Cloudybook, Inc. d/b/a Dearest Guest
Effective date: September 1st, 2025
Quick summary
- We run a wedding guest messaging service. That means we handle contact details and logistics for couples and their guests.
- We do not sell personal information. We use it to deliver messages, run the service, improve reliability, and provide support.
-Guests can opt out of SMS at any time by replying STOP. Help is available with HELP. Message and data rates may apply.
-California residents have rights to know, access, correct, delete, and to opt out of sale or sharing. We also honor Global Privacy Control signals for those rights where required. 
-If you are in the EU or UK, you have GDPR rights including access, correction, deletion, portability, objection, and restriction. We use appropriate transfer tools like the European Commission Standard Contractual Clauses when needed. 
If anything is unclear or you want to exercise a right, email us at privacy@dearestguest.com.
Who we are and scope
Cloudybook, Inc. (“Cloudybook,” “we,” “us,” “our”) provides the Dearest Guest website at dearestguest.com and related messaging services for wedding events. This policy covers data we process:
1. when you visit our website,
2. when a couple uses our service and adds information about their event and guests,
3. when we send or receive SMS or email to deliver event information.
Roles under privacy laws
• For our own website and marketing, Cloudybook is the data controller.
• For the wedding messaging service, Cloudybook generally acts as a processor or service provider to the couple or event organizer, who decides what guest data to provide and what messages to send.
• In California, we act as a “service provider” under the CCPA and CPRA for our couples. 
Information we collect
From couples and planners
• Event information and schedules
• Message templates, preferences, notes
• Contacts imported for the event (names, phone numbers, email, role, table, RSVP, meal choice, shuttle stop, accessibility needs, and similar details)
From guests
• Contact info provided by the couple, or by you directly
• SMS interactions and preferences (for example STOP, HELP)
• Delivery information from carriers
• Optional replies or feedback you send us
From website visits
• Basic analytics and device data (IP address, browser, pages viewed, timestamps, cookies or similar technology)
• Cookie and consent preferences, including any Global Privacy Control signals sent by the browser where legally required. 
We do not intentionally collect information about children under 13. If you believe a child provided data to us, contact ilayda@cloudybook.com and we will address it.
How we use information
• Delivering event messages and updates by SMS or email
• Running, securing, and improving the service
• Support, troubleshooting, and fraud prevention
• Meeting legal, regulatory, or carrier compliance obligations
• Internal analytics to improve reliability and user experience
We do not sell personal information. If we ever want to use data for new purposes that are materially different, we will update this policy and, where required, ask for consent.
SMS program terms
• By providing a mobile number and agreeing to receive texts, you authorize Dearest Guest to send you event messages. You can opt out any time by replying STOP. For help, reply HELP. Message and data rates may apply and message frequency varies by event. 
• We maintain consent records and honor opt-out requests promptly. New FCC rules also emphasize clear, specific consent for marketing texts. If we ever send promotional texts, we will obtain the level of consent the law requires and keep proof of it. 
Email program terms
If we send marketing email, we identify the sender, include a physical mailing address, and provide a working unsubscribe link. We honor opt-out requests promptly. 
Cookies and tracking
We use necessary cookies to operate the site and optional analytics to understand usage. You can control cookies in your browser. Where required, we treat Global Privacy Control signals as a valid request to opt out of sale or sharing on our website. 
Notice of collection for California residents
Categories we collect may include identifiers, contact details, commercial information related to your event, internet activity, and in some cases inferences about preferences for logistics. We use these categories to provide the service, troubleshoot, secure our systems, and support customers. We do not sell personal information or share it for cross-context behavioral advertising. If that changes, we will provide a “Do Not Sell or Share” link and honor opt-out preference signals as the law requires. 
Legal bases for EU and UK users
We rely on one or more of the following:
• Performance of a contract, for example delivering event messages
• Legitimate interests, for example securing and improving the service, balanced against your rights
• Consent, where required, for example certain marketing communications
• Compliance with legal obligations
Your GDPR rights include access, rectification, erasure, restriction, portability, and objection, and the right not to be subject to certain automated decisions. You also have the right to lodge a complaint with your local supervisory authority. 
Data sharing
We share data with trusted vendors who help us run the service, for example:
• Cloud hosting, logging, and analytics
• Email and SMS delivery providers
• Payment processors
• Customer support tools
These vendors are bound by contract to use data only to provide services to us and must protect it appropriately.
International transfers
If we transfer personal data outside your country, we use lawful transfer tools such as the European Commission Standard Contractual Clauses, and the UK IDTA Addendum where applicable. 
Retention
• Event content and delivery logs are retained only as long as needed for the event and reasonable business needs like dispute resolution and auditing.
• By default, we aim to delete or anonymize most event data within 90 days after the event unless the couple asks us to retain it longer or law allows a longer period.
• We may retain minimal suppression data to enforce opt-outs and prevent re-messaging to numbers that have opted out.
Security
We use technical and organizational measures appropriate to the risk, including encryption in transit, access controls, and monitoring. No system is perfectly secure. If we discover a security incident that affects your data, we will investigate and notify you and regulators where required by law.
Your choices and rights
California residents
You can request to know, access, correct, or delete personal information, and you can opt out of sale or sharing where applicable. You can also limit the use of sensitive personal information where that category is used. We will not discriminate against you for exercising your rights. You may authorize an agent to make a request on your behalf. We honor Global Privacy Control signals on our website to the extent required. 
EU and UK residents
You can exercise GDPR rights listed above. We will respond within the time limits set by law. 
SMS opt out
Reply STOP to any message to opt out. Reply HELP for help. For any other request, email privacy@dearestguest.com with your name and the phone number used for messages. 
Do Not Track and Global Privacy Control
We generally do not respond to older Do Not Track signals. We treat Global Privacy Control signals as a valid opt-out of sale or sharing on our website where required by law. 
Changes to this policy
We will update this policy when our practices change. We will post the updated version with a new effective date.
Contact us
Cloudybook, Inc.
Email: ilayda@cloudybook.com
Mailing address: 981 Mission St. San Francisco, CA 94103
If you are in the EU or UK and prefer to contact a representative or DPO, please email us and we will provide the appropriate contact.