About
Upcoming
Past events
What’s New
Reviews
FAQ’s
Contacts
Upcoming workshops
+34 624 113 162

Privacy Policy

Sparkling Moments Events Ltd  |  Last updated: April 2026

1. Introduction

Thank you for choosing Sparkling Moments Events Ltd (“Sparkling Moments”, “Company”, “we”, “us”, or “our”). We are committed to protecting your personal data and respecting your privacy.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you:

  • Visit our website sparklingmoments.events (the “Website”)
  • Use our services, attend our workshops and editorial experiences
  • Interact with us via social media, messaging platforms, or other communication channels
  • Engage with our advertising

This Privacy Policy applies to all individuals whose personal data we process, including website visitors, leads and prospective customers, workshop attendees and clients, newsletter subscribers, and social media contacts.

Data Controller

Sparkling Moments Events Ltd
Company number: 14792348
Registered address: 45 Royal Victoria Gardens, Whiting Way, SE16 7EN, London, United Kingdom
Operational address: Via Augusta 336, 4-1, Barcelona, 08017, Spain
Email: info@sparklingmoments.events
Phone: +34 624 113 162

We are registered in England and Wales and are subject to the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. As we also offer services to individuals in the European Economic Area (EEA), the EU General Data Protection Regulation (EU GDPR) also applies to our processing of their personal data.

2. EU Representative

As we are established in the UK and process personal data of individuals located in the EEA, we have appointed an EU representative in accordance with Article 27 of the EU GDPR:

EU Representative (Article 27 EU GDPR)

Diana Vartanova
Via Augusta 336, 4-1
Barcelona, 08017
Spain
Email: info@sparklingmoments.events

3. Personal Data We Collect

We collect and process the following categories of personal data:

3.1 Data You Provide Directly

  • Identity data: first name, last name, Instagram handle
  • Contact data: email address, phone number (including WhatsApp number)
  • Financial data: payment card details (processed securely by Stripe — we do not store your full card details), bank transfer details
  • Transaction data: details of payments, purchases, booking history
  • Communications data: the content of messages you send us via email, WhatsApp, Instagram Direct Messages, website contact forms, or other channels
  • Event data: your participation in our workshops and editorial experiences

3.2 Data We Collect Automatically

When you visit our Website, we automatically collect:

  • Technical data: IP address, browser type and version, operating system, device type, screen resolution, language preferences
  • Usage data: pages visited, time spent on pages, click patterns, referring URLs, date and time of access
  • Location data: approximate geographic location derived from your IP address
  • Cookie data: information collected through cookies and similar tracking technologies (see our Cookie Policy for full details)

3.3 Data We Receive From Third Parties

  • Advertising platforms: when you click on one of our advertisements on Meta (Facebook/Instagram) or Google and are directed to our Website, we may receive information about your interaction with that advertisement
  • Payment processors: Stripe and PayPal provide us with transaction confirmations and limited payment information

4. How We Use Your Personal Data

We use your personal data for the purposes set out below, together with the lawful basis we rely on for each:

4.1 To perform our contract with you (Article 6(1)(b) UK/EU GDPR)

  • Processing your booking and payment for workshops and editorial experiences
  • Managing your attendance at events
  • Communicating with you about your booking (confirmations, logistics, updates)
  • Issuing invoices and processing refunds where applicable
  • Providing customer support related to your booking

4.2 For our legitimate interests (Article 6(1)(f) UK/EU GDPR)

  • Responding to enquiries submitted via our Website, email, WhatsApp, or Instagram
  • Maintaining and improving our Website’s security and performance
  • Analysing Website traffic and usage patterns to improve user experience
  • Administering and protecting our business, including fraud prevention
  • Managing our customer relationship database
  • Tracking the effectiveness of our advertising campaigns

We have conducted a balancing test for each of these purposes and concluded that our legitimate interests are not overridden by your rights and freedoms. You may request details of these assessments by contacting us.

4.3 With your consent (Article 6(1)(a) UK/EU GDPR)

  • Sending you marketing communications via email
  • Contacting you via WhatsApp or Instagram Direct Messages for promotional purposes
  • Placing non-essential cookies and similar tracking technologies on your device (see our Cookie Policy)
  • Using photographs or video footage of you taken at our events for our marketing and promotional purposes

You may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal. To withdraw consent for marketing, use the unsubscribe link in any marketing email, or contact us directly. To withdraw consent for cookies, adjust your preferences via our cookie consent tool (see our Cookie Policy). To withdraw consent for image use, contact us at info@sparklingmoments.events.

4.4 To comply with legal obligations (Article 6(1)(c) UK/EU GDPR)

  • Maintaining financial records as required by UK tax and accounting law
  • Responding to lawful requests from regulatory authorities or law enforcement
  • Complying with applicable consumer protection legislation

5. Marketing Communications

We may send you marketing communications about our workshops, editorial experiences, and other services where:

  • You have given us your explicit consent to receive marketing communications (for example, by ticking a consent checkbox on one of our Website forms or by opting in via a lead magnet); or
  • You are an existing customer and the marketing relates to similar products and services (soft opt-in under Regulation 22 of the Privacy and Electronic Communications Regulations 2003), and you have not opted out.

Every marketing email we send includes an unsubscribe link. You can also opt out at any time by contacting us at info@sparklingmoments.events.

We use SendPulse to manage and send our marketing emails. SendPulse processes your email address and engagement data (opens, clicks) on our behalf as a data processor.

When we contact you via WhatsApp or Instagram Direct Messages for marketing or sales purposes, we do so on the basis of your consent. You can ask us to stop contacting you via these channels at any time.

6. Photographs and Video at Events

Our workshops and editorial experiences are creative events where photography and videography are central activities. By booking and attending one of our events, you consent to being photographed and filmed by us, by our designated videographers and photographers, and by other attendees as part of the event activities.

We may use photographs and video footage from events for our Website, social media accounts, advertising, editorial submissions, portfolios, and other promotional purposes. There is no expiration period for this permission.

If you wish to withdraw your consent for us to use your image, please contact us at info@sparklingmoments.events. We will make reasonable efforts to remove or cease using your image going forward, though we cannot guarantee removal from third-party publications or platforms, or from materials already distributed.

Separate image consent and model release provisions are set out in our Booking Terms and Conditions.

7. Who We Share Your Data With

We do not sell your personal data. We share your personal data only with the following categories of recipients, and only to the extent necessary:

7.1 Service Providers (Data Processors)

These companies process data on our behalf, under our instructions:

Provider Purpose Data Shared Location
StripePayment processingPayment card details, transaction dataUSA
PayPalPayment processingEmail, transaction dataUSA/EU
SendPulseEmail marketingEmail address, name, engagement dataUSA/EU
KommoCustomer relationship managementName, email, phone, booking history, communicationsEU
TildaWebsite hosting and formsForm submissions, technical dataEU
Google (Analytics & Ads)Website analytics, advertisingCookie identifiers, IP address, usage dataUSA
Meta (Facebook/Instagram)Advertising, trackingCookie identifiers, IP address, interaction dataUSA
YandexWebsite analytics (Yandex Metrica)Cookie identifiers, IP address, usage dataRussia
WhatsApp (Meta)Customer communicationsPhone number, message contentUSA
Google WorkspaceBusiness operations, client recordsName, email, booking data (Google Sheets)USA

7.2 Other Recipients

  • Professional advisers: our accountants, lawyers, or auditors where necessary for legal, accounting, or audit purposes
  • Law enforcement or regulatory authorities: where we are required to do so by law, or to protect our rights
  • Business successors: in connection with a merger, acquisition, or sale of assets, your data may be transferred to the successor entity

We do not share attendee personal data with third-party vendors (florists, venues, models, etc.) engaged for our events.

8. International Data Transfers

As set out in Section 7, some of our service providers are located outside the UK and the EEA, including in the United States and Russia. When we transfer your personal data outside the UK or EEA, we ensure appropriate safeguards are in place:

  • United States: For transfers to US-based providers, we rely on the EU-US Data Privacy Framework (where the recipient is certified), Standard Contractual Clauses (SCCs) approved by the European Commission and/or the UK International Data Transfer Agreement (IDTA) or UK Addendum to the EU SCCs, as applicable.
  • Russia (Yandex): Transfers to Yandex are covered by Standard Contractual Clauses.
  • Adequacy decisions: Where the European Commission or UK Secretary of State has determined that a country provides an adequate level of data protection, no additional safeguards are required.

You may request a copy of the relevant safeguards by contacting us at info@sparklingmoments.events.

9. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:

Data Category Retention Period Reason
Client/booking data6 years after last transactionUK tax and accounting obligations (HMRC)
Marketing leads (non-customers)24 months from last engagementLegitimate interest; re-consent sought if inactive
Website analytics data26 monthsGoogle Analytics default; anonymised thereafter
Email marketing dataUntil unsubscribe, then deleted within 30 daysConsent-based; suppression list retained to honour opt-out
Communications (email, WhatsApp, DMs)24 months from last contactBusiness administration and dispute resolution
Payment/financial records6 years from date of transactionLegal obligation (UK tax law)

When the retention period expires, we will securely delete or anonymise your personal data.

10. Your Rights

Under the UK GDPR and EU GDPR, you have the following rights. These rights are not absolute and may be subject to certain conditions and exemptions:

  • Right of access — You have the right to request a copy of the personal data we hold about you. We will respond within one month.
  • Right to rectification — You have the right to request correction of any inaccurate or incomplete personal data.
  • Right to erasure (“right to be forgotten”) — You may request deletion of your personal data where there is no compelling reason for us to continue processing it. This right does not apply where we are required to retain data for legal obligations (e.g. tax records).
  • Right to restriction of processing — You may request that we restrict the processing of your data in certain circumstances, for example while we verify the accuracy of data you have challenged.
  • Right to data portability — Where processing is based on consent or contract and carried out by automated means, you may request your data in a structured, commonly used, and machine-readable format.
  • Right to object — You have the right to object to processing based on our legitimate interests. We will cease processing unless we can demonstrate compelling legitimate grounds. You have an absolute right to object to direct marketing at any time.
  • Right to withdraw consent — Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
  • Right not to be subject to automated decision-making — We do not carry out any solely automated decision-making that has legal or similarly significant effects on you.

Right to Lodge a Complaint

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the relevant supervisory authority:

UK: Information Commissioner’s Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. Website: ico.org.uk. Helpline: 0303 123 1113.

EU: You may also complain to the supervisory authority in the EU Member State where you reside, work, or where the alleged infringement occurred. A list of EU supervisory authorities is available at edpb.europa.eu.

To exercise any of your rights, please contact us at info@sparklingmoments.events. We will respond within one month. If your request is complex, we may extend this by a further two months, but we will inform you of any extension within the initial one-month period.

11. Data Security

We have implemented appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit (SSL/TLS) on our Website, use of reputable third-party service providers with their own security certifications, access controls limiting access to personal data to authorised personnel only, and regular review of our data processing activities and security measures.

No method of transmission over the internet or electronic storage is completely secure. While we take reasonable steps to protect your personal data, we cannot guarantee absolute security.

12. Data Breaches

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will:

  • Notify the Information Commissioner’s Office (ICO) without undue delay and, where feasible, within 72 hours of becoming aware of the breach
  • Notify the relevant EU supervisory authority where the breach affects EEA residents
  • Notify you directly without undue delay where the breach is likely to result in a high risk to your rights and freedoms
  • Document all breaches, including those not reportable, as required by Article 33(5) UK/EU GDPR

13. Children’s Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at info@sparklingmoments.events and we will take steps to delete such information.

14. California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

  • Right to know: You may request the categories and specific pieces of personal information we have collected, the sources, the business purposes, and the categories of third parties with whom we share it.
  • Right to delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to opt out of sale/sharing: We do not sell your personal information. We may share certain data (such as cookie identifiers) with advertising partners for targeted advertising purposes, which may be considered “sharing” under the CCPA. You may opt out of this by adjusting your cookie preferences.
  • Right to non-discrimination: We will not discriminate against you for exercising your CCPA rights.

To make a request, contact us at info@sparklingmoments.events. We will verify your identity before processing your request.

15. Third-Party Websites and Content

Our Website may contain links to third-party websites, and our events may involve third-party content. We are not responsible for the privacy practices of these third parties. We encourage you to read the privacy policies of any third-party websites you visit.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated version on our Website with a revised “Last updated” date. Where changes are material, we will notify you by email or by a prominent notice on our Website.

17. Contact Us

Sparkling Moments Events Ltd
Email: info@sparklingmoments.events
Phone: +34 624 113 162
Postal address: 45 Royal Victoria Gardens, Whiting Way, SE16 7EN, London, United Kingdom