Draft · last updated 16 June 2026
Account: your email address (passwordless sign-in). Invitation: the content you enter yourself. Guests: the name, email, message and number of companions a guest provides when confirming attendance — visible only to the invitation’s owner.
Solely to run the service: displaying the invitation, sending confirmations by email (Resend), processing payments (Stripe) and anonymous visit statistics (Plausible, no cookies). We do not use guest data for anything else and do not share it with third parties for marketing.
For guests’ RSVP data the invitation owner is the data controller (they decide who to invite and what happens with the responses), and sealdate is the data processor — we process the data only on the owner’s behalf, to run the service. The terms of that processing are set out in the data processing agreement (DPA) that forms part of the Terms of Service.
Guests’ personal data (name, email, companions’ names, message) is automatically anonymised 12 months after the invitation is archived — only aggregate figures remain (the number of attendees). The invitation owner can delete an individual response earlier. Payment data is kept for as long as tax regulations require.
You can export and delete data at any time (guest export in the dashboard; account deletion on request). Contact: info@sealdate.com.
If you are a guest who confirmed attendance and you want access to your data or its deletion, write to privacy@sealdate.com — we will forward the request to the invitation owner or carry it out ourselves within the statutory deadline.
Database and storage: Supabase (EU region). Hosting: Vercel. Email: Resend. Payments: Stripe.