Eventilly - AI Event Planner | Plan Any Event in Minutes

1. Introduction

Eventilly ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

We comply with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) and applicable privacy laws.

2. Information We Collect

2.1 Information You Provide

Account Information: Name, email address, and password when you create an account
Event Information: Event details, dates, locations, guest counts, and preferences you enter
Payment Information: Processed securely by Stripe; we do not store your full card details
Communications: Feedback, support requests, and other communications you send us

2.2 Information Collected Automatically

Usage Data: Pages visited, features used, time spent on the service
Device Information: Browser type, operating system, device identifiers
Location Data: General location based on IP address (used for vendor search)
Cookies: Session cookies for authentication and preferences

2.3 Contact Import Feature

When you use our Contact Import feature to add guests from Google Contacts or other sources:

What we access: Name, email address, and phone number from your connected contact sources. Access to Google Contacts is initiated only after explicit user action (for example, when the user clicks an "Import Contacts" button) and only for the duration of that action. Eventilly does not access Google Contacts in the background and does not access contacts on a recurring or continuous basis.
Purpose: Contacts are imported solely for the purpose of shortlisting and adding guests to your events
What we store: Only contacts you explicitly select and add as guests are stored in our system. Guest data is stored only within the context of the specific event or events created by the user and is not used outside that context.
What we don't store: Contacts you browse but do not add are never stored in our database and are immediately discarded when you close the import screen
No marketing: Contact data is never used for marketing, analytics, or shared with third parties
No AI processing: Contact information imported or added by users, including names, email addresses, and phone numbers, is not used for any artificial intelligence or large language model (LLM) services. Eventilly's AI features operate only on event-related metadata and user-written content and never process contact data

You can revoke Eventilly's access to your Google Contacts at any time via your Google Account permissions.

3. How We Use Your Information

We use your information to:

Provide, maintain, and improve our service
Process transactions and send related information
Generate AI-powered event plans based on your inputs
Search for vendors near your specified location
Send you technical notices, updates, and support messages
Respond to your comments, questions, and requests
Monitor and analyze trends, usage, and activities
Detect, investigate, and prevent fraudulent transactions and abuse

4. Information Sharing

We may share your information with:

4.1 Service Providers

Supabase: Database hosting and authentication
Stripe: Payment processing
Google: Google Places API for vendor search
Vercel: Website hosting
AI Providers: For generating event plans (data is processed but not stored)

4.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

Encryption of data in transit (HTTPS/TLS)
Secure authentication through Supabase
PCI-compliant payment processing through Stripe
Regular security assessments and updates

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your personal information according to the following principles:

6.1 Account and Event Data

Events and Tasks: Retained until you delete them. This allows you to reference past events and reuse plans for recurring celebrations
Guest Information: Retained as part of your event data until you delete the guest or the associated event
Account Information: Retained until you delete your account

6.2 Temporary Data

Contact Import Sessions: Contacts browsed during import are held only in your browser session and are never stored in our database. This data is immediately discarded when you close the import screen
Google Contacts Access Token: Expires automatically within 1 hour and is not stored permanently

6.3 Your Control

You have full control over your data:

Delete individual events, guests, or tasks at any time through the app
Request complete account deletion by contacting us
Export your data in a portable format upon request
Revoke third-party access (e.g., Google Contacts) through their respective account settings

6.4 Legal Retention

We may retain certain information as required by law (e.g., payment records for tax purposes) or to resolve disputes, even after account deletion. Such data is kept securely and only for the minimum period required.

7. Your Rights

Under Australian Privacy Law, you have the right to:

Access: Request access to your personal information
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Portability: Request a copy of your data in a portable format
Complaint: Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

To exercise these rights, .

8. Cookies and Tracking

We use cookies and similar tracking technologies to:

Keep you signed in to your account
Remember your preferences
Understand how you use our service
Improve our service based on usage patterns

You can control cookies through your browser settings. Disabling cookies may affect your experience.

9. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than Australia. Our service providers may store data in the United States and other jurisdictions. We ensure appropriate safeguards are in place to protect your information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Eventilly

You may also contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au if you have concerns about our handling of your personal information.