Privacy Policy

Last updated: 2026-05-17

Overview

This Privacy Policy explains how Plan Event handles personal information when you use the Service. As the product evolves, the data we process may change as we add, remove, or improve features.

We use personal information to operate the Service, support users, process payments, protect accounts, and improve the product. We do not sell personal information for money.

1. Who we are

Plan Event is operated by Plan Event LLC, a limited liability company organized in Kansas, USA, with a mailing address at Shawnee, KS, USA. For the purposes of the EU and UK General Data Protection Regulation (GDPR) and similar laws, Plan Event LLC is the controller of personal information processed through the Service.

This policy describes how we collect, use, and share personal information when you use Plan Event (the "Service"). Contact details for privacy requests and legal notices appear at the end of this policy.

2. Information we collect

Depending on how you use the Service, we may process:

  • Account and authentication data — for example, email address, name, and session identifiers when you sign in (often via our authentication provider).
  • Profile and planner data — business name, contact details, and preferences you add to your profile.
  • Event and operational data — events, sections, tasks, inventory, quotes, expenses, crew roster entries, and similar content you create in the product.
  • Billing data — subscription status, plan, billing dates, and limited payment metadata (e.g., card brand, last 4 digits) returned by our payment processor (Stripe). We do not store full card numbers; payment details are handled directly by Stripe.
  • Technical and usage data — IP address, device and browser information, logs, and diagnostics to secure and improve the Service. If you enable optional analytics or error reporting, those tools may set cookies or similar technologies as described in your cookie notice.
  • Communications — messages you send to support or transactional emails we send to you.
  • AI processing — prompts and content you submit to AI-assisted features may be sent to our model provider for processing as described in-product.

3. How we use information

We use personal information to:

  • Provide, operate, maintain, and secure the Service;
  • Authenticate users and prevent fraud and abuse;
  • Process subscriptions and payments;
  • Communicate with you about the Service, including transactional notices;
  • Improve features, troubleshoot issues, and analyze usage in aggregate where enabled;
  • Comply with law and enforce our terms.

4. Legal bases (EEA, UK, and similar regions)

Where GDPR or similar laws apply, we rely on one or more of: contract (to provide the Service you request); legitimate interests (to secure and improve the Service, subject to your rights); consent (where required, for example for certain cookies or marketing); and legal obligation where we must retain or disclose data.

5. How we share information

We share personal information with:

  • Service providers (subprocessors) who host infrastructure, provide authentication, database storage, email delivery, payments, AI inference, analytics, or error reporting, as needed to operate the Service. Examples commonly include providers such as Supabase (auth/database), Stripe (payments if paid features are enabled), Vercel (hosting), Azure OpenAI (AI features), Resend (email), and PostHog (analytics, if enabled).
  • Professional advisers and authorities when required by law, subpoena, or to protect rights and safety.
  • Business transfers — in a merger, acquisition, or asset sale, subject to appropriate safeguards.

We do not sell personal information for money as that term is commonly defined in U.S. state privacy laws.

6. International transfers

We and our providers may process data in the United States and other countries. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) and transfer assessments for our providers.

7. Retention

We retain personal information for as long as needed to provide the Service, comply with law, resolve disputes, and enforce agreements. When you delete your account, we remove associated data promptly, with limited retention for backups, billing records, and legal compliance where required.

8. Security

We implement technical and organizational measures appropriate to the risk, including encryption in transit, access controls, and vendor diligence. No method of transmission or storage is completely secure.

9. Your rights and choices

Depending on your location, you may have rights to access, correct, delete, port, or restrict processing of your personal information, and to object to certain processing. You may exercise rights through in-app account tools (such as data export or account deletion) where available, or by contacting us. You may lodge a complaint with a supervisory authority where applicable.

California residents may have additional rights under the CCPA/CPRA; we describe categories of collection and sharing above. You may designate an authorized agent as permitted by law.

10. Cookies and similar technologies

We use cookies and similar technologies for session management (essential for sign-in). If you configure optional analytics or error reporting, additional technologies may apply; we may show a cookie notice in that case. You can control browser cookies through your settings.

11. Children

The Service is not directed to children under 13 (or the age required in your jurisdiction). We do not knowingly collect personal information from children. Contact us if you believe we have collected a child's information.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will revise the "Last updated" date and, where required, provide additional notice.

13. Contact

For privacy requests or questions, contact us at:

← Back home