Skip to main content
Aisle Advisor

Privacy Policy

Effective Date: March 25, 2026 · Last Updated: March 25, 2026

1. Who We Are

Our website address is: https://aisleadvisor.wedding

Aisle Advisor is an anonymous wedding vendor review platform operated by AisleAdvisor, LLC. We help couples make informed decisions about wedding vendors through verified reviews and an AI-powered contract analysis tool.

Your privacy is fundamental to our mission. This Privacy Policy explains what information we collect, how we use it, and the steps we take to protect it—especially reviewer anonymity, which we treat as absolute.

2. Information We Collect

2.1 Information You Provide

  • Reviews: Review text, scores, incident types, and an optional first name. No account is required to submit a review.
  • Verification documents: Contracts, booking confirmations, or similar materials uploaded to verify your relationship with a vendor. These are permanently deleted within 24 hours after verification is complete.
  • Contract scanner uploads: Contracts uploaded for automated analysis. Files are processed in memory and are not retained after scanning is complete, unless you explicitly opt to share flagged clauses.
  • Contact form submissions: Your name, email address, and message when you contact us through our contact form.
  • City request submissions: City name, optional wedding date, and referral source when you request we expand to your city.
  • Vendor accounts: If you register as a vendor, we collect your business name, email address, and business verification details.
  • Partner applications: Business name, contact name, email, website, and other details submitted through our partner application form.

2.2 Information Collected Automatically

  • Hashed IP addresses: We collect a one-way cryptographic hash of your IP address for spam detection and rate limiting only. We never store raw IP addresses. The hash cannot be reversed to identify you.
  • Browser user agent string: Collected alongside form submissions to help with spam detection.
  • Analytics data: We use privacy-focused analytics (Plausible) that does not use cookies and does not track individual users. Aggregate page view and referral data is collected without personal identifiers.

3. How We Use Your Information

We use the information we collect to:

  • Display reviews publicly on vendor profiles (with reviewer identity protected)
  • Verify that reviewers have a genuine relationship with the vendor being reviewed
  • Detect patterns across reviews (e.g., “8 couples reported never receiving photos”)
  • Analyze uploaded contracts for potentially problematic clauses
  • Prevent spam, fraud, and abuse of the platform
  • Respond to your contact form inquiries
  • Operate and improve the Service, including vendor search and geographic features
  • Run sentiment analysis on vendor responses to flag threatening language for moderation
  • Comply with legal obligations

4. Reviewer Anonymity

Reviewer anonymity is absolute. We have designed our systems so that it is technically impossible for us to identify anonymous reviewers from the data we store.

  • No accounts required: You do not need to create an account to submit a review.
  • SHA-256 hashing: If you provide an email address for review retrieval, it is immediately converted to a one-way SHA-256 hash with a unique salt. The original email is never stored in our database.
  • No raw IP logging: IP addresses are hashed (with salt) for spam detection only. They cannot be reversed to identify you.
  • Verification documents deleted: Any contracts, booking confirmations, or proof documents you upload are permanently deleted within 24 hours of verification.
  • No PII in our database: We do not store emails, names, phone numbers, or any other personally identifiable information for anonymous reviewers.

We will not voluntarily disclose reviewer identity to vendors or third parties. If compelled by valid legal process (such as a court order), we will assert available legal protections on behalf of reviewer anonymity and limit disclosure to only what is legally required. See our Terms of Service, Section 6 for more detail.

5. Contract Uploads

When you upload a contract to our contract scanner:

  • Files are encrypted in transit (TLS 1.3) and at rest (AES-256).
  • Uploaded files are processed for analysis and then automatically deleted. We do not retain contract files after scanning.
  • Extracted text from flagged clauses may be stored only if you explicitly opt to share red flags with the community.
  • You should avoid uploading documents containing sensitive personal information (Social Security numbers, financial account numbers, etc.) that is not relevant to the contract analysis.

6. Cookies

We use minimal cookies to operate the Service:

  • Authentication cookies: If you log in to a vendor account, we set cookies to maintain your session. These cookies are removed when you log out or expire after a reasonable period.
  • CAPTCHA cookies: Our forms use Cloudflare Turnstile for spam prevention, which may set cookies necessary for its operation. See Cloudflare's Privacy Policy for details.

We do not use advertising cookies, tracking pixels, or third-party analytics cookies. Our analytics provider (Plausible) is cookie-free and does not track individual users.

7. Embedded Content from Other Websites

Pages on this site may include embedded content (e.g., videos, maps, images, or articles). Embedded content from other websites behaves in the exact same way as if you had visited that other website directly.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction if you have an account and are logged in to that website.

8. Who We Share Your Data With

We do not sell your personal information. We may share data with the following categories of service providers, solely to operate the Service:

  • Hosting and infrastructure: Vercel (hosting), Supabase (database), AWS (contract scanning and file storage)
  • Email delivery: Resend and SendGrid (for transactional emails such as contact form confirmations and internal notifications)
  • Spam prevention: Cloudflare Turnstile (CAPTCHA verification)
  • Error monitoring: Sentry (application error tracking)
  • Analytics: Plausible (privacy-focused, no personal data shared)

We may also disclose information if required by law, court order, or other valid legal process, or to protect the rights, property, or safety of AisleAdvisor, our users, or the public.

Affiliate partners: When you click an affiliate partner link on a vendor profile, we share a hashed session identifier and the category context with the partner for attribution purposes. We do not share your name, email, or any personally identifiable information with affiliate partners.

9. How Long We Retain Your Data

  • Reviews: Reviews are retained indefinitely to maintain the integrity of vendor records and for legal protection. Reviews are soft-deleted (hidden from public view) rather than permanently destroyed, in case they are needed for legal proceedings.
  • Verification documents: Permanently deleted within 24 hours of verification.
  • Contract scanner uploads: Deleted immediately after processing.
  • Contact form submissions: Retained as an audit trail for as long as necessary to respond to your inquiry and for our legitimate business records.
  • Vendor accounts: Retained for as long as the account is active. You may request account deletion by contacting us.
  • Hashed IP addresses: Retained alongside submissions for spam detection. Because they are irreversibly hashed, they cannot be used to identify you.

10. Data Security

We take the security of your data seriously and implement appropriate technical and organizational measures, including:

  • Encryption in transit (TLS 1.3) for all connections
  • Encryption at rest (AES-256) for stored files and sensitive data
  • One-way cryptographic hashing (SHA-256 with unique salts) for reviewer identifiers and IP addresses
  • Row-level security policies on our database to restrict data access
  • Automated deletion of verification documents and contract uploads

While no method of electronic storage or transmission is 100% secure, we strive to use commercially acceptable means to protect your information. If we become aware of a security breach affecting personal data, we will notify affected users promptly in accordance with applicable law.

11. Your Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Access: You can request a copy of the personal data we hold about you.
  • Correction: You can request that we correct inaccurate personal data.
  • Deletion: You can request that we delete your personal data, subject to our legal obligations (e.g., we may need to retain review data for legal protection as described in our Review Integrity Policy).
  • Data portability: You can request an export of your personal data in a structured, commonly used format.
  • Opt-out: You can opt out of non-essential communications at any time.

For anonymous reviewers: Because we do not store personally identifiable information for anonymous reviewers, there is generally no personal data for us to access, correct, or delete. If you provided an email for review retrieval, only the irreversible hash is stored—we cannot retrieve or delete the original email because we do not have it.

To exercise any of these rights, please contact us at truevows@aisleadvisor.wedding. We will respond to verified requests within 30 days.

12. Children's Privacy

The Service is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a minor, please contact us at truevows@aisleadvisor.wedding and we will promptly delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised “Last Updated” date. For significant changes, we will also provide notice through our website or by email (for registered vendor accounts).

Your continued use of the Service after changes are posted constitutes your acceptance of the revised Privacy Policy.

14. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

Email: reception@aisleadvisor.wedding

© 2026 AisleAdvisor, LLC. All rights reserved.