Back to Home / 返回首页

Uipad Privacy Policy

Last Updated: May 2026

Uipad ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

By accessing or using Uipad, you agree to the practices described in this Privacy Policy. If you are using our services from the European Union (EU), European Economic Area (EEA), or the United States, this policy is structured to respect your rights under the GDPR, CCPA, and other applicable privacy frameworks.

1. Information We Collect and Receive

We adhere to the principle of "data minimization." We only collect information that is strictly necessary to deliver our services.

1.1 Information Provided by the Organizer (Data Controller)

As an Event Organizer, you create an account and manage events. We collect:

  • Account Information: Your email address and encrypted password used for registration and authentication.
  • Billing Information: When you pay per use, transaction processing is handled entirely by PayPal. We receive payment status, transaction IDs, and order amounts. We do not collect or store your credit card numbers or financial credentials.
  • Event Assets: Text descriptions, background music, images, and lists of participant names that you voluntarily upload to customize your invitations and large-screen display systems.

Important Note on Participant Data: Under applicable privacy laws (such as GDPR), the Organizer acts as the Data Controller for all participant names and assets uploaded to our platform. Uipad acts purely as a Data Processor, handling this data strictly to render the screen interfaces based on the Organizer's instructions.

1.2 Information Regarding Event Participants

To minimize privacy risks, event participants do not register accounts, nor can they upload text, images, or files to our systems. We only collect:

  • Check-in Log: The timestamp of when a verification/check-in code was successfully validated for a specific event.

2. How We Use Your Information

We use the collected data solely for the following purposes:

  • To operate, maintain, and provide the core functionalities of Uipad (e.g., rendering the Sign-in Wall, calculating Lucky Draws).
  • To process payments and manage your pay-per-use quotas.
  • To facilitate AI-powered event planning via the third-party Google Gemini API. Input prompts are processed statelessly; no personally identifiable information of the organizer is attached to AI API calls.
  • To send transactional emails (account verifications, payment confirmations) via our dedicated self-hosted mail servers.

3. Cookies and Tracking Technologies

Uipad uses Strictly Necessary Cookies solely to maintain your active login sessions, security tokens, and user interface preferences (such as language selection).

  • We do not use marketing cookies, tracking pixels, or third-party behavioral analytics tools (such as Google Analytics or Facebook Pixel).
  • Because we do not track your activity across third-party websites, our website operates perfectly without requiring a complex Cookie Consent banner.

4. Data Storage, Security, and Infrastructure

4.1 Infrastructure Location

Our production databases and primary server infrastructures are hosted on servers located in the United States. Disaster recovery backups are securely encrypted and stored on infrastructures located in Europe.

4.2 Data Security

We implement industry-standard technical measures, including HTTPS encryption in transit, cryptographic password hashing, and strict server-side firewalls to protect your data against unauthorized access or disclosure.

4.3 Data Retention

  • Active account details are retained as long as your account exists.
  • Per-event assets and lists are automatically archived (locked into a read-only state) 3 days (72 hours) after the event goes live.

5. Third-Party Data Processors

To deliver our services, we share limited data with the following trusted third-party sub-processors:

  • PayPal: For processing USD payments and verifying transaction legitimacy.
  • Google Gemini API: For processing the text prompts you input into our AI planning tool.

We do not sell, rent, or trade your personal data to any third-party marketing companies.

6. Your Rights (GDPR & CCPA Compliance)

Depending on your geographic location, you may enjoy specific privacy rights regarding your data:

  • Right of Access & Correction: You can view and edit all your account details and event assets at any time through your dashboard.
  • Right to be Forgotten (Deletion): You have the right to permanently erase your data. You can exercise this right instantly by navigating to Profile → Account Settings and selecting the permanent account erasure card. This will irreversibly wipe your account, payment logs, and all historical event records from our primary servers and rolling backups.

7. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect functional adjustments or legal updates. Any changes will be posted on this page with an updated "Last Updated" date.

8. Contact Us

If you have any questions, concerns, or data requests regarding this Privacy Policy, please contact us at:

  • Email: [support@uipad.com]
Back to Home / 返回首页