Privacy Policy

This Privacy Policy explains how Eventringo collects, uses, stores, shares, and protects personal data when you use our website, web application, event pages, shared galleries, and related services.

The Service is provided by:

Filip Lněnička
Czech Republic
Email: support@eventringo.com
Website: https://eventringo.com

In this Privacy Policy, "Eventringo", "we", "us", and "our" refer to the provider of the Service. "You" refers to any person using the Service, including event organizers, guests, participants, account holders, and visitors.

By using Eventringo, you acknowledge that your personal data will be processed as described in this Privacy Policy.

Eventringo is an online platform that allows event organizers to create interactive event experiences.

The Service may include:

• event invite pages;
• shared event galleries;
• photo uploads;
• photo bingo;
• live polls;
• quizzes;
• live leaderboard;
• live screen mode;
• moderation tools;
• gallery exports;
• custom invite pages;
• custom export pages;
• analytics;
• branding features;
• beta or experimental modules.

Eventringo is commonly used for weddings, parties, corporate events, festivals, and other social or professional events.

For personal data processed for the operation of Eventringo, the data controller is:

Filip Lněnička
Czech Republic
Email: support@eventringo.com
Website: https://eventringo.com

We are the data controller for personal data related to:

• organizer accounts;
• subscriptions and billing;
• support communication;
• platform administration;
• security;
• service operation and performance;
• transactional communication;
• legal compliance.

For certain event-related data, the event organizer may also act as an independent data controller, especially where the organizer decides:

• who is invited to the event;
• what event content is created;
• what photos are collected;
• whether the gallery is accessible by link or restricted;
• how event photos are used after the event.

In those cases, Eventringo provides the technical platform, while the organizer is responsible for the lawful setup and use of their event.

We collect different types of personal data depending on how you use the Service.

3.1 Organizer Account Data

When you create or use an organizer account, we may collect:

• email address;
• name or display name, if provided;
• login credentials or authentication identifiers;
• account settings;
• subscription or plan information;
• event ownership information;
• support requests;
• communication preferences.

If you sign in using a third-party provider, such as Google or another authentication provider, we may receive basic account information from that provider, such as your email address and account identifier.

3.2 Participant / Guest Data

When you join an event, we may collect:

• display name or nickname;
• event membership;
• uploaded photos;
• poll responses;
• quiz answers;
• bingo progress;
• leaderboard activity;
• event interactions;
• timestamps of activity;
• technical data related to your session.

Depending on the event settings, participants may join without a permanent account, or the organizer may require authentication.

3.3 Event Data

When an organizer creates or manages an event, we may process:

• event name;
• event description;
• event date and settings;
• invite page content;
• gallery visibility settings;
• moderation settings;
• custom branding;
• bingo prompts;
• quiz questions;
• poll options;
• uploaded event media;
• event activity and engagement statistics.

Some of this information may be visible to event participants or anyone with access to the event link, depending on the organizer’s settings.

3.4 Uploaded Photos and Media

Eventringo allows participants and organizers to upload photos or other supported media.

Uploaded photos may contain personal data if individuals are identifiable in them.

Photos may include:

• faces;
• location-related context;
• event context;
• metadata, if not removed or minimized;
• other identifiable information visible in the image.

We may process uploaded photos to:

• store them;
• display them in galleries;
• generate thumbnails;
• compress or resize them;
• moderate content;
• enable exports;
• improve loading performance;
• provide technical support.

3.5 Payment and Billing Data

If you purchase a paid plan or event access, payments are processed by third-party payment providers such as Stripe.

We may process:

• payment status;
• plan type;
• subscription status;
• billing period;
• purchase history;
• invoice information;
• customer identifier from the payment provider.

We do not directly store full payment card numbers.

Payment providers process payment data under their own terms and privacy policies.

3.6 Technical and Usage Data

When you use the Service, we may collect technical data such as:

• IP address;
• browser type;
• device type;
• operating system;
• pages visited;
• time and date of access;
• referral source;
• error logs;
• performance data;
• security logs;
• approximate location derived from IP address.

We use this data to operate, secure, debug, and improve the Service.

3.7 Support and Communication Data

If you contact us, we may process:

• your email address;
• message content;
• attachments you provide;
• account or event identifiers;
• support history;
• metadata related to the communication.

We use this data to respond to your request and provide support.

We use personal data for the following purposes:

4.1 To Provide the Service

We use data to:

• create and manage accounts;
• create and manage events;
• allow participants to join events;
• enable photo uploads;
• display shared galleries;
• run photo bingo, polls, quizzes, and leaderboards;
• provide live screen mode;
• moderate event content;
• generate exports;
• store event data;
• enforce plan limits.

4.2 To Process Payments

We use payment-related data to:

• process purchases;
• manage subscriptions;
• issue invoices or receipts;
• detect failed payments;
• prevent fraud;
• manage access to paid features;
• comply with accounting and tax obligations.

4.3 To Communicate With You

We may send:

• account-related emails;
• login or authentication emails;
• payment and subscription emails;
• event-related notifications;
• security alerts;
• support replies;
• service updates;
• transactional messages.

We do not use transactional service emails as marketing emails.

4.4 To Improve and Secure the Service

We may use data to:

• monitor performance;
• fix bugs;
• prevent abuse;
• detect suspicious activity;
• improve user experience;
• improve event flows;
• protect the Service from unauthorized access;
• ensure platform reliability.

4.5 To Comply With Legal Obligations

We may process data when necessary to:

• comply with laws;
• maintain accounting records;
• respond to lawful requests;
• enforce our Terms of Service;
• protect rights, safety, and security;
• resolve disputes.

Where GDPR applies, we process personal data based on one or more of the following legal bases.

5.1 Performance of a Contract

We process data where necessary to provide the Service you requested, including:

• account creation;
• event management;
• event participation;
• photo uploads;
• gallery access;
• paid plan access;
• subscriptions;
• exports.

5.2 Consent

We may rely on consent for:

• optional marketing communication, if introduced in the future;
• optional analytics or marketing cookies, if introduced in the future;
• optional features where consent is required;
• certain participant confirmations, where applicable.

You may withdraw consent at any time.

Withdrawal of consent does not affect processing that occurred before withdrawal.

5.3 Legitimate Interests

We may process data based on legitimate interests, including:

• securing the Service;
• preventing abuse;
• detecting fraud;
• maintaining logs;
• improving performance;
• responding to support requests;
• protecting our rights;
• ensuring platform reliability.

We use legitimate interests only where they are not overridden by your rights and freedoms.

5.4 Legal Obligation

We may process data to comply with legal obligations, such as:

• tax records;
• accounting;
• consumer protection requirements;
• responding to lawful requests.

5.5 Organizer Responsibility

For event content and participant data, the organizer may determine certain purposes and settings, such as:

• who is invited;
• what content is requested;
• whether guests may upload photos;
• whether a gallery is public by link;
• how event photos are exported or used.

Organizers are responsible for ensuring that their event setup complies with applicable laws.

Some events or galleries may be accessible through a private but shareable link.

If an event or gallery is accessible by link:

• anyone with the link may be able to access it;
• the link may be shared by guests or organizers;
• the event may not be publicly indexed, but it is not fully private;
• we cannot guarantee that only intended guests will access it.

Organizers are responsible for choosing appropriate access settings and sharing event links carefully.

Where available, organizers may enable restricted access or authentication requirements.

If an event includes minors, private family situations, schools, or sensitive content, we strongly recommend using restricted access and careful moderation.

If you upload photos, you are responsible for ensuring that:

• you have the right to upload them;
• the upload does not violate anyone’s privacy;
• identifiable people in the photos have been photographed appropriately;
• the content is suitable for the event context;
• the content does not violate our Terms of Service.

Participants should not upload photos that are humiliating, invasive, illegal, explicit, harassing, or otherwise harmful.

Organizers are responsible for moderating event content and responding to removal requests related to their event.

Depending on the event settings chosen by the organizer, uploaded photos may either appear in the shared gallery immediately after upload or may require organizer approval before becoming visible to other participants.

If approval is required, uploaded photos may first be visible only to the organizer or event administrators for review.

Participants may be able to remove photos they uploaded directly through the Service, depending on event status and technical availability.

Removing a photo may remove it from the event gallery and future exports, but copies may remain temporarily in backups, logs, cached systems, or previously downloaded exports where applicable.

The Service is intended for users aged 15 and older.

If an event includes minors or is likely to include minors, organizers must take special care.

Organizers should:

• use restricted access settings where available;
• avoid public-by-link galleries for sensitive events;
• moderate uploads carefully;
• avoid inappropriate prompts or challenges;
• obtain parental or guardian consent where required;
• avoid using photos of minors outside the event context without appropriate permission.

We do not knowingly allow users under 15 to use the Service.

If we become aware that personal data of a person under 15 has been collected without appropriate authorization, we may delete it or restrict access.

We may remove content or restrict events if we believe they pose risks to minors.

We currently use cookies and similar technologies that are necessary for the operation of the Service.

These may be used for:

• authentication;
• session management;
• security;
• account access;
• payment flow;
• remembering essential settings.

These cookies are required for the Service to function.

We do not currently use marketing cookies, advertising cookies, or third-party tracking pixels.

We may introduce analytics or marketing cookies in the future to understand how the Service is used and to improve our product and marketing.

If we introduce non-essential analytics, advertising, or marketing cookies, we will update this Privacy Policy and, where required by law, request your consent before using them.

We use trusted third-party providers to operate the Service.

These may include:

Supabase

Used for database, authentication, backend functionality, and related infrastructure.

Cloudflare and Cloudflare R2

Used for DNS, security, content delivery, and storage of uploaded photos and media.

Vercel

Used for hosting and deployment of the web application.

Stripe

Used for payment processing, subscriptions, invoices, and billing-related data.

Resend or Other Email Providers

Used for transactional emails such as account, event, subscription, or system notifications.

MailerLite or Similar Email Tools

May be used for product communication or email list management if enabled in the future.

Analytics Providers

May be used for product analytics, performance monitoring, or usage insights if enabled in the future.

We may update our providers over time.

Service providers process personal data only as needed to provide their services to us and are subject to contractual obligations or their own legal responsibilities.

Some service providers may process data outside the European Economic Area.

Where personal data is transferred internationally, we rely on appropriate safeguards where required, such as:

• adequacy decisions;
• standard contractual clauses;
• data processing agreements;
• other lawful transfer mechanisms.

We store personal data only as long as necessary for the purposes described in this Privacy Policy, unless a longer period is required by law.

Retention depends on the type of data and the plan used.

12.1 Account Data

Organizer account data is generally retained while the account is active.

If you request deletion of your account, we will delete or anonymize account data unless we need to retain certain information for legal, billing, security, or dispute-resolution purposes.

12.2 Event Data and Photos

Event data and photos are retained according to the storage duration of the applicable plan.

Typical storage periods may include:

• Free plan: 3 days;
• Starter plan: 30 days;
• Pro plan: 60 days;
• Enterprise plan: 180 days.

After the applicable storage period expires, event data and uploaded photos may be deleted or permanently removed.

We may provide warnings before deletion, but we are not required to do so.

Users and organizers are responsible for exporting or saving event content before the storage period expires.

Deleted data may not be recoverable.

12.3 Payment Records

Payment, invoice, and billing records may be retained as required for tax, accounting, legal, or fraud-prevention purposes.

12.4 Support Communication

Support messages may be retained as long as necessary to resolve your request, maintain records of communication, prevent abuse, or protect legal rights.

12.5 Technical Logs

Technical logs may be retained for a limited period for security, debugging, performance, and abuse-prevention purposes.

Some logs may be retained longer if required for investigation, fraud prevention, or legal compliance.

You may request deletion of your personal data by contacting us at:

support@eventringo.com

Depending on the request, we may delete:

• your account;
• your event data;
• participant records;
• uploaded photos;
• support communication where applicable.

Some data may be retained if required for:

• legal obligations;
• accounting;
• fraud prevention;
• dispute resolution;
• security;
• enforcement of our Terms of Service.

If your data is part of an event created by an organizer, we may need to coordinate with the organizer or evaluate the request based on the role of each party.

If you appear in a photo uploaded to an event and want it removed, you may:

• contact the event organizer, or
• contact us at support@eventringo.com.

Please include enough information to identify the event and the photo.

We may ask for additional information to verify your request.

Where appropriate, we may remove, restrict, or ask the organizer to review the content.

If GDPR applies to you, you may have the following rights:

• right to access your personal data;
• right to correct inaccurate data;
• right to request deletion;
• right to restrict processing;
• right to object to processing;
• right to data portability;
• right to withdraw consent;
• right to lodge a complaint with a supervisory authority.

You can exercise your rights by contacting:

support@eventringo.com

We may need to verify your identity before fulfilling certain requests.

You also have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

We use reasonable technical and organizational measures to protect personal data.

These measures may include:

• access controls;
• authentication systems;
• secure infrastructure providers;
• HTTPS encryption;
• storage access restrictions;
• logging and monitoring;
• backups where appropriate;
• moderation tools;
• security practices for cloud infrastructure.

However, no online service is completely secure.

You are responsible for:

• keeping your account secure;
• not sharing login credentials;
• sharing event links carefully;
• selecting appropriate event privacy settings;
• reporting suspected security issues.

If you believe your account or event has been compromised, contact us at:

support@eventringo.com

The Service is intended for users aged 15 and older.

We do not knowingly collect personal data from users under 15.

If we learn that we have collected data from a person under 15 without appropriate authorization, we may delete the data or restrict access.

Organizers are responsible for ensuring that events involving minors are appropriate and legally compliant.

We may send transactional and service-related emails that are necessary to provide the Service, such as:

• account emails;
• login or authentication emails;
• payment and subscription emails;
• event-related notifications;
• security alerts;
• support replies.

We do not currently send marketing emails.

If we introduce marketing emails in the future, we will only send them where we have a lawful basis to do so, such as consent, and you will be able to unsubscribe at any time.

We do not use personal data for automated decision-making that produces legal or similarly significant effects on users.

We may use automated systems to help detect abuse, spam, security risks, or policy violations.

For some event-related data, especially participant data and uploaded event content, the organizer may determine the purposes of processing.

In such cases:

• the organizer is responsible for informing participants where required;
• the organizer is responsible for choosing appropriate privacy settings;
• the organizer is responsible for lawful reuse or publication of event photos;
• Eventringo provides the technical platform and processes data as necessary to operate the Service.

For business or enterprise customers, a separate Data Processing Agreement may be made available where required.

We may update this Privacy Policy from time to time.

When we update it, we will change the "Last updated" date above.

If changes are significant, we may notify users by email, in-app notice, website notice, or another reasonable method.

Your continued use of the Service after an updated Privacy Policy becomes effective means that you acknowledge the updated policy.

If you have questions, requests, complaints, or concerns about this Privacy Policy or our processing of personal data, contact us at:

Eventringo
Filip Lněnička
Czech Republic
Email: support@eventringo.com
Website: https://eventringo.com

We may ask you to verify your identity before responding to certain privacy-related requests.