Last updated: 17 July 2026
This Privacy Policy explains how CWM Cyprus Weddings Magazine Ltd (โCWMโ, โCyprus Weddings Magazineโ, โweโ, โourโ or โusโ) collects, uses, stores, shares and protects personal information in connection with our website, editorial content, business directory, wedding submissions, advertising services and related activities (together, the โServicesโ).
We are committed to processing personal data fairly, lawfully and transparently in accordance with Regulation (EU) 2016/679 (the โGDPRโ), the Cyprus Law Providing for the Protection of Natural Persons with Regard to the Processing of Personal Data and the Free Movement of Such Data (Law 125(I)/2018), and other applicable data protection legislation.
Please read this Policy carefully. By using the Services you acknowledge the practices described in this Policy.
Table of Contents
1. Introduction and Scope
1.1 This Policy applies to all personal data processed by CWM in connection with the website located at cyprusweddingsmagazine.com (the โWebsiteโ), our social media channels, email communications, business applications, editorial submissions and any other interaction you have with us.
1.2 This Policy does not apply to third-party websites, applications or services that may be linked from the Website. We encourage you to review the privacy policies of any third party you interact with.
1.3 This Policy should be read alongside our Terms of Use, Cookie Policy and any specific terms provided to you at the point of data collection (for example, vendor listing terms or advertising terms).
2. Definitions and Interpretation
2.1 In this Policy, unless the context requires otherwise:
- โPersonal Dataโ means any information relating to an identified or identifiable natural person.
- โProcessingโ means any operation performed on personal data, including collection, storage, use, disclosure, or deletion.
- โControllerโ means the entity that determines the purposes and means of processing personal data.
- โProcessorโ means an entity that processes personal data on behalf of a controller.
- โData Subjectโ means the individual to whom personal data relates.
- โReal Wedding Submissionโ means content submitted for potential editorial feature, including photographs, questionnaires, and supplier information.
- โVendorโ or โBusinessโ means a wedding-industry supplier (including venues, photographers, planners, and other service providers) applying for or holding a directory listing.
- โSpecial Category Dataโ has the meaning given in Article 9 GDPR (e.g.ย data revealing racial or ethnic origin, religious belief, health data, or data concerning sex life).
2.2 References to legislation include any amendment, re-enactment or replacement of that legislation.
2.3 Headings are for convenience only and do not affect interpretation.
3. Data Controller
3.1 The data controller responsible for your personal data is:
CWM Cyprus Weddings Magazine Ltd Kronos Center, Office 202 Eletheriou Venizelou 53 Paphos 8021 Cyprus
3.2 Contact for privacy matters: admin@cyprusweddingsmagazine.com
4. Privacy Contact Point
4.1 CWM has not appointed a statutory Data Protection Officer, as this is not currently required under Article 37 GDPR given the nature and scale of our processing activities. All privacy enquiries should be directed to admin@cyprusweddingsmagazine.com, which is monitored by a designated member of the CWM team responsible for data protection compliance.
4.2 We will review the appointment of a formal Data Protection Officer as our processing activities evolve.
5. Categories of Personal Data We Collect โ Overview
5.1 The categories of personal data we collect depend on how you interact with us. Sections 6 to 15 below set out the specific categories collected for each type of interaction. In general terms, we may collect:
- Identity and contact data (name, email, telephone, business name, job title);
- Content you submit (photographs, questionnaires, editorial copy, testimonials);
- Business and vendor data (descriptions, portfolios, pricing, social media links, logos);
- Technical and usage data (IP address, browser type, device identifiers, pages visited);
- Cookie and analytics identifiers;
- Marketing preferences; and
- Payment-related data, where applicable (see Section 39).
6. Information Collected โ General Website Visitors
6.1 When you browse the Website without submitting a form, we automatically collect limited technical data, including IP address, browser type and version, operating system, device type, referring URL, pages viewed, time spent on pages, and approximate geographic location derived from your IP address. This is described further in Sections 28โ37 (Cookies and Analytics).
7. Information Collected โ Contact and General Enquiry Forms
7.1 When you contact us through a general enquiry form or by email, we collect your name, email address, telephone number (if provided), the content of your message, and any attachments you choose to send.
8. Information Collected โ Real Wedding Submissions
8.1 Where a couple, planner or photographer submits a wedding for potential editorial feature, we may collect: the coupleโs names, wedding date and venue, names of suppliers involved, responses to editorial questionnaires, photographs and video, and any personal details included in submitted narrative content (for example, references to family members or personal circumstances).
8.2 Submitted content may incidentally include special category data (for example, references to religion or health within a wedding story). We rely on your explicit consent, given by voluntarily submitting such content, as the lawful basis for processing any special category data of this kind, in accordance with Article 9(2)(a) GDPR.
9. Information Collected โ Business Directory Profiles
9.1 Where a business applies for or maintains a directory listing, we collect business contact details, the name and contact details of the individual submitting the application, business descriptions, portfolio images, pricing information, service areas, social media handles, logos, awards, and any other information voluntarily submitted for publication.
10. Information Collected โ Venue Onboarding
10.1 Venue partners provide additional information during onboarding, which may include venue capacity, facilities, pricing packages, exclusivity terms, key contact details for bookings, floor plans, and imagery. Where onboarding involves a contractual relationship, we also collect billing contact details.
11. Information Collected โ Photographer and Supplier Submissions
11.1 Photographers and other suppliers submitting images or content for editorial or directory purposes provide their name, business name, contact details, portfolio content, copyright and credit information, and confirmation of rights to submit the material (see Section 27, Copyright and Licensing).
12. Information Collected โ Editorial Enquiries
12.1 Where you contact us regarding editorial features, press coverage, collaborations or interviews, we collect your name, contact details, publication or brand affiliation, and the content of correspondence.
13. Information Collected โ Advertising and Partnership Enquiries
13.1 Where you enquire about advertising or commercial partnerships, we collect your name, business name, role, contact details, budget or campaign information you choose to share, and correspondence relating to the enquiry.
14. Information Collected โ Newsletter Subscribers
14.1 If you subscribe to our newsletter, we collect your email address and, where provided, your name and areas of interest (for example, whether you are a couple, a supplier, or a reader). We record the date and method of consent obtained.
15. Information Collected โ Technical and Device Information
15.1 We collect technical information including IP address, browser type, operating system, device identifiers, referring and exit pages, click patterns, and approximate location, primarily through cookies and similar technologies described in Sections 28โ37.
16. How We Collect Data
16.1 We collect personal data: (a) directly from you, through forms, applications, questionnaires, email, telephone and social media messages; (b) automatically, through cookies, analytics tools and server logs when you use the Website; and (c) from third parties, such as suppliers who submit information about a wedding or business on your behalf, or publicly available sources (for example, a businessโs own public website) where relevant to a directory listing.
16.2 Where we receive personal data about you from a third party rather than directly from you (for example, where a planner submits information about a couple), we provide the information required by Article 14 GDPR, including the source of the data, at the earliest reasonable opportunity, and in any event within one month, unless an exemption applies.
17. Legal Bases for Processing (Article 6 GDPR)
17.1 We rely on the following lawful bases, depending on the purpose of processing:
- Consent (Article 6(1)(a)) โ for example, newsletter marketing, non-essential cookies, and voluntary editorial or wedding submissions.
- Performance of a contract (Article 6(1)(b)) โ for example, managing a paid directory listing or advertising agreement.
- Legitimate interests (Article 6(1)(f)) โ for example, website security, fraud prevention, direct marketing to existing business contacts, and improving our Services, balanced against your interests and rights.
- Legal obligation (Article 6(1)(c)) โ for example, accounting, tax and regulatory record-keeping.
17.2 Where processing is based on consent, you may withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal. See Section 48 for how to exercise this right.
18. Special Category Data
18.1 We do not seek to collect special category data as a matter of course. Where such data is voluntarily included within a submission (see Section 8.2), we process it only with your explicit consent and take additional care regarding its storage and publication, including seeking confirmation before publishing sensitive personal details.
19. Purposes of Processing โ Overview
19.1 We use personal data for the purposes summarised below. Where required by Article 13(1)(c) and (2)(a) GDPR, the applicable legal basis and, where relevant to legitimate interests, the specific interest pursued, is identified.
| Purpose | Legal Basis |
| Responding to general enquiries | Legitimate interests / performance of pre-contractual steps |
| Publishing real wedding features | Consent |
| Creating and managing directory profiles | Performance of a contract / consent |
| Venue onboarding and account management | Performance of a contract |
| Administering advertising and partnerships | Performance of a contract / legitimate interests |
| Sending newsletters and marketing | Consent |
| Website analytics (GA4) | Consent (where cookie-based) / legitimate interests (aggregated) |
| Advertising measurement (Meta Pixel) | Consent |
| Preventing fraud and abuse | Legitimate interests |
| Accounting and tax compliance | Legal obligation |
| Enforcing our legal rights | Legitimate interests |
20. Real Wedding Submissions โ Processing and Publication
20.1 Submission of a wedding for editorial consideration is entirely voluntary. By submitting a wedding, you confirm that you have authority to provide the material and that any necessary permissions have been obtained from photographers, the couple, and other individuals featured or referenced.
20.2 Submission does not guarantee publication. Editorial selection remains at CWMโs sole discretion. We may edit submitted content for length, clarity, and house style.
20.3 Where a submission is selected for publication, relevant details (which may include names, wedding date, location, and photographs) will be published on the Website and may be shared on our social media channels and in related marketing.
20.4 You may request removal of a published feature at any time, subject to Section 43 (Retention) and our legitimate interest in maintaining the integrity of the editorial archive.
21. Business Directory and Vendor Profiles โ Processing
21.1 Approved directory information is displayed publicly on the Website and may be syndicated to associated marketing channels, including social media and email newsletters.
21.2 Businesses are responsible for ensuring submitted information is accurate, lawful, and does not infringe the rights of any third party, and for promptly notifying us of any required updates or corrections.
21.3 We may retain a record of past listing content for record-keeping purposes even after a listing is removed, in accordance with Section 43.
22. Venue Onboarding โ Processing
22.1 Venue data is used to create and maintain the venueโs public profile, to manage the commercial relationship, and to communicate updates relevant to the venueโs listing.
22.2 Billing contact information is used solely for invoicing and account administration and is not published.
23. Photographer Submissions โ Processing and Copyright
23.1 We use submitted photography for editorial publication, directory display, and associated marketing, subject to the credit and licensing terms agreed with the submitting photographer or supplier (see Section 27).
23.2 Photographers remain responsible for ensuring they hold the necessary rights and permissions, including model releases where applicable, for images submitted.
24. Editorial Enquiries โ Processing
24.1 We use editorial enquiry data to manage correspondence, coordinate features, interviews or press collaborations, and to maintain a record of media relationships.
25. Advertising and Partnership Enquiries โ Processing
25.1 We use advertising enquiry data to respond to your enquiry, prepare proposals, and, where an agreement is entered into, to administer the advertising relationship, including invoicing and campaign delivery.
26. Newsletter โ Processing and Marketing Communications
26.1 We use your email address to send editorial updates, wedding inspiration, supplier features, and company news. We may in future appoint a specialist email marketing platform to manage distribution, in which case that provider will process your data as our processor under a data processing agreement.
26.2 Every marketing email includes a clear and functional unsubscribe mechanism. You may also unsubscribe by contacting admin@cyprusweddingsmagazine.com.
26.3 We do not sell or rent your email address to third parties for their own independent marketing purposes.
27. Copyright and Licensing of Submitted Images and Content
27.1 Submitting content to CWM does not transfer ownership of copyright. By submitting content you grant CWM a non-exclusive, royalty-free, worldwide licence to reproduce, publish, and distribute the content across the Website, associated marketing channels, and social media, for editorial and promotional purposes, with appropriate credit where customary.
27.2 You warrant that you own or have obtained all necessary rights and consents (including from photographers, couples, and any other individuals depicted) to grant this licence, and you agree to indemnify CWM against claims arising from a breach of this warranty.
27.3 Requests regarding the use, removal, or crediting of specific content should be directed to admin@cyprusweddingsmagazine.com.
28. Cookies โ Overview
28.1 The Website uses cookies and similar tracking technologies to operate correctly, remember preferences, and understand how visitors use the Website. Cookies are small text files stored on your device.
28.2 We categorise cookies as: (a) Strictly Necessary; (b) Functional/Preference; (c) Analytics/Performance; and (d) Marketing/Advertising, as set out in Sections 29โ32.
29. Cookies โ Strictly Necessary
29.1 These cookies are essential for the Website to function, for example enabling page navigation, secure areas, and load balancing. They cannot be switched off and do not require consent, as they are necessary for the provision of the Service you have requested.
30. Cookies โ Functional and Preference
30.1 These cookies allow the Website to remember choices you make (such as cookie preferences or display settings) to provide a more personalised experience. They are used only with your consent, except where strictly necessary for a service you have requested.
31. Cookies โ Analytics and Performance
31.1 These cookies collect information about how visitors use the Website, including pages visited and error messages, to help us improve performance and content. This category includes Google Analytics 4 (see Section 34). These cookies are used only with your consent.
32. Cookies โ Marketing and Advertising
32.1 These cookies are used to deliver advertising that is more relevant to you and your interests, to measure the effectiveness of advertising campaigns, and to limit the number of times you see an advertisement. This category includes Meta Pixel (see Section 35). These cookies are used only with your consent.
33. Cookie Consent Management
33.1 Our Website uses Complianz to manage cookie consent. On your first visit you are presented with a cookie banner allowing you to accept, reject, or customise non-essential cookies by category.
33.2 You may withdraw or amend your cookie consent at any time via the cookie settings link available in the Website footer. Withdrawing consent does not affect the lawfulness of processing carried out before withdrawal.
33.3 You may also manage or delete cookies through your browser settings, though this may affect Website functionality.
34. Google Analytics 4
34.1 We use Google Analytics 4, provided by Google Ireland Limited, to understand visitor behaviour, including pages visited, session duration, device and browser information, and approximate location. This data is used in aggregate to improve content and Website performance.
34.2 Google Analytics 4 is deployed only with your consent, obtained via our cookie consent tool. Data may be processed by Google outside the European Economic Area; Googleโs use of standard contractual safeguards for such transfers is described in Googleโs own privacy documentation.
34.3 You can learn more about Googleโs data practices and opt-out options at Googleโs privacy policy pages.
35. Meta Pixel
35.1 We use Meta Pixel, provided by Meta Platforms Ireland Limited, to measure the effectiveness of our advertising, understand audience engagement, and build tailored advertising audiences on Meta platforms (Facebook and Instagram).
35.2 Meta Pixel is deployed only with your consent, obtained via our cookie consent tool. Meta acts as an independent controller (or joint controller, where applicable) in respect of its own processing of this data, as described in Metaโs own privacy policy.
36. Google Maps
36.1 Where the Website displays an embedded map (for example, to show a venueโs location), this is provided using Google Maps, operated by Google Ireland Limited. Loading an embedded map may result in Google collecting technical data such as your IP address, even before you interact with the map. This is used for the purpose of displaying accurate location information and is based on our legitimate interest in providing useful venue information, or your consent where required by our cookie tool.
37. Embedded Instagram, Facebook and Other Social Content
37.1 The Website may display embedded social media content (such as Instagram posts) from CWMโs own accounts or those of featured vendors. Loading embedded content may allow the relevant platform to collect technical data about your visit, in accordance with that platformโs own privacy policy. Such embeds are loaded only where consented to via our cookie tool, where technically applicable.
38. Other Third-Party Widgets
38.1 We may from time to time introduce additional third-party widgets or plug-ins (for example, review platforms, booking widgets, or chat tools). Where introduced, we will update this Policy and our cookie consent tool accordingly.
39. Payments and Financial Information
39.1 Online payments are not currently processed directly through the Website. If introduced, payments may be handled through providers such as PayPal, Stripe, Wise, or by bank transfer.
39.2 Card and financial account details are processed directly by the relevant payment provider under its own privacy policy and are not stored by CWM. We retain only records necessary for invoicing and accounting purposes, such as the amount, date, and description of a transaction.
40. Data Sharing and Recipients
40.1 We do not sell personal data. We may share personal data with the categories of recipients described in Section 41, and in the following circumstances: to comply with a legal obligation; to protect the rights, property, or safety of CWM, our users, or others; in connection with a business transfer such as a merger, acquisition, or sale of assets (in which case we will notify affected individuals); or with your consent.
41. Data Processors and Third-Party Service Providers
41.1 We engage the categories of third-party processors and recipients set out below to support the Services. Specific providers may change from time to time; a current list can be requested at admin@cyprusweddingsmagazine.com.
| Category | Purpose | Example / Type of Provider |
| Website hosting | Hosting the Website | Hosting provider |
| Content delivery network (CDN) | Website performance and security | CDN provider |
| Analytics | Website usage analysis | Google Analytics 4 |
| Advertising measurement | Ad performance measurement | Meta Pixel |
| Cookie consent management | Consent recording | Complianz |
| Email and communications | Sending correspondence and newsletters | Email service provider |
| Spam and security prevention | Preventing abuse of forms | Spam-filtering provider |
| Payment processing (if introduced) | Processing payments | PayPal, Stripe, Wise, or bank |
| Professional advisers | Legal, accounting, and compliance advice | Accountants, lawyers |
| Mapping services | Displaying venue locations | Google Maps |
| Social media platforms | Embedded content and marketing | Meta (Facebook/Instagram) |
41.2 Each processor is engaged under contractual terms consistent with Article 28 GDPR, including obligations of confidentiality, security, and assistance with data subject requests, where CWM acts as controller.
42. International Data Transfers
42.1 Some of our service providers, including Google and Meta, may process personal data outside the European Economic Area (โEEAโ), including in the United States.
42.2 Where personal data is transferred outside the EEA, we take steps to ensure an adequate level of protection is applied, such as reliance on adequacy decisions issued by the European Commission, Standard Contractual Clauses approved by the European Commission, or other safeguards recognised under Chapter V GDPR. Further information about the safeguards used by a specific provider is available on request.
43. Data Retention Schedule
43.1 We retain personal data only for as long as reasonably necessary for the purposes described in this Policy, taking into account legal, accounting, and regulatory requirements. Indicative retention periods are set out below.
| Category of Data | Retention Period |
| General enquiry correspondence | Up to 24 months from last contact |
| Real wedding submissions (unpublished) | Up to 12 months, then deleted if not selected |
| Published editorial features (including photographs) | Retained indefinitely as part of the permanent editorial archive, unless removal is requested and reasonably actionable |
| Business directory profiles (active) | For the duration of the listing, plus 12 months |
| Business directory profiles (past/expired) | Up to 24 months, for record-keeping, then anonymised or deleted |
| Venue onboarding and account records | For the duration of the relationship, plus 6 years for accounting purposes |
| Advertising and partnership records | Duration of relationship plus 6 years for accounting purposes |
| Newsletter subscriber data | Until you unsubscribe, plus a short period to process the request |
| Cookie and analytics data | As set by the relevant provider (typically 14โ26 months for Google Analytics 4) |
| Accounting and invoicing records | 6 years, in line with Cyprus tax and accounting requirements |
43.2 Where retention periods above are exceeded due to an ongoing legal, regulatory, or dispute-related requirement, we will retain the minimum data necessary until that requirement no longer applies.
44. Security Measures
44.1 We implement technical and organisational measures appropriate to the risk, including: secure hosting infrastructure; encrypted connections (HTTPS/TLS) across the Website; access controls limiting personal data access to authorised personnel; regular software and plugin updates; use of reputable, security-conscious third-party providers; and internal procedures for handling personal data.
44.2 No method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security. We continually review and improve our security practices.
45. Personal Data Breach Procedure
45.1 In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify the Office of the Commissioner for Personal Data Protection in Cyprus without undue delay and, where feasible, within 72 hours of becoming aware of the breach, in accordance with Article 33 GDPR.
45.2 Where a breach is likely to result in a high risk to affected individuals, we will also notify those individuals directly without undue delay, in accordance with Article 34 GDPR, unless an exemption applies.
46. Automated Decision-Making and AI-Assisted Editorial Tools
46.1 We may use AI-assisted tools to support drafting, proofreading, content organisation, translation, or administrative workflows. All editorial decisions, publication decisions, and substantive communications remain subject to human review.
46.2 We do not use personal data to make decisions that produce legal effects concerning individuals, or similarly significant effects, based solely on automated processing, within the meaning of Article 22 GDPR.
47. Childrenโs Privacy
47.1 The Services are intended for adults planning weddings, working in the wedding industry, or otherwise engaging with our editorial content. We do not knowingly collect personal data from children under the age of 16. If we become aware that we have inadvertently collected such data, we will take steps to delete it promptly.
48. Your Rights Under the GDPR
48.1 Subject to applicable conditions and exemptions, you have the right to:
- Access โ request confirmation of whether we process your personal data and obtain a copy of it (Article 15).
- Rectification โ request correction of inaccurate or incomplete data (Article 16).
- Erasure โ request deletion of your personal data in certain circumstances (Article 17).
- Restriction โ request that we limit the processing of your data in certain circumstances (Article 18).
- Data portability โ receive personal data you provided to us in a structured, commonly used, machine-readable format, and have it transmitted to another controller, where technically feasible (Article 20).
- Objection โ object to processing based on legitimate interests or for direct marketing purposes (Article 21).
- Withdraw consent โ withdraw consent at any time where processing is based on consent, without affecting prior lawful processing (Article 7(3)).
- Lodge a complaint โ with a supervisory authority (see Section 50).
48.2 We will respond to verified requests within one month, extendable by a further two months where necessary due to the complexity or number of requests, in accordance with Article 12(3) GDPR. We will inform you of any extension within the first month.
49. How to Exercise Your Rights
49.1 To exercise any of the rights described in Section 48, please contact us at admin@cyprusweddingsmagazine.com, providing sufficient information to allow us to verify your identity and locate the relevant data.
49.2 There is no fee for making a request, unless the request is manifestly unfounded, excessive, or repetitive, in which case we may charge a reasonable administrative fee or decline to act on the request, as permitted by Article 12(5) GDPR.
50. Complaints and Supervisory Authority
50.1 If you are not satisfied with our response to a privacy concern, or believe our processing of your personal data infringes applicable law, you have the right to lodge a complaint with:
Office of the Commissioner for Personal Data Protection 1 Iasonos Street, 1082 Nicosia, Cyprus Website: www.dataprotection.gov.cy
50.2 We would welcome the opportunity to address your concerns directly before you approach the supervisory authority, and encourage you to contact us first at admin@cyprusweddingsmagazine.com.
51. Changes to This Policy
51.1 We may amend this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or the Services we offer. Material changes will be reflected by updating the โLast updatedโ date at the top of this Policy, and, where appropriate, by additional notice on the Website.
51.2 We encourage you to review this Policy periodically to stay informed about how we protect your personal data.
52. Governing Law and Jurisdiction
52.1 This Policy is governed by the laws of the Republic of Cyprus and applicable European Union data protection law. Any disputes arising in connection with this Policy shall be subject to the exclusive jurisdiction of the courts of Cyprus, without prejudice to your right to lodge a complaint with a supervisory authority or to bring proceedings in your habitual place of residence where applicable law permits.
53. Contact Us
For any privacy enquiries, or to exercise any of the rights described in this Policy, please contact:
CWM Cyprus Weddings Magazine Ltd Kronos Center, Office 202 Eletheriou Venizelou 53 Paphos 8021 Cyprus Email: admin@cyprusweddingsmagazine.com




