Privacy Policy.

Effective: May 1, 2026 · Last updated: May 1, 2026

This is a plain-language summary of how ENTRRO handles personal data. The full legal text is available on request — but if there's ever any disagreement between the two, the plain-language summary controls how we actually behave.

What we collect

• Account data: name, email, city, phone — what you give us at signup.
• Activity: the briefs you take, the invites you generate, the guests who scan in at the door against your link.
• Payment data: bank or card details for payouts (promoters) and charges (venues) are handled by Stripe — a PCI DSS Level 1 certified, SOC 1 / SOC 2 Type II audited processor. Card details are tokenised at point-of-capture and never reach ENTRRO's servers. We never see, store, or log raw card numbers.
• Device data: standard stuff to keep the app working — browser, OS, anonymised IP for fraud prevention.

What we don't do

• We don't sell your data. Ever. No exceptions.
• We don't share who your guests are with other venues — your audience is yours.
• We don't run third-party ad trackers across the product.

Your rights

You can request a full export, correct anything wrong, or delete your account and everything attached to it at any time. Email privacy@entrro.com — we respond within 30 days, usually within 48 hours.

How long we keep it

Active data: as long as your account is live. After deletion: payout records are kept for 7 years (tax law), everything else is erased within 30 days.

Cookies

Strictly-necessary cookies only — session, auth, fraud prevention. No advertising cookies. No third-party trackers.

Contact

Data Protection Officer: dpo@entrro.com