Privacy Policy

1) Who We Are

Photav.io (“Photav”, “we”, “us”) is a wedding vendor marketplace based in South Africa. We process personal information in line with the POPI Act (POPIA) and—where applicable—the EU/UK GDPR.

Responsible party: Photav.io (Pty) Ltd
Email: support@photav.io

2) Scope

This policy covers data processed through our website, supplier dashboards, quotes/bookings, contract PDFs/signatures, payments, support, and marketing communications.

3) Data We Collect

3.1 Account & Profile

• Couples: name, email, event date(s)/preferences, messages.
• Suppliers: contact details, business profile, services/pricing, availability, media, documents, payout details.

3.2 Usage & Device

• IP, user agent, timestamps, pages/actions, approximate location, diagnostics.

3.3 Transactions

• Quotes, bookings, invoices, amounts, payment status. We do not store full card numbers.

3.4 Communications

• Support tickets, emails, in-app messages, notifications.

3.5 Sensitive

We do not intentionally collect special categories. If uploaded, we process only to deliver requested features.

4) How We Use Data

• Provide, operate, and secure the platform (auth, logging, fraud prevention).
• Enable discovery, messaging, quoting, bookings, contracts, and e-signatures.
• Process payments/payouts via third-party providers.
• Improve functionality and user experience (analytics, A/B tests, debugging).
• Send service notices and (with consent) marketing. You can opt out of marketing.
• Comply with legal obligations and enforce Terms.

5) Lawful Basis

• Contract – to deliver features you request.
• Legitimate interests – security, analytics, product improvement.
• Consent – marketing emails/optional cookies where required.
• Legal obligation – tax, accounting, regulators.

6) Sharing & Disclosures

• Between couples and suppliers for inquiries/bookings.
• Processors: hosting/CDN, analytics, comms, payment/payout providers.
• Corporate/legal events or requests where lawful.

We do not sell personal information.

7) Cookies & Tracking

We use necessary cookies for sessions and core features. With consent, we may use analytics/marketing cookies. Manage cookies via your browser and our banner (where shown).

8) Data Retention

We keep data while needed to provide services, meet legal duties, resolve disputes, and enforce agreements. Where feasible, we de-identify/aggregate after operational needs end.

9) Security

We apply administrative, technical, and physical safeguards (TLS, least-privilege, audits). No system is 100% secure—report concerns to support@photav.io.

10) Your Rights (POPIA/GDPR)

• Access, correct, delete; portability where feasible.
• Object/restrict processing; withdraw consent (where used).

Contact support@photav.io. You may also complain to SA’s Information Regulator or your local DPA.

11) Cross-Border Transfers

Data may be processed outside South Africa. We use lawful safeguards (adequacy, contractual clauses) for such transfers.

12) Children

The service is not directed to children. Do not use it if under the lawful age without parental consent.

13) Payments

Payments are handled by third-party gateways. We receive references/status/amounts, not full card PANs. Refunds/chargebacks follow provider rules and supplier policy.

14) Supplier Media & Content

Suppliers must own/hold rights to media/documents. They grant Photav.io a license to host and display content in the platform and related marketing to operate/promote listings.

15) Contact

Email: support@photav.io

16) Changes

We may update this Policy; the effective date shows the latest version. Material changes will be announced on the site or via email.