Wishtide

Wishtide Privacy Policy

Last updated: February 6, 2026

Wishtide is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our website, mobile experience, and related services (collectively, "Wishtide" or "the platform"). It also explains the choices and rights you have under UK data protection law.

This notice is for information only. It is not a contract and it does not limit your privacy rights. Where we rely on your consent (for example, for non-essential cookies, analytics or marketing), we will ask you for that consent separately.

Who We Are and How to Contact Us

For the purposes of UK data protection law, the organisation responsible for your personal data (the "data controller") is WISHTIDE TECHNOLOGIES LTD, a company registered in the United Kingdom under company number 16930589. Our registered office details are available on the UK Companies House register.

If you have any questions about this Privacy Policy or how we handle your data, you can contact us at hello@wishtide.com.

1. Information We Collect

We collect information to provide and improve Wishtide. The information we collect falls into the following categories:

a. Information You Provide to Us

This includes:

  • Name
  • Email address
  • Password (encrypted)
  • Profile details
  • Wishlists, events and other content you create (including titles, descriptions, images and comments)
  • Messages or interactions with our support team
  • Any information you submit through forms or surveys

b. Information Collected Automatically

When you use Wishtide, we automatically collect:

  • IP address
  • Device information
  • Browser type
  • Operating system
  • Usage data (pages visited, actions taken, time spent)
  • Log data for security and diagnostics

This helps us keep the platform secure and improve performance.

c. Cookies and Similar Technologies

We use cookies to:

  • Keep you signed in
  • Secure your account
  • Understand how Wishtide is used
  • Improve features and performance

For more details, please see our Cookie Policy.

d. Payment Information

If you make a contribution, purchase or subscription:

  • Payments are processed securely by Stripe
  • We do not store your full card details
  • We may receive limited information such as transaction ID, status, and last 4 digits of your card

e. Information from Third Parties

We may receive information from:

  • Analytics providers
  • Social platforms (if you choose to connect your account)
  • Payment processors

f. Public, Shared and Private Content on Wishtide

Wishtide is built around wishlists, events and social features. Depending on the settings you choose, some information you upload may be visible to other users or people you share links with. For example:

  • Your display name, profile picture and basic profile information may be shown alongside wishlists or events you create.
  • Wishlists and events you mark as "public" or share via a link may be visible to anyone with access to that link and may be reshared by them.
  • Comments, reactions and other social interactions on public wishlists or events may also be visible to others.

You can usually control whether a wishlist or event is public or shared with a smaller group through the settings in your account. Please do not include sensitive personal information in content you choose to make public or widely shared.

2. How We Use Your Information

We use your information to:

a. Provide and Improve Wishtide

  • Create and manage your account
  • Deliver core features
  • Personalise your experience
  • Improve performance and usability

b. Communicate With You

  • Send service updates
  • Respond to support requests
  • Notify you about changes to our terms or policies

c. Ensure Safety and Security

  • Detect and prevent fraud
  • Monitor suspicious activity
  • Protect the integrity of the platform

d. Analytics and Insights

  • Understand how Wishtide is used
  • Improve features and design
  • Measure performance

Analytics only run if you consent to non-essential cookies.

e. Legal Obligations

We may process your data to comply with:

  • UK GDPR
  • PECR
  • Tax and accounting requirements
  • Law enforcement requests (where legally required)

3. Legal Bases for Processing (UK GDPR)

We process your personal data under the following legal bases:

  • Contract: to provide Wishtide and its features
  • Consent: for analytics, marketing, and cookies
  • Legitimate Interests: to operate, protect and improve the platform (for example, to prevent fraud or abuse, keep our systems secure, and understand how features are used)
  • Legal Obligation: where required by law

Where we rely on legitimate interests, we balance those interests against your rights and expectations and only use your data in ways that you would reasonably expect and that do not have an unjustified impact on you. You have the right to object to processing based on our legitimate interests, as set out in the "Your Rights" section below.

4. How We Share Your Information

We do not sell your personal data.

We may share your information with:

a. Service Providers

Trusted partners who help us operate Wishtide, such as:

  • Cloud hosting and infrastructure providers that store and run the Wishtide platform
  • Analytics providers (for example, tools that help us understand how features are used, where enabled)
  • Email delivery and communication services that send account and notification emails
  • Payment processors such as Stripe, who process contributions, purchases or subscriptions

These providers act as our data processors and only process your personal data on our instructions, except where a provider (such as Stripe) acts as an independent controller for certain processing activities. For card and payment details, Stripe acts as an independent controller and processes your payment information in line with its own privacy notice: https://stripe.com/privacy.

b. Legal and Regulatory Authorities

Only when required by law.

c. Business Transfers

If Wishtide is acquired or merged, your data may be transferred as part of the transaction. You will be notified if this happens.

5. How We Store and Protect Your Information

We use industry standard security measures to protect your data, including:

  • Encryption
  • Secure servers
  • Access controls
  • Regular security reviews

We retain your information only as long as necessary for the purposes set out in this Privacy Policy, including to:

  • Provide Wishtide and the features you use
  • Meet our legal and regulatory obligations
  • Resolve disputes
  • Enforce our agreements

In general, this means that:

  • Account and profile information is kept for as long as your account is active and for a reasonable period afterwards (typically up to 2 years) if you close your account, unless we need to keep it longer for legal reasons.
  • Wishlist, event and social activity content is kept while your account is active or until you delete it. Some logs or backups may retain copies for a limited period.
  • Payment and transaction records are kept for at least 6 years to comply with tax, accounting and financial regulations.
  • Security and log data is usually kept for up to 12 months, unless we need to keep it longer to investigate issues, fraud or abuse.

Where we cannot specify a fixed retention period, we apply criteria such as the amount, nature and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure, and whether we can achieve our purposes by other means.

6. Your Rights (UK GDPR)

You have the right to:

  • Access your personal data
  • Correct inaccurate information
  • Delete your data
  • Withdraw consent at any time
  • Object to certain types of processing
  • Request a copy of your data (data portability)

To exercise these rights, contact us at hello@wishtide.com. We may need to verify your identity before responding to your request.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you are unhappy with how we use your personal data. You can find out how to contact the ICO at www.ico.org.uk.

7. Children's Privacy

Wishtide is not intended for children under 13, and they must not create an account or use the platform.

We do not knowingly collect personal data from children. If we become aware that a child under 13 has created an account or provided personal data, we will take steps to delete that information and may close the account.

If you are a parent or guardian and believe that a child has provided us with personal information, please contact us so we can investigate and take appropriate action.

8. International Data Transfers

Some of our service providers are based outside the UK or may store data in other countries. This can include providers such as cloud hosting services, analytics tools (for example, Google Analytics, where enabled) and payment processors like Stripe.

Where your personal data is transferred outside the UK, we ensure that an adequate level of protection is provided by using one or more of the following safeguards:

  • Transfers to countries that have been formally recognised as providing an adequate level of data protection; and/or
  • Standard Contractual Clauses or other appropriate contractual safeguards approved for use under UK data protection law.

You can contact us if you would like more information about how we protect your data when it is transferred internationally.

9. Links to Other Websites

Wishtide may contain links to third-party websites.

We are not responsible for their privacy practices.

We encourage you to review their policies.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

The "Last updated" date at the top will always reflect the latest version.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, you can contact us at: hello@wishtide.com