Privacy Policy

ERDECKER LLC — Last Updated: May 13, 2026

1. Overview

ERDECKER LLC ("Convivo," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our event media collection platform.

This policy applies to all users of our service, including:

  • Guests — people who upload photos and videos to an event
  • Hosts — people who create and manage events
  • Visitors — people who browse our website without uploading or creating events

Our Privacy Philosophy

  • We collect the minimum data necessary to provide our service.
  • We never sell your personal information.
  • We give you control over your data.

2. What We Collect

2.1 From Guests (Event Attendees)

Data Type Share Freely Stay Connected Purpose
Photos / Videos Yes Yes Core service — media collection
EXIF Metadata Yes Yes Organizing media by date/location
File Hash Yes Yes Duplicate detection
Display Name Optional Yes Identify uploads to the host
Email Address No Yes Account recovery, notifications
Claim Token Yes No Allow guests to manage their uploads
IP Address Yes Yes Security, abuse prevention
Browser / Device Info Yes Yes Compatibility, troubleshooting
Upload Timestamp Yes Yes Audit trail

2.2 From Hosts (Event Organizers)

Data Type Required Purpose
Email Address Yes Account creation, communications
Name Yes Account identification
Password (hashed) Yes* Authentication (* or OAuth)
OAuth Tokens If using SSO Google / Microsoft sign-in
Cloud Storage Credentials If exporting Export to Google Photos, OneDrive
Event Details Yes Create and manage events
Billing Information For paid plans Payment processing via Stripe

2.3 Automatically Collected

  • Device Information — browser type, operating system, screen resolution
  • Usage Data — pages visited, features used, time spent
  • Performance Data — load times, errors, crash reports
  • Referral Information — how you arrived at our site

No Advertising Profiles

Automatically collected data is used solely for improving our service and troubleshooting. We do not build advertising profiles from this data.

3. How We Use Data

Purpose Legal Basis (GDPR) Data Used
Provide core service Contract performance Media, account info, event details
Process payments Contract performance Billing info (via Stripe)
Prevent abuse & fraud Legitimate interest IP address, device info, usage patterns
Send service communications Contract performance Email, name
Improve the platform Legitimate interest Anonymized usage data, performance metrics
Comply with legal obligations Legal obligation As required by law

What We Will Never Do

  • Never sell your personal information to third parties.
  • Never use your photos or data for advertising purposes.
  • Never use your content to train general-purpose AI models, and never provide your content to third parties to train their models. AI features you have enabled (such as automated tagging) may send your content to third-party AI providers for inference under contracts that prohibit them from training their models on it.
  • Never share your data with third parties for their marketing purposes.

4. Sharing & Disclosure

With the Event Host

When you upload media to an event, the event host can view your uploads, display name, and upload timestamps. If you chose "Stay Connected," your email is also shared with the host.

With Service Providers

Provider Purpose Data Shared
Cloudflare (R2) Media file storage Uploaded photos/videos
Neon.tech Database hosting Account and event data
Google OAuth sign-in, Photos export Auth tokens, exported media
Microsoft OAuth sign-in, OneDrive export Auth tokens, exported media
Stripe Payment processing Billing information
Resend / SendGrid Transactional email Email addresses, message content
Twilio SMS notifications, co-host invites Phone numbers, message content
Google (Gemini API) AI-assisted photo tagging (inference only; no model training) Photo thumbnails, event template prompts
Sentry Error tracking Error context (no PII)
Redis / Railway Caching, job queues Temporary operational data

Legal Requirements

We may disclose your information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

If Convivo is involved in a merger, acquisition, or asset sale, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.

SMS / Text Messaging

Convivo offers an optional SMS text-messaging program for event guests and hosts. If you provide your mobile number on an event's upload page and choose to be contacted by text, you may receive: a one-time reminder to upload your photos; if you additionally opt in, event updates such as photo-album milestones and a post-event recap; and time-sensitive prompts sent by the event's host or host-designated co-hosts during the event. All messages relate to the specific event you engaged with.

  • Consent is optional. Opting in to text messages is never required to use Convivo or as a condition of any purchase. You provide consent per event through the opt-in form on that event's page.
  • Message frequency varies depending on the event and your selections.
  • Message and data rates may apply.
  • Reply STOP to any message to unsubscribe, or HELP for help. You can also email [email protected].
  • We do not sell or share your mobile number or text-messaging opt-in with third parties or affiliates for their own marketing purposes. Phone numbers are used only to deliver the messages described above, through our messaging provider (Twilio) acting on our behalf.

5. Storage & Security

Where Your Data Is Stored

Your data is stored in the United States. Media files are stored using Cloudflare R2, and account/event data is stored using Neon.tech PostgreSQL databases.

Security Measures

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for data at rest
  • bcrypt password hashing with salting
  • OAuth token rotation and secure storage
  • Role-based access controls
  • File type validation and size limits
  • Scoped API access with JWT tokens

Important

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

6. Data Retention

Pass-Through Model (Free Events)

Data Type Retention Period Deletion Trigger
Media files 30 days after event ends Automatic
Event metadata 30 days after event ends Automatic
Guest session data 30 days after event ends Automatic
Claim tokens 30 days after event ends Automatic

Permanent Storage Model (Paid Events)

Data Type Retention Period Deletion Trigger
Media files Until host deletes or account closes Manual or account deletion
Event metadata Until host deletes or account closes Manual or account deletion
Guest data Linked to event lifecycle Event deletion

Account Data

Host account data is retained as long as the account is active. You may request deletion of your account and all associated data at any time by contacting us.

7. Your Rights

7.1 GDPR Rights (EU/EEA Residents)

Right of Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Restrict Processing

Request that we limit the processing of your personal data.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or direct marketing.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7.2 CCPA Rights (California Residents)

Convivo does not sell personal information. California residents have the right to know what personal information is collected, request its deletion, and not be discriminated against for exercising their rights.

7.3 Deletion Process

  • Hosts: Delete your account through the settings page, or contact us at [email protected]. This will delete all your events, media, and account data.
  • Guests (Stay Connected): Contact us with the email address you provided. We will remove your email and associated data from all events.
  • Guests (Share Freely via Claim Token): Use your claim token to manage or delete your uploads. If you have lost your claim token, contact us and we will assist on a best-effort basis.

Important Note About Exported Copies

Once media has been exported to a host's cloud storage (Google Photos, OneDrive, etc.), those copies are outside of Convivo's control. Deletion from Convivo does not delete copies in external services.

8. Children's Privacy

Convivo is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete that information promptly.

Users between the ages of 13 and 18 may use Convivo with the consent and supervision of a parent or legal guardian.

9. Cookies & Tracking

Cookie Type Purpose Duration Opt Out
Essential Authentication, security, session management Session / 30 days Cannot opt out (required)
Functional Preferences, language settings 1 year Browser settings
Analytics Usage patterns, performance monitoring 1 year Cookie settings

No Advertising Cookies

Convivo does not use advertising or third-party tracking cookies. We will never install advertising cookies on your device.

10. Third-Party Services

Convivo integrates with third-party services to provide its features. Each service has its own privacy policy:

We request only the minimum scopes necessary for each integration. You can review and revoke access to connected services at any time through your account settings.

11. International Data Transfers

Convivo is offered only in the United States. Our servers, processors, and operations are located in the United States, and all data is processed and stored in the United States.

We do not direct, market, or offer the Service to individuals located outside the United States, and we do not monitor the behavior of users outside the United States. Host accounts require a U.S. billing address and are gated to U.S. IP addresses at signup.

If you are located outside the United States and you nonetheless choose to access the Service or upload content — for example, by scanning a QR code at an event hosted by a U.S. Host — you do so on your own initiative. By doing so, you acknowledge that your information will be transferred to, stored, and processed in the United States under U.S. law, and that the Service is not designed to comply with the data protection laws of your jurisdiction.

Because we do not target users outside the United States, we do not rely on Standard Contractual Clauses, the EU–U.S. Data Privacy Framework, the UK International Data Transfer Addendum, or other cross-border transfer mechanisms typically used by globally-offered services. If your jurisdiction’s data protection regime requires such mechanisms in order for your data to be processed in the United States, please do not use the Service.

Future Expansion

We may offer Convivo outside the United States in the future. When we do, this policy will be updated and affected users will receive prior notice. Until then, this Service is provided only to users in the United States.

12. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will provide at least 30 days' notice before the changes take effect, via email notification and/or a prominent notice on our website.

Your continued use of Convivo after the effective date of a revised policy constitutes your acceptance of the changes. We encourage you to review this page periodically.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Privacy Inquiries: [email protected]

General Support: [email protected]

Mailing Address:

ERDECKER LLC
c/o Northwest Registered Agent LLC
1500 N Grant St, Ste N
Denver, CO 80203
United States