Legal

Privacy Policy

Last updated: 24 April 2026

This is the plain-English version. We don't try to hide anything in fine print. If anything here is unclear, email privacy@martida.click and we'll explain.

Data controllerMartida (data controller details to be finalised before public launch). Stockholm, Sweden. For privacy questions, GDPR access requests, or data deletion: privacy@martida.click.

§ What we collect

  • Account details you provide when signing up — your name, email, phone number, and the wedding details you choose to save (couple names, date, venue, guest list, family group structure).
  • Authentication metadata from our identity provider (better-auth, self-hosted on our Convex backend) — session tokens and sign-in events used to keep you logged in. Sign-in one-time codes are delivered by Resend on our behalf.
  • Payment metadata from Polar (our merchant of record) — transaction IDs and card last-four, never the full card number.
  • Operational logs — standard request logs (IP, user agent, timestamp) retained for 30 days to keep the platform stable.

§ What we don't do

  • We do not sell, rent, or share your guest list with anyone, for any reason, ever.
  • We do not run advertising on your wedding pages or use your data to train advertising models.
  • We do not retain the contents of guest WhatsApp messages after delivery.

§ Where data lives

  • Primary database: Convex, hosted in EU region.
  • Authentication: better-auth (self-hosted on our Convex backend).
  • Payments: Polar (merchant of record, EU-based, handles VAT collection in your jurisdiction). Polar uses Stripe as its underlying card processor.
  • Transactional email & sign-in codes: Resend.
  • WhatsApp & SMS delivery: Twilio.
  • All providers are GDPR-compliant sub-processors. A full list with contractual details is available on request.

§ Your rights

  • Export everything you've entered as CSV or JSON at any time from your dashboard.
  • Delete your account and all associated data with one click — we retain only what legal obligations require (e.g. Polar transaction records, retained per Swedish bookkeeping law).
  • Request a copy of everything we hold about you by emailing privacy@martida.click.

§ Cookies

  • Essential session cookies only. No analytics cookies, no advertising cookies, no third-party trackers on the marketing pages.

§ Changes to this policy

  • We'll email every registered user at least 30 days before any material change takes effect.