J
Joinora
Start free
Legal

Privacy Policy

Last updated: June 1, 2026

This Privacy Policy describes how Joinora ("we," "us") collects, uses, and shares information about you when you use Joinora (the "Service"). By using the Service, you agree to the practices described here.

1. What we collect

Information you give us

  • Account data: email, name, password (hashed), and any profile details you add.
  • Event content: invitation text, photos, dates, venue details, guest names and contact info you upload, RSVP responses, and messages.
  • Billing data: when you purchase a paid plan, our payment processor collects payment-method details. We do not store full card numbers.
  • Support data: what you send us when you contact support.

Information collected automatically

  • Usage data: pages visited, features used, timestamps, referrer.
  • Device data: IP address, browser type, operating system, approximate location derived from IP.
  • Cookies and similar technologies: for authentication, preferences (e.g. language), and basic analytics.

2. How we use it

  • Provide, maintain, and improve the Service.
  • Process payments and prevent fraud.
  • Send transactional emails (account confirmations, RSVP notifications, receipts).
  • Respond to support requests.
  • Analyze usage to improve performance and design.
  • Comply with legal obligations.

We do not sell your personal information. We do not use your event content or guest data to train AI models.

3. AI-assisted features

Some features (such as suggested invitation copy) send a limited prompt to a third-party AI provider (currently OpenAI). We send only what is needed for the feature — for example, a short description you typed — and never your full guest list or private notes. The provider's terms prohibit them from using API requests to train their models.

4. Who we share with

We share information only with the processors required to run the Service:

  • Hosting and database: Supabase (PostgreSQL) for storing your account and event data.
  • Payment processing: our payment processor (e.g. Stripe, Epoint, or Lemon Squeezy) for handling purchases.
  • AI provider: OpenAI for AI-assisted features, as described above.
  • Email delivery: a transactional email provider for sending account and RSVP emails.
  • Legal: we may disclose information when required by law or to protect rights, safety, or property.

These processors are bound by contract to use your data only to provide their service to us.

5. International transfers

Some of our processors are based outside of Azerbaijan (notably in the EU and the United States). By using the Service, you understand that your information may be transferred to and processed in those countries.

6. How long we keep it

We keep account and event data as long as your account is active. If you delete an event or your account, we delete the underlying data within 30 days, except where we are required by law to retain it (e.g. tax records for billing). Backups are purged on a rolling basis.

7. Your rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data ("right to be forgotten").
  • Export your data in a portable format.
  • Object to or restrict certain processing.

To exercise any of these rights, email us at [email protected]. We will respond within 30 days.

8. Security

We use industry-standard measures to protect your data: encrypted connections (HTTPS), encrypted-at-rest storage, access controls, and regular security reviews. No system is perfectly secure, however, and we cannot guarantee absolute security.

9. Children

The Service is not directed at children under 13 (or 16 where applicable). We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact us and we will delete it.

10. Cookies

We use a small number of cookies for essential functionality (login session, language preference) and basic analytics. Most browsers let you control cookies through their settings. Disabling essential cookies will break login and other core features.

11. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we'll revise the "Last updated" date above and, for material changes, give you reasonable notice.

12. Contact

Questions about this Privacy Policy? Email us at [email protected].

See also our Terms of Service.