Dear Guest Logo

Privacy Policy

Last updated: 2026-03-01

1. Introduction

This Privacy Policy explains how Dear Guest collects, uses, and protects personal data in connection with the purchase and use of digital products.

2. Data Controller

Dear Guest is the data controller of Users (Buyers). Regarding guest data entered by the User, the User is the Controller, and Dear Guest acts as the data processor based on a Data Processing Agreement.

3. Personal data we collect

We collect identification data (name, email), event data, technical data, and payment data processed securely by third-party providers (Stripe).

4. Purpose of processing

Personal data is processed to deliver digital products, manage access, process payments, fulfill legal obligations, and improve security.

5. Legal basis

Processing is based on the performance of a contract, legal obligations, legitimate interests, and the User's voluntary consent.

6. Data sharing

Personal data may be shared only with trusted technical entities (Vercel, Supabase, Stripe) necessary to provide the service. Data is never sold.

7. International transfers

Data is stored on servers within the EEA. When using providers outside the EEA, we employ Standard Contractual Clauses (SCC) ensuring security.

8. Data retention

Personal data is stored only as long as necessary to provide the service or required by tax law. Guest data may be automatically deleted after the event.

9. Your rights

You have the right to access, rectify, or delete your data ('right to be forgotten'), restrict processing, transfer data, and object to processing.

10. Data security

We use data encryption (SSL), strict database access policies (RLS), and modern authorization methods to prevent data leaks.

11. Changes

Updates to this Privacy Policy will be published on this page.

12. Contact

hello@dearguest.io