw consent at any time for processing based on consent (e.g., AI features, notifications)

You also have the right to lodge a complaint with your local data protection authority. In Norway this is Datatilsynet.

11. Data Retention

We retain your data for as long as your account is active. When you delete your account, your data will be deleted within a reasonable timeframe, subject to technical and backup limitations. Residual data may remain in encrypted backups for a short period before it is overwritten in the ordinary course of backup rotation.

12. Children's Privacy

VowFolio is designed for professional photographers and is not intended for use by children under 16. We do not knowingly collect data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of VowFolio after changes constitutes acceptance of the updated policy.

14. Contact

If you have questions about this Privacy Policy, contact us at:

Email: [email protected]

Website: vowfolio.com