Privacy Policy

1. Information We Collect

Two Wheel Events ("TWE," "we," "us," or "our") collects the following types of information when you use our platform:

• Account information: Your name and email address, provided during registration via email/password or Google OAuth.
• Payment information: Payment details are processed directly by Stripe. We do not store your credit card numbers, CVV, or full card details on our servers. We may store a Stripe customer ID and payment status.
• Usage data: Event views, RSVP history, membership status, and interactions with platform features.
• Device and browser information: IP address, browser type, and operating system, collected automatically through server logs.

2. How We Use Your Information

We use the information we collect to:

• Process membership purchases and manage your account.
• Send transactional emails such as membership activation confirmations, RSVP confirmations, and event reminders.
• Enable event discovery, RSVPs, and guest pass functionality.
• Improve the platform, diagnose technical issues, and analyze usage patterns.
• Prevent fraud, enforce rate limits, and maintain platform security.

3. Third-Party Services

We use the following third-party services to operate the platform. Each service has its own privacy policy governing its handling of your data:

• Supabase -- Authentication, database hosting, and file storage.
• Stripe -- Payment processing and subscription management.
• Resend -- Transactional email delivery (membership confirmations, RSVP notices, reminders).
• Vercel -- Application hosting and edge delivery.

We do not sell your personal information to third parties. Data is shared with the above services only as necessary to operate the platform.

4. Data Retention

We retain your account data for as long as your account is active. Payment transaction records are retained by Stripe in accordance with their data retention policies and applicable financial regulations. If you request account deletion, we will remove your profile data from our database. Some data may be retained in backups or logs for a limited period as required by law or for fraud prevention.

5. Your Rights

You have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate information in your profile.
• Request deletion of your account and associated personal data.
• Opt out of non-transactional email communications.

To exercise any of these rights, contact us at privacy@twowheelevents.com. We will respond to requests within 30 days.

6. Cookies

We use session cookies strictly for authentication and maintaining your login state. These cookies are essential for the platform to function and cannot be disabled while using authenticated features. We do not use third-party tracking cookies, advertising cookies, or analytics cookies.

7. Security

We take reasonable measures to protect your personal information, including TLS encryption for all data in transit, Row-Level Security (RLS) database policies to isolate user data, and secure authentication token handling. However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

8. Children

Two Wheel Events is not directed at individuals under 18 years of age. We do not knowingly collect personal information from minors. If we learn that we have collected data from a person under 18, we will take steps to delete that information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, the updated policy will be posted on this page with a new "Last updated" date. We encourage you to review this policy periodically.

10. Contact

If you have questions about this Privacy Policy or how we handle your data, please contact us at privacy@twowheelevents.com.