Privacy & Data Protection

Privacy Policy

Last updated: 20 May 2026

Privacy Policy

This Privacy Policy explains how ZNZ Systems Ltd. ("we," "our," "us") collects, uses, and protects your personal data when you use SeatPlan.io - our web application (the "Service").

1. Information We Collect

If you do not sign up:

  • Your seating chart is stored only in your browser's local storage. It is automatically deleted at midnight and never transmitted to our servers.

If you sign up for an account:

  • We collect the following guest information you choose to enter:
  • • Name
  • • Email address
  • • Dietary requirements
  • • Comments
  • We also collect your account details through our authentication provider when you sign in.

If you use subscription features (templates, events, collaboration):

  • Templates and events you create, including event names, dates, and room configurations.
  • Guest seating data within your templates (names, dietary requirements, table assignments).
  • Collaboration invitations: email addresses of clients you invite to view or edit your seating charts.
  • Email engagement data: when collaboration invitation emails are opened or links are clicked.

2. How We Use Your Information

We use your information to:

  • Provide and save your seating charts.
  • Allow you to manage guest lists and event planning.
  • Authenticate and secure your account.

We do not sell or rent your personal information. If you accept optional analytics cookies, limited information may be shared with advertising partners we use for conversion measurement, as described in the Cookies and Analytics section below.

3. Cookies and Analytics

Cookies we use:

  • Essential cookies: Required for the site to function (authentication, session management). These cannot be disabled.
  • Analytics cookies: Used only with your consent. We use PostHog to understand how SeatPlan.io is used so we can improve it, and may load the Pinterest Tag for ads measurement when you opt in.

Cookieless analytics (Umami):

We also use Umami for privacy-focused audience measurement. Umami does not use cookies, does not identify you across websites, and only collects high-level usage information such as page views, referrers, browser, device type, and country-level location.

  • Umami does not use cookies, so it can run without cookie consent.
  • We configure Umami to respect your browser's Do Not Track setting.
  • We exclude URL search parameters and hash fragments from Umami tracking.

Advertising measurement (Pinterest):

If you accept analytics cookies, we may load the Pinterest Tag to measure ad effectiveness and conversions. Pinterest may process a hashed form of your account email when you are signed in (Enhanced Match). The tag is not loaded if you choose essential cookies only.

Analytics (PostHog):

If you accept analytics cookies, we use PostHog (hosted in the US) to collect anonymised usage data such as pages visited, features used, and general interaction patterns. This helps us improve SeatPlan.io.

  • Analytics is disabled by default until you accept cookies via the cookie banner.
  • We respect your browser's Do-Not-Track signal.
  • All personal data (names, emails, dietary information, guest details, table names, event names) is stripped before any data is sent to PostHog.
  • URL query parameters and fragments are removed before tracking.

Session recording:

If you accept analytics cookies, PostHog may record anonymised session replays to help us understand user experience issues. These recordings have the following safeguards:

  • All text on the page is masked — no guest names, emails, dietary information, or other personal data is visible in recordings.
  • All element attributes are masked — form values, input contents, and HTML attributes are hidden.
  • Recordings capture interaction patterns (clicks, scrolls, navigation) only, not your actual data.

Managing your preferences:

You can change your PostHog cookie preferences at any time by clearing your browser's local storage for seatplan.io, which will re-display the cookie consent banner on your next visit. Umami does not use cookies, so there is no Umami cookie preference to clear.

4. How Long We Keep Your Data

Basic account data:

  • Guest data is stored for 7 days after the expiry of your access.
  • If you do not extend your account, we delete your account and all associated guest data within 7 days.
  • If you have not signed up, your data is deleted automatically at midnight from your browser.

Subscription features (templates, events, collaboration):

  • Templates and events are stored while your subscription is active, plus 7 days after expiry.
  • Collaboration tokens expire after the duration you set (1-90 days).
  • Client email addresses from collaboration invitations are deleted immediately when the collaboration token expires.
  • Email engagement data (opens and clicks) is deleted along with the collaboration token.

Operational retention and cleanup:

  • We may delete design sessions that are not linked to a user account after they have been inactive for a period (for example 7 or 30 days), as part of routine maintenance.
  • We may remove historical layout snapshots when they no longer relate to an existing session, for example after a session has been deleted.
  • We may delete user accounts that have no remaining paid or trial access after an extended period following expiry (for example more than 7 days), subject to safeguards such as outstanding billing checks.
  • We may delete accounts that have never purchased persistence or subscription features when they show no meaningful activity for at least 7 days.

5. Legal Basis for Processing (GDPR)

We process personal data on the following bases:

  • Contract: to provide you with the Service when you sign up.
  • Consent: when you voluntarily enter guest details into the application.
  • Consent: for PostHog analytics cookies and session recording, which require your explicit opt-in via the cookie banner.
  • Legitimate interest: for essential cookies required for the Service to function.
  • Legitimate interest: for limited, cookieless audience measurement through Umami.

6. Your Rights

Under GDPR, you have the right to:

  • Access a copy of your personal data.
  • Request correction or deletion.
  • Restrict or object to processing.
  • Request portability of your data.

You may exercise these rights by contacting us at hi@seatplan.io.

7. Data Security

We apply technical and organizational measures to protect your data, including encryption at rest and in transit. Authentication is handled by our authentication provider, and application data for the Service is stored within AWS infrastructure in the Frankfurt region.

8. Third Parties

We only share data with essential service providers acting as data processors:

  • Authentication provider – user sign-in and account management.
  • AWS (Frankfurt) – hosting, compute, primary storage for application data (including guest information), and real-time collaboration infrastructure for live updates and presence indicators.
  • Resend – email delivery for collaboration invitations. Resend may track when emails are opened and when links are clicked.
  • Umami Cloud – cookieless analytics. Umami does not use cookies and is configured to respect Do Not Track.
  • PostHog (US) – analytics and session recording (only when you accept analytics cookies). All personal data is stripped before transmission. Text and element attributes are masked in session recordings.
  • Stripe – payment processing for subscriptions. Stripe processes your payment information directly; we do not store card details.

All providers comply with GDPR and implement adequate safeguards. For US-based providers (for example PostHog and Stripe), and where our authentication provider processes data outside the EU/EEA, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards.

9. Collaboration Features

If you subscribe to our service, you may invite clients to collaborate on your seating charts:

  • You invite clients by entering their email address. We send them a unique, time-limited link to access your seating chart.
  • Clients can access your seating chart without creating an account.
  • You can revoke a client's access at any time.
  • Some elements of the seating chart may be restricted by you as the organiser.
  • We log when clients access the collaboration link for security purposes.

10. International Transfers

We aim to keep your data within the EU/EEA. If data is transferred outside the EU/UK, we use Standard Contractual Clauses (SCCs) or other legally required safeguards.

11. Contact Us

For questions or to exercise your GDPR rights, contact us at:

Email: hi@seatplan.io