Privacy Policy

This Privacy Policy explains what personal data the Eventipus mobile app and eventipus.com (together, the "Service") collect, why we collect it, and how you can exercise your rights. By using Eventipus you agree to this policy.

Data We Collect

Account information

You sign in with Sign in with Apple or Google. From your provider we receive:

• Your email address (if you choose "Hide My Email" on Apple, we receive Apple's relay address instead)
• Your name (only what your provider shares)

You can optionally save a phone number for guest management. The phone field is not required.

Event content

We store everything you put into the events you create: title, date, location, description, background photo and guest list (guest name, phone number, RSVP response). You control guest data — only the people you choose from your contacts are added.

Device permissions

The app accesses the following device data only with your explicit permission:

• Contacts: used to add guests; only the subset you select is sent to our servers.
• Photos: used to pick an event background; only the photo you select is uploaded.
• Location: used to suggest your current venue in the picker; we never track your location in the background.

Purchase data

In-app coin purchases are processed by Apple App Store / Google Play. Payment details such as card numbers or CVC are never sent to us. Through RevenueCat we record the product ID, transaction time and number of coins granted. We keep this for accounting and customer support.

Usage analytics

We use PostHog to understand which screens are used and which errors occur. The analytics we collect: screen view events, tap interactions, error logs and session replays. In session replays all text inputs are automatically masked; private fields (phone, name, email) cannot be read.

Who We Share Data With

Eventipus does not sell user data to any third party for advertising or marketing. To run the Service we work with the following processors:

• Google Firebase (Authentication, Cloud Functions) — identity and server infrastructure
• Amazon Web Services (AWS S3) — event photo storage
• PostHog — usage analytics and error monitoring (EU servers)
• RevenueCat — in-app purchase management
• Google Places / Maps — venue search and map preview
• SMS provider — invitation messages (only when you press send)

Retention

Your data is kept as long as your account is active. When you delete your account (see below) your profile, every event you created and every guest list under those events is permanently deleted. Purchase records may be retained for a limited period for accounting compliance, but they can no longer be linked to your personal data.

Your Rights

Under KVKK (Turkey) and GDPR (EU) you have the right to:

• Access and correction: view and edit your account info in app settings.
• Erasure: delete your account and all associated data instantly via Settings → Account → Danger Zone → Delete Account inside the app. This action is irreversible.
• Objection and portability: contact us at the address below to submit a request.
• Lodge a complaint: file a complaint with KVK Kurumu (Turkey) or your local data protection authority (EU).

Children

Eventipus is not designed for users under the age of 13 and we do not knowingly collect data from that age group. If we discover we have inadvertently processed data of a child under 13, we will delete the account and all associated data.

Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via in-app notice or email. The date at the top of this page always reflects the latest version.

Contact

For questions about data processing or to exercise your rights, reach us at [email protected].