Privacy & Data Protection

Privacy Policy

Last updated: 3 April 2026

Privacy Policy

This Privacy Policy explains how ZNZ Systems Ltd. ("we," "our," "us") collects, uses, and protects your personal data when you use SeatPlan.io - our web application (the "Service").

1. Information We Collect

If you do not sign up:

  • Your seating chart is stored only in your browser's local storage. It is automatically deleted at midnight and never transmitted to our servers.

If you sign up for an account:

  • We collect the following guest information you choose to enter:
  • • Name
  • • Email address
  • • Dietary requirements
  • • Comments
  • We also collect your account details through Clerk, our authentication provider.

If you use subscription features (templates, events, collaboration):

  • Templates and events you create, including event names, dates, and room configurations.
  • Guest seating data within your templates (names, dietary requirements, table assignments).
  • Collaboration invitations: email addresses of clients you invite to view or edit your seating charts.
  • Email engagement data: when collaboration invitation emails are opened or links are clicked.

2. How We Use Your Information

We use your information to:

  • Provide and save your seating charts.
  • Allow you to manage guest lists and event planning.
  • Authenticate and secure your account.

We do not sell, rent, or share your data with advertisers.

3. Cookies and Analytics

Cookies we use:

  • Essential cookies: Required for the site to function (authentication, session management). These cannot be disabled.
  • Analytics cookies: Used only with your consent. We use PostHog to understand how SeatPlan.io is used so we can improve it.

Cookieless analytics (Umami):

We also use Umami for privacy-focused audience measurement. Umami does not use cookies, does not identify you across websites, and only collects high-level usage information such as page views, referrers, browser, device type, and country-level location.

  • Umami does not use cookies, so it can run without cookie consent.
  • We configure Umami to respect your browser's Do Not Track setting.
  • We exclude URL search parameters and hash fragments from Umami tracking.

Analytics (PostHog):

If you accept analytics cookies, we use PostHog (hosted in the US) to collect anonymised usage data such as pages visited, features used, and general interaction patterns. This helps us improve SeatPlan.io.

  • Analytics is disabled by default until you accept cookies via the cookie banner.
  • We respect your browser's Do-Not-Track signal.
  • All personal data (names, emails, dietary information, guest details, table names, event names) is stripped before any data is sent to PostHog.
  • URL query parameters and fragments are removed before tracking.

Session recording:

If you accept analytics cookies, PostHog may record anonymised session replays to help us understand user experience issues. These recordings have the following safeguards:

  • All text on the page is masked — no guest names, emails, dietary information, or other personal data is visible in recordings.
  • All element attributes are masked — form values, input contents, and HTML attributes are hidden.
  • Recordings capture interaction patterns (clicks, scrolls, navigation) only, not your actual data.

Managing your preferences:

You can change your PostHog cookie preferences at any time by clearing your browser's local storage for seatplan.io, which will re-display the cookie consent banner on your next visit. Umami does not use cookies, so there is no Umami cookie preference to clear.

4. How Long We Keep Your Data

Basic account data:

  • Guest data is stored for 7 days after the expiry of your access.
  • If you do not extend your account, we delete your Clerk account and all associated guest data within 7 days.
  • If you have not signed up, your data is deleted automatically at midnight from your browser.

Subscription features (templates, events, collaboration):

  • Templates and events are stored while your subscription is active, plus 7 days after expiry.
  • Collaboration tokens expire after the duration you set (1-90 days).
  • Client email addresses from collaboration invitations are deleted immediately when the collaboration token expires.
  • Email engagement data (opens and clicks) is deleted along with the collaboration token.

5. Legal Basis for Processing (GDPR)

We process personal data on the following bases:

  • Contract: to provide you with the Service when you sign up.
  • Consent: when you voluntarily enter guest details into the application.
  • Consent: for PostHog analytics cookies and session recording, which require your explicit opt-in via the cookie banner.
  • Legitimate interest: for essential cookies required for the Service to function.
  • Legitimate interest: for limited, cookieless audience measurement through Umami.

6. Your Rights

Under GDPR, you have the right to:

  • Access a copy of your personal data.
  • Request correction or deletion.
  • Restrict or object to processing.
  • Request portability of your data.

You may exercise these rights by contacting us at hi@seatplan.io.

7. Data Security

We apply technical and organizational measures to protect your data, including encryption at rest and in transit. Authentication is handled by Clerk, and your data is stored in a secure Neon Postgres database hosted in Frankfurt.

8. Third Parties

We only share data with essential service providers acting as data processors:

  • Clerk – user authentication and account management.
  • Neon Postgres (Frankfurt) – database storage for guest information.
  • AWS Amplify (Frankfurt) – hosting and compute services.
  • Resend – email delivery for collaboration invitations. Resend may track when emails are opened and when links are clicked.
  • Umami Cloud – cookieless analytics. Umami does not use cookies and is configured to respect Do Not Track.
  • PostHog (US) – analytics and session recording (only when you accept analytics cookies). All personal data is stripped before transmission. Text and element attributes are masked in session recordings.
  • Stripe – payment processing for subscriptions. Stripe processes your payment information directly; we do not store card details.
  • AWS (Frankfurt) – real-time collaboration infrastructure for live updates and presence indicators.

All providers comply with GDPR and implement adequate safeguards. For US-based providers (PostHog, Stripe, Clerk), we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards.

9. Collaboration Features

If you subscribe to our service, you may invite clients to collaborate on your seating charts:

  • You invite clients by entering their email address. We send them a unique, time-limited link to access your seating chart.
  • Clients can access your seating chart without creating an account.
  • You can revoke a client's access at any time.
  • Some elements of the seating chart may be restricted by you as the organiser.
  • We log when clients access the collaboration link for security purposes.

10. International Transfers

We aim to keep your data within the EU/EEA. If data is transferred outside the EU/UK, we use Standard Contractual Clauses (SCCs) or other legally required safeguards.

11. Contact Us

For questions or to exercise your GDPR rights, contact us at:

Email: hi@seatplan.io