Attndly ("we", "us", or "our") operates the Attndly platform, an event management and ticketing service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.
1. Information We Collect
Account Information
When you create an account, we collect:
- Your name and email address
- Password (stored securely using industry-standard hashing)
- Profile photo (if you choose to upload one)
Social Authentication
If you sign in using Google, we receive your name, email address, and profile picture from Google. We also store authentication tokens necessary to maintain your session and, if you enable Google Sheets integration, to sync data on your behalf.
Event Information
When you create an event, we collect:
- Event details (name, description, dates, times, timezone)
- Event location (address, place name, and coordinates for physical events)
- Event images you upload
- Ticket and pricing configuration
Attendee and Buyer Information
When someone purchases tickets or registers for an event, we collect:
- Full name
- Email address
- Phone number
Payment and Payout Information
We collect payout details from event creators, including bank account information and business name, to facilitate payouts via our payment processor, Paystack. We do not store credit card or debit card numbers directly. All payment processing is handled by Paystack, and transaction data (such as payment references and amounts) is stored for record-keeping purposes.
Automatically Collected Information
- Session data: We store session information (including your IP address and browser user agent) in our database to maintain your login state.
- Geolocation: We use your IP address to detect your approximate country in order to set the appropriate default currency. This detection is cached for up to 24 hours and is not used for tracking purposes.
2. How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain the Attndly platform
- Process ticket purchases and facilitate payouts to event creators
- Send event reminders to attendees (24 hours and 30 minutes before an event)
- Verify your identity and manage your account
- Generate QR codes and check-in codes for event attendance
- Enable team collaboration features (invitations, shared event access)
- Communicate with you about your account, orders, or events
- Detect and prevent fraud or abuse
3. How We Share Your Information
With Event Creators
When you purchase a ticket or register for an event, your name, email, and phone number are shared with the event creator so they can manage their event and communicate with attendees.
With Payment Processors
We share order and buyer information with Paystack to process payments. Paystack's handling of your data is governed by their own privacy policy.
With Google (if enabled by the creator)
If an event creator enables Google Sheets integration, attendee data (name, email, phone, ticket type, order reference, and registration date) is synced to a Google Sheets spreadsheet in the creator's Google Drive account.
As Required by Law
We may disclose your information if required to do so by law or in response to valid legal requests by public authorities.
4. Data Retention
- Account data is retained for as long as your account is active. You may request deletion of your account at any time.
- Order and transaction data is retained for accounting, tax, and legal compliance purposes, even after account deletion.
- Session data expires automatically after 120 minutes of inactivity.
- Deleted events are soft-deleted and may be retained in our systems for a limited period before permanent removal.
5. Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- Password hashing using industry-standard algorithms
- HTTPS encryption for all data in transit
- Database-level locking during sensitive operations (e.g., ticket purchases) to prevent data inconsistencies
- Access controls and authorization checks throughout the platform
While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.
6. Your Rights
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Delete your account and personal data
- Withdraw consent for optional features (e.g., Google authentication, Google Sheets sync)
- Export your data (event details, attendee lists)
To exercise any of these rights, please contact us at the email address provided below.
7. Cookies and Session Storage
We use session cookies to keep you logged in and to maintain your preferences while using the platform. These cookies are essential for the operation of the service. We do not use cookies for advertising or cross-site tracking.
8. Third-Party Services
Our platform integrates with the following third-party services:
- Paystack β for payment processing and payout management
- Google β for social authentication and optional Google Sheets integration
Each of these services has its own privacy policy governing their handling of your data. We encourage you to review them.
9. Children's Privacy
Attndly is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us so we can take appropriate action.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically to stay informed about how we are protecting your information.
11. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us at hello@attndly.co.
