Privacy Policy

MARRYMARK PRIVACY POLICY
Version: 1.1
Effective date: 12 January 2026
Owner: MarryMark Pty Ltd (ACN 689 159 064) (“MarryMark”, “we”, “us”, “our”)

Who this Policy applies to
This Privacy Policy applies to anyone who interacts with MarryMark, including couples and consumers, Accredited Businesses (5/6/7 Star Silver/Gold), Certified Wedding Professionals (CWP), applicants, Ambassadors, and website visitors. It explains how MarryMark collects, uses, discloses, stores, and protects personal information in connection with accreditation, education, verification, and professional standards processes.

For privacy questions or requests, contact privacy@marrymark.com.au.

1) Purpose

MarryMark exists to raise trust in the wedding industry by verifying, recognising, and elevating businesses and professionals who consistently deliver excellence.

This Privacy Policy explains how we collect, hold, use, disclose, secure, and retain personal information. We aim to manage personal information in an open and transparent way and (where applicable) in line with the Australian Privacy Principles.

2) Who we are and how to contact us

MarryMark Pty Ltd ACN 689 159 064

Address: PO Box 310 Bowral NSW 2576
Email: privacy@marrymark.com.au
Website: www.marrymark.com.au

3) The personal information we collect

The type of personal information we collect depends on how you interact with MarryMark (as a couple, business, professional, ambassador, applicant, or website visitor).

We may collect and hold complaint evidence such as contracts, invoices, messages, timelines and related documentation where provided.

A) Businesses and professionals (including CWP)

We may collect:

  • Identity and contact details (name, email, phone)
  • Business details (business name, ABN/ACN, role/title, trading address, website/social links)
  • Accreditation/renewal evidence and verification materials (documents, examples of work, policies, service systems, references)
  • Education/CPD information (course enrolments, progress, completion status, submitted assessments)
  • Communications with us (emails, calls, messages)
  • Billing and transaction administration information (invoices, payment status). We do not store full payment card details.
B) Couples and members of the public (including complaints)

We may collect:

  • Contact details
  • Booking/event details you provide (date, venue/location, service category)
  • Complaint details and supporting evidence (contracts, invoices, correspondence, timelines, photos)
C) Ambassadors and panel members

We may collect:

  • Contact details and appointment information
  • Confidentiality and conflict-of-interest declarations
  • Participation records relating to standards reviews (where required)
D) Website visitors

We may collect:

  • Website usage data (IP address, browser/device type, pages visited)
  • Cookie/analytics identifiers (see Section 12)

4) How we collect personal information

Where we request documents for verification or complaints, we may provide a secure upload method and guidance on minimising sensitive information. We collect personal information:

  • directly from you (forms, applications, email, phone, course platform enrolments)
  • from your authorised representative
  • from third parties you ask to provide information (e.g., referees)
  • from publicly available sources where relevant to verification (e.g., your published website/business pages)
  • through service providers we use to operate MarryMark (see Section 8)

Where practical, we collect information directly from you.

5) Why we collect, hold, use and disclose personal information

We collect, hold, use and disclose personal information to:

  1. Assess and administer accreditation (5/6/7 Star Silver/Gold) and renewals
  2. Administer the Certified Wedding Professional (CWP) credential
  3. Deliver education/CPD and record learning outcomes
  4. Manage professional standards and complaints fairly and consistently
  5. Operate MarryMark (support, system administration, billing, internal reporting)
  6. Send service and marketing communications (you can opt out at any time)
  7. Comply with legal obligations and protect rights, safety, and integrity of the MarryMark standard

6) Collection notices at point of collection

When we collect personal information, we generally provide a short collection notice at or before collection (or as soon as practicable after), explaining key matters such as purpose, typical disclosures, and how to access our Privacy Policy.

7) Direct marketing

We may send updates about MarryMark accreditation, education, and related initiatives. We include a clear opt-out in marketing communications, and we honour opt-out requests.

8) Who we disclose personal information to

We disclose personal information only where needed to run MarryMark, deliver services, or meet legal obligations.

Where required for standards processes, relevant information may be disclosed to the Standards & Integrity Panel (including an independent Ambassador panel member), on a need-to-know basis, subject to confidentiality and conflict controls.

A) Core platforms we use

  • HubSpot (CRM, forms, communications management) HubSpot accounts are hosted in regional data centres (including Australia, the United States, Canada, and the EU), and data is processed and stored in the hosting location for the account.
  • LearnWorlds (course delivery / learning platform) LearnWorlds uses cloud infrastructure and may be hosted/processed in Australia and/or overseas depending on configuration.
  • Stripe (payment processing) Stripe collects and processes payment-related personal data and uses security measures such as encryption for sensitive payment data.
B) Other disclosures

We may also disclose personal information to:

  • professional advisers (legal/accounting), auditors, insurers
  • IT and security providers supporting our systems
  • the Standards & Integrity Panel (including an independent Ambassador panel member) for escalated standards matters, on a need-to-know basis and subject to confidentiality and conflict controls.

We may disclose personal information where required or authorised by law.

9) Overseas disclosures

Some service providers may store or process personal information outside Australia. We take reasonable steps to ensure overseas handling is consistent with this Policy and appropriate contractual safeguards.

10) Security of personal information

We use a combination of administrative, technical and physical safeguards appropriate to our size and operations, such as access controls, role-based permissions, and secure platform configuration. We also take steps to ensure our service providers (HubSpot, LearnWorlds and Stripe) have appropriate security measures in place.

Security measures may include:

  • access controls and role-based permissions
  • multi-factor authentication for administrator accounts
  • staff confidentiality obligations and training
  • secure configuration and monitoring of core systems
  • secure payment processing via Stripe (we do not store full card details)
  • supplier governance (including reviewing platform security and sub-processor arrangements where relevant).

No system is risk-free; however, we design our processes to reduce risk and respond quickly if issues arise.

11) Retention and deletion

Retention periods vary by record type and purpose. In many cases, records may be retained for 5–7+ years to meet legal, accounting, audit, and integrity requirements. When no longer needed, we take reasonable steps to delete or de-identify it (subject to required retention under law).

Typical retention periods (guidance only):

  • Accreditation/renewal records: generally up to 7 years after expiry/non-renewal
  • CWP credential records: generally up to 7 years after expiry/non-renewal
  • Complaints and standards case files: generally up to 7 years after closure
  • Finance and transaction records: retained as required for accounting and tax purposes (often several years)
  • Marketing subscriptions: held until you unsubscribe (then we maintain a minimal suppression record to ensure we respect your opt-out)

12) Cookies and analytics

Our website may use cookies and similar technologies to keep the site functioning, understand usage, and improve performance. You can control cookies via browser settings; disabling cookies may affect site features.

13) Access and correction

You may request access to, or correction of, personal information we hold about you. We may need to verify identity before responding. We will consider requests in line with applicable access and correction requirements.

To request access/correction, contact privacy@marrymark.com.au.

14) Privacy complaints

If you have a privacy complaint, contact privacy@marrymark.com.au with details. We will acknowledge and respond within a reasonable timeframe. If you’re not satisfied, you can escalate to the Office of the Australian Information Commissioner (OAIC).

15) Notifiable Data Breaches

If the Privacy Act applies to MarryMark and an eligible data breach occurs that is likely to result in serious harm, we will notify affected individuals and the OAIC as required.

16) Changes to this policy

We may update this Privacy Policy from time to time. The latest version will be published on our website with the updated date.