Privacy Policy

Last updated: March 1, 2025

1. Information We Collect

We collect information you provide directly to us, such as:

  • Account information: name, email address, password (hashed), phone number, city.
  • Vendor profile: business name, description, photos, pricing, location.
  • Event information: event type, date, guest count, budget, venue details.
  • Communications: messages exchanged with other users through our platform.
  • Payment information: processed by Stripe — we do not store card numbers.

We also collect information automatically, including:

  • Log data (IP address, browser type, pages visited, referring URL).
  • Device information (hardware model, operating system).
  • Cookies and similar tracking technologies.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Process transactions and send related notifications.
  • Send transactional emails (booking confirmations, messages, offers).
  • Respond to comments and questions and provide customer service.
  • Monitor and analyze usage trends to improve your experience.
  • Detect and prevent fraudulent transactions and other illegal activities.
  • Personalize and improve the Service based on your preferences.

3. Information Sharing

We share your information in the following situations:

  • With other users: vendor profiles are publicly visible; messages are shared between conversation participants.
  • Service providers: Stripe (payments), Cloudinary (image storage), Resend (email delivery), Neon (database hosting).
  • Legal requirements: if required by law or to protect our rights.
  • Business transfers: in connection with a merger, acquisition, or sale of assets.

We do not sell your personal information to third parties.

4. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. You may delete your account at any time by contacting us, after which we will delete or anonymize your data within 30 days, except as required by law.

5. Security

We implement industry-standard security measures to protect your information, including SSL/TLS encryption, bcrypt password hashing, and secure database hosting. However, no method of transmission over the Internet is 100% secure.

6. Cookies

We use cookies to maintain your session (authentication). We use a single HTTP-only, secure cookie named soiree_token to keep you logged in. You can disable cookies in your browser settings, but this will prevent you from logging in.

7. Your Rights

You have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate personal information.
  • Request deletion of your personal information.
  • Opt out of marketing communications.
  • Data portability (receive your data in a structured format).

To exercise these rights, please contact us.

8. Children's Privacy

The Service is not directed to children under 18. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child, please contact us.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a notice on our website. Your continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy, please contact us.