Privacy Policy

Click2Invite (“we,” “us,” or “our”) provides tools to design invitations, publish them to guests, and collect RSVPs. This Privacy Policy explains what information we process, why we process it, how we keep it secure, and the choices you have. By using Click2Invite, you agree to this policy together with our Terms of Service.

Account and profile. When you register, we collect information you provide, such as your name, email address, and password (stored using industry-standard hashing). We use this to authenticate you and communicate about your account.

Invitations and projects. Content you create in the editor (text, images, layout, settings, and similar design data) is stored so you can edit, preview, and publish your invitations.

RSVP and guest submissions. When you publish an invitation, guests may submit information through forms you configure (for example, attendance, meal choices, or messages). That data is associated with your project so you can view it in your workspace. You are responsible for collecting only what you need and for complying with notice requirements toward your guests.

AI-assisted features. If you use AI-assisted design, the prompts and context you send may be processed by our systems and, where applicable, by model providers we engage, solely to generate or refine your invitation content.

Technical and usage data. We automatically log limited technical information needed to operate the service securely and reliably (for example, IP address, device and browser type, timestamps, and error diagnostics). We do not use third-party advertising cookies on the marketing site as described in our Cookie Policy.

• To provide, maintain, and improve Click2Invite and its features.
• To authenticate sessions, prevent abuse, and protect security.
• To communicate with you about the service, support requests, and important updates.
• To comply with law, enforce our terms, and defend legal claims when necessary.

Where applicable privacy law requires a “legal basis,” we rely on: performance of a contract with you (providing the service); our legitimate interests in securing and improving the product, provided those interests are not overridden by your rights; compliance with legal obligations; and, where required, your consent (for example, for optional communications or non-essential cookies if we introduce them later with appropriate controls).

We do not sell your personal information. We share data only with service providers who help us run Click2Invite (such as hosting, database, email delivery, and, when you use AI features, model infrastructure), bound by confidentiality and processing agreements where appropriate. We may disclose information if required by law or to protect the rights, safety, and integrity of our users and the public.

We keep account and project data for as long as your account is active or as needed to provide the service. RSVP records are retained so you can manage your event; you may delete projects or your account where the product supports it, after which we delete or anonymize associated personal data within a reasonable period, subject to backups and legal retention requirements.

We use encryption in transit (HTTPS) and protect stored credentials and sensitive data with appropriate technical and organizational measures. No method of transmission or storage is completely secure; we encourage strong passwords and safeguarding access to your account.

Depending on where you live, you may have rights to access, correct, delete, or export personal data we hold about you, and to object to or restrict certain processing. You may also have the right to lodge a complaint with a supervisory authority. To exercise these rights, contact us via our contact page. We will respond within the timeframes required by applicable law.

Click2Invite is not directed at children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us so we can delete it.

Our infrastructure and subprocessors may be located in countries other than your own. Where we transfer personal data across borders, we use appropriate safeguards such as standard contractual clauses or equivalent mechanisms where required by law.

We may update this Privacy Policy from time to time. We will post the revised version on this page and update the “Last updated” date. If changes are material, we will provide additional notice as required by law.

Questions about this policy or your data: use /contact or the contact details we provide in product communications.