50% Offer
All-time 50% offer: Get 50% off on all plans and launch your event with premium QR photo delivery today.All-time 50% offer: Get 50% off on all plans and launch your event with premium QR photo delivery today.All-time 50% offer: Get 50% off on all plans and launch your event with premium QR photo delivery today.
Gopo logoGOPO
Create Event

Privacy Policy

Clear privacy rules for private event photo delivery.

This page explains how Gopo collects, uses, protects, and deletes data when guests register for AI photo matching and admins manage event galleries.

Access

Private guest galleries

Face data

Used only for matching

Retention

10 day cleanup workflow

Deletion

Guest removal supported

01

Information we collect

We collect only the information needed to register guests, match photos, and deliver private event galleries.

  • Guest name, email address, event code, and consent timestamp.
  • Uploaded selfie image and generated face descriptor.
  • Event photos uploaded by the event admin or photographer.
  • Download activity used for delivery stats and operational reporting.
02

How we use information

Gopo uses guest and event data to connect each person with the photos they appear in.

  • Register guests for a specific event and verify their access.
  • Match registered guests with uploaded event photos.
  • Send onboarding, processing, and photo-ready email notifications.
  • Show admins event-level upload, guest, matching, and download statistics.
03

How access is controlled

Guest, admin, and superadmin experiences are separated so each user sees only the data needed for their role.

  • Guests access their own matched gallery after authentication.
  • Admins manage event workspaces and event-related assets.
  • Superadmin routes are separated from regular admin workflows.
  • Sensitive auth tokens are handled through server-side HTTP-only cookies.
04

Data deletion and retention

The backend includes cleanup logic for old guest and photo assets, with a current retention target of 10 days.

  • Old event photos, guest selfies, and guest records are eligible for cleanup after the retention window.
  • Guests can request deletion of their personal data from the authenticated account flow.
  • Deleted records are removed from the app database and linked asset storage where supported.
  • Retention windows may be adjusted for legal, business, or operational requirements.
05

Third-party processors

Gopo uses infrastructure providers to store assets, send email, process payments, and monitor reliability.

  • Cloudinary may store uploaded selfies and event photos.
  • MongoDB stores application records, guest metadata, and matching records.
  • Resend sends transactional email notifications.
  • Razorpay handles billing and payment flows for paid plans.
  • Sentry may receive technical error logs used to diagnose failures.
06

Your choices

Guests and admins can make privacy requests when they need access, correction, retention, or deletion support.

  • Guests may choose not to register if they do not want face matching.
  • Guests may delete their personal gallery data from the authenticated account flow.
  • Admins can contact support for event-level retention and removal requests.
  • You can contact the team for privacy questions or data access requests.

Privacy requests

Need help with your data?

Contact the Gopo team for access, correction, retention, or deletion requests.

Email Support

Photographers