Privacy Policy

Last updated: July 25, 2025

1. Introduction

Share the Day ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using Share the Day, you consent to the data practices described in this policy.

2. Information We Collect

Personal Information

We collect information you provide directly to us:

  • Account information (name, email address, password)

  • Profile information and preferences

  • Event details and RSVP information

  • Payment information (processed securely through Stripe)

  • Communications with our support team

Content and Media

  • Photos, videos, and audio recordings uploaded to memory links

  • Text messages and comments

  • Event customization data (themes, colors, text)

Technical Information

  • Device information (browser type, operating system)

  • Usage data (pages visited, features used, time spent)

  • IP address and general location information

  • Cookies and similar tracking technologies

3. How We Use Your Information

We use your information for the following purposes:

  • Provide and maintain our Service

  • Process payments and manage your account

  • Send service-related communications

  • Improve our Service and develop new features

  • Ensure security and prevent fraud

  • Comply with legal obligations

  • Respond to support requests and customer inquiries

4. Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

  • With your explicit consent

  • To service providers who assist in operating our Service (e.g., Stripe for payments, AWS for hosting)

  • When required by law or to protect our rights and safety

  • In connection with a business transfer or acquisition

All third-party service providers are contractually bound to protect your information and use it only for specified purposes.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

  • Encryption of data in transit and at rest

  • Secure payment processing through Stripe

  • Regular security assessments and updates

  • Access controls and authentication mechanisms

  • Staff training on data protection practices

While we strive to protect your information, no method of transmission over the internet is 100% secure.

6. Data Retention

We retain your information for as long as necessary to provide our Service and fulfill the purposes outlined in this policy:

  • Account information: Until you delete your account or request deletion

  • Memory content: As long as the memory link remains active

  • Payment records: 7 years for tax and legal compliance

  • Usage logs: 12 months for service improvement

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request information about the personal data we hold about you

  • Correction: Request correction of inaccurate or incomplete information

  • Deletion: Request deletion of your personal information

  • Portability: Request a copy of your data in a machine-readable format

  • Objection: Object to certain types of processing

  • Restriction: Request restriction of processing in certain circumstances

To exercise these rights, please contact us at [email protected].

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Remember your preferences and settings

  • Keep you logged in to your account

  • Analyze usage patterns and improve our Service

  • Provide personalized experiences

You can control cookies through your browser settings, but disabling them may affect Service functionality.

9. Third-Party Services

Our Service integrates with third-party services that have their own privacy policies:

  • Stripe (payment processing)

  • AWS (cloud hosting and storage)

  • NextAuth.js (authentication)

  • Vercel (hosting and analytics)

We encourage you to review the privacy policies of these third-party services.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information during such transfers.

11. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information immediately.

12. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected

  • Right to delete personal information we hold about you

  • Right to opt-out of the sale of personal information (we don't sell personal information)

  • Right to non-discriminatory treatment

13. European Data Protection (GDPR)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation:

  • Lawful basis for processing your data

  • Right to access, rectify, or erase your data

  • Right to restrict or object to processing

  • Right to data portability

  • Right to withdraw consent

  • Right to lodge a complaint with supervisory authorities

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Your continued use of the Service after any changes constitutes acceptance of the new Privacy Policy.

15. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

We will respond to your inquiries within 30 days.