Privacy Policy

Last updated: 2026

This policy explains what personal data PhotoConnect collects, why, and your rights under the GDPR. We are the data controller.

What we collect

Account data (name, email, password hash), profile data you add (photos, bio, city, links), bookings and messages, and basic technical data (IP, device/browser) used for security and abuse prevention.

Why we use it

To run the marketplace (matching clients and photographers, bookings, messaging), to keep accounts secure (2FA, login alerts, rate limits), to send transactional emails, and to comply with the law.

Sharing

We use trusted processors to operate the service: Resend (email delivery) and Cloudflare (network/DNS). We don't sell your data. A photographer's public profile is visible to everyone; private contact details can be hidden until a booking is confirmed.

Your rights (GDPR)

You can access, correct, export, or delete your data at any time from your Account page (one-click data export and account deletion). You can also object to processing or contact us with any request.

Retention & security

We keep your data while your account is active. Passwords are hashed, 2FA is available and required for key actions, and access is limited. Deleting your account removes your personal data.

Cookies

We use essential cookies only — needed to keep you logged in and to protect the site. We don't use advertising or tracking cookies.

Contact

For any privacy request, email privacy@getphotoconnect.com.

This is a general template and not legal advice. Have it reviewed by a professional before relying on it.