At Proposal Events ("we", "us", "our"), your privacy matters deeply to us. This Privacy Policy explains what personal information we collect when you visit proposal.events, how we use it, and what rights you have over your data.
By using our website you agree to the practices described in this Policy. If you do not agree, please discontinue use of the site.
Who We Are
Proposal Events operates the website accessible at proposal.events. We provide informational content, guides and resources to help people plan marriage proposals around the world.
For the purposes of applicable data-protection law (including the EU General Data Protection Regulation — "GDPR" — and the UK GDPR), Proposal Events is the data controller of personal information collected through this site.
Information We Collect
Information you provide directly
- Contact form submissions — name, email address and the content of your message when you get in touch with us.
- Newsletter sign-up — email address and (optionally) first name.
- Comments or reviews — if you submit a comment on our site, we collect your name, email and the comment text.
Information collected automatically
- Log data — IP address, browser type and version, pages visited, time and date of visit, time spent on pages, referring URL.
- Device data — device type, operating system, screen resolution.
- Cookie & tracking data — see Section 5 for full details.
Information from third parties
We may receive aggregated analytics data from third-party services (e.g. Google Analytics) that we use to understand how visitors interact with our site. This data is anonymised or pseudonymised wherever possible.
How We Use Your Data
| Purpose | Data used | Basis |
|---|---|---|
| Respond to enquiries & support requests | Name, email, message | Legitimate interest / contract |
| Send newsletter & content updates | Email, first name | Consent |
| Improve website performance & UX | Log data, analytics | Legitimate interest |
| Prevent fraud & ensure security | IP address, log data | Legitimate interest |
| Comply with legal obligations | Any relevant data | Legal obligation |
We will never sell your personal data to third parties, nor use it for advertising purposes unrelated to our own services.
Legal Basis for Processing
Where the GDPR or UK GDPR applies, we rely on the following legal bases:
- Consent — where you have actively opted in (e.g. newsletter subscription). You may withdraw consent at any time.
- Legitimate interests — to operate and improve the website, respond to enquiries and prevent fraud, where these interests are not overridden by your rights.
- Legal obligation — where we are required to process data to comply with a legal requirement.
- Contractual necessity — where processing is needed to fulfil a contract with you.
Cookies & Tracking Technologies
We use cookies and similar tracking technologies to operate and improve the site. A cookie is a small text file stored on your device.
Types of cookies we use
| Category | Purpose | Can be declined? |
|---|---|---|
| Strictly necessary | Core website functionality (session management, security) | No |
| Analytics | Understanding site traffic and visitor behaviour (Google Analytics) | Yes |
| Functional | Remembering preferences (e.g. language, cookie consent state) | Yes |
| Marketing | We do not currently run marketing or advertising cookies | N/A |
Sharing Your Data
We do not sell, rent or trade your personal information. We share data only in the following limited circumstances:
- Service providers — trusted third parties that help us operate the site (e.g. hosting provider, email delivery service, analytics platform). They process data only on our instructions.
- Legal requirements — if required by law, court order or governmental authority.
- Business transfers — in the event of a merger, acquisition or sale of assets, your data may be transferred. We will notify you before this occurs.
- With your consent — for any other purpose, only with your explicit agreement.
Where we transfer data to service providers outside the European Economic Area, we ensure appropriate safeguards are in place (e.g. Standard Contractual Clauses).
Data Retention
We keep your personal data only as long as necessary for the purposes described in this Policy:
- Contact enquiries — up to 2 years from the date of enquiry, unless an ongoing relationship requires longer retention.
- Newsletter subscribers — until you unsubscribe. We will delete your data promptly on unsubscription.
- Analytics data — anonymised or aggregated after 26 months (Google Analytics default).
- Legal obligations — where required by law, data may be retained for longer periods.
Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Right of access — request a copy of the personal data we hold about you.
- Right to rectification — request correction of inaccurate or incomplete data.
- Right to erasure ("right to be forgotten") — request deletion of your data where there is no lawful reason to retain it.
- Right to restrict processing — request that we limit how we use your data in certain circumstances.
- Right to data portability — receive your data in a structured, commonly used format.
- Right to object — object to processing based on legitimate interests, including direct marketing.
- Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure or destruction. These include:
- HTTPS encryption on all pages of the website
- Access controls limiting who can access personal data internally
- Regular review of our data-handling practices
- Use of reputable, security-certified hosting and email providers
No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach that poses a high risk to your rights, we will notify you without undue delay as required by law.
Children's Privacy
Our website is intended for users aged 18 and over. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal data, please contact us at privacy@proposal.events and we will delete it promptly.
International Data Transfers
Our website and servers may be located outside your country of residence. By using the site, you acknowledge that your information may be processed in countries with different data-protection laws than your own.
When we transfer personal data from the European Economic Area (EEA) or UK to a third country, we ensure at least one of the following safeguards applies:
- The country has been deemed adequate by the European Commission or UK authorities
- Standard Contractual Clauses (SCCs) approved by regulators are in place
- An equivalent safeguard recognised by applicable law
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page.
We encourage you to review this Policy periodically. Continued use of the website after changes are posted constitutes your acceptance of the updated Policy.
Contact Us
If you have any questions, concerns or requests relating to this Privacy Policy or your personal data, please reach out to us:
Proposal Events — Privacy Team
We aim to respond to all privacy-related enquiries within 30 days.
privacy@proposal.eventsContact form → proposal.events/contact
If you are located in the EU or UK and are not satisfied with our response, you have the right to lodge a complaint with your national data-protection authority — for example, the ICO (UK) or your local EU supervisory authority.