Privacy Policy

1. Who We Are

RSVPie is operated by Hero Technologies Ltd, registered in England and Wales (Company No. 16934431).

2. What Data We Collect

• Name & Email

  Collected when you create an account, via Google OAuth or magic link.

• Google Account Data

  If you sign in with Google, we receive your name, email address, and profile picture from Google.

• Payment Information

  Processed securely by Stripe. We never store your card details — only a Stripe customer ID and subscription status.

• Uploaded Files

  Images and files you upload for your events are stored on Cloudflare R2.

• Usage & Analytics Data

  We collect anonymised data about how you use RSVPie (pages visited, features used) to improve the product.

• Session Data

  We use an HTTP-only session cookie to keep you logged in.

3. Why We Collect It

• → To provide and operate the RSVPie service
• → To process payments and manage your subscription
• → To send transactional emails (magic links, receipts)
• → To improve the product based on usage patterns
• → To comply with our legal obligations

4. Cookies

We use the following cookies:

5. Third-Party Processors

We share data with the following trusted third parties to operate the service:

6. Your Rights (UK GDPR)

Under UK GDPR, you have the right to:

• → Access the personal data we hold about you
• → Request correction of inaccurate data
• → Request deletion of your account and data
• → Object to or restrict processing
• → Data portability
• → Lodge a complaint with the ICO (ico.org.uk)

To exercise any of these rights, email us at [email protected].

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required by law to retain it longer (e.g. financial records for 7 years).

8. Contact

For any privacy-related questions, contact us at [email protected].