Where photos and data are stored
All wedding photos and metadata are stored on encrypted cloud infrastructure in Indian regions — Mumbai and Hyderabad availability zones. We do not move guest photos out of India for processing. This matters for both performance (low-latency downloads on Indian mobile networks) and compliance (DPDP Act 2023 compatibility).
Encryption
- In transit: All uploads and downloads use TLS 1.2+ (HTTPS). Public Wi-Fi at the wedding venue is safe.
- At rest: Photos are stored using AES-256 server-side encryption. Database fields with personal identifiers (guest name, phone) are additionally encrypted at the column level.
- Backups: Daily encrypted backups, retained 30 days, restorable to any point-in-time.
Access controls
Studio dashboard
Studio admins log in with email + password. We strongly recommend enabling two-factor authentication (TOTP) — supported on all plans. Studio Plan also supports role-based team members (admin, shooter, editor, coordinator) with scoped permissions per event.
Guest galleries
Guest galleries are unguessable URLs (32-byte random tokens). Guest registration requires a phone-number OTP. AI face matching enforces that each registered guest only ever receives photos containing their own face. There is no public "view album" link.
How AI face matching uses photos
Face embeddings (numerical vectors derived from a guest's selfie) are used only for matching photos within their own event. The face embedding is encrypted and tied to the guest's registration — when their access expires, the embedding is deleted along with their gallery access. We never train external face-recognition models on your studio's photos. We never sell or share photo data.
Photo retention
- Guest gallery access: 3 months (Basic) or 6 months (Standard, Studio).
- Studio dashboard access to originals: as long as the studio account is active.
- Photos can be permanently deleted by the studio at any time from the dashboard.
- On account closure, all photos and metadata are wiped within 30 days.
Compliance
Wed.ing is designed to be compatible with India's Digital Personal Data Protection Act (DPDP) 2023. Guest consent is captured at registration; studios act as the data fiduciary for their own events; Wed.ing acts as the processor. See the privacy policy for the full data-processing terms.
Vulnerability disclosure
Found a security issue? Email contact@wed.ing with the subject "Security disclosure". We respond within 48 hours. We do not currently run a paid bug-bounty programme but we acknowledge legitimate disclosures publicly with credit (with permission).
Studio practices we recommend
- Enable 2FA on the studio dashboard.
- Use a long, unique password — a password manager works fine.
- Add team members with the lowest access role they need (don't give every shooter admin).
- Don't share guest gallery links publicly on Instagram. Each link is per-guest and per-phone.
- Educate clients: each guest gets only their own photos. The bride gets the full album via a separate "all photos" link visible only on her gallery.
Questions?
If you're a studio owner with specific compliance requirements (e.g. a corporate-event client requiring an SOC 2 attestation), talk to us — we can work with you on what's possible.