PartyLab

Privacy Policy

Last updated: April 22, 2026

1. Information We Collect

When you create an account, we collect your name and email address. When you create an event, we store the event metadata you provide (title, date, welcome message). When guests upload photos or videos, we store the uploaded files and the uploader name they provide (if any).

We also automatically collect standard server log data — IP addresses, browser type, and access timestamps — for security and abuse-prevention purposes.

2. How We Use Your Information

We use your information to operate the PartyLab service — creating and managing events, storing and serving media, and processing payments via Stripe. We do not sell your personal information to third parties. We do not use your photos for advertising or model training.

3. Media Storage and Retention

Photos and videos you upload are stored on Cloudflare R2 and served via a CDN. Media associated with an event is automatically deleted when the gallery expires (per the event tier's retention policy). You can also delete individual items or the entire event at any time from your dashboard.

4. Payments

Payments are processed by Stripe. We do not store your credit card number or payment details on our servers. Stripe's privacy policy applies to payment data.

5. Cookies and Local Storage

We use a session cookie to keep you signed in. Guest upload pages store your display name in browser local storage so you don't have to re-enter it on return visits. If you accept analytics cookies, we also load Google Analytics to understand aggregate product usage. We do not load Google Analytics until you explicitly consent.

6. Data Rights

Event hosts can delete individual media items or entire events (including all media) from the dashboard at any time, download a JSON export of their account data, and delete their account from the dashboard account settings. Self-serve account deletion removes your PartyLab profile, hosted events, uploaded media stored by PartyLab, and guest email records tied to those events from our systems. Stripe may retain billing records where required for tax or accounting compliance. For data correction or other privacy requests that are not yet self-serve, email [email protected] and we will handle the request manually.

7. Data Processing Addendum and Sub-processors

Business customers who need a Data Processing Addendum (DPA) can request one by emailing [email protected]. We keep the list below current so hosts know which providers help us deliver the service.

  • Cloudflare: object storage (R2), asset delivery, and CDN services for uploaded media and site assets.
  • Stripe: payment processing, receipts, and related billing records.
  • Mailgun: transactional email delivery for receipts, password resets, reminders, and support follow-up.
  • Google: Google Sign-In when you choose that login method, plus Google Analytics after explicit cookie consent.

We share only the information needed for each provider to perform its service, under their applicable privacy and data-processing terms.

8. Contact

Questions about this policy? Email us at [email protected].

← Back to PartyLab