← Back to MANWË

Privacy Policy

Last Updated: November 12, 2025

MANWË ("we," "us," or "our") operates the MANWË event discovery and management application (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

1. Information We Collect

1.1 Personal Information You Provide

When you create an account or use our Service, we collect the following information:

Account Information: Email address, password (encrypted), name, birthday, preferred location
Profile Information: User type (standard or planner), subscription status and plan
Payment Information: Billing details processed through Stripe (we do not store full credit card numbers)
User-Generated Content: Event RSVPs, event suggestions, messages, friend connections, group memberships, chat messages

1.2 Automatically Collected Information

Usage Data: Pages visited, features used, events viewed, session duration
Device Information: IP address, browser type, operating system, device identifiers
Location Data: Chapter selection, event locations you interact with
Cookies and Similar Technologies: Session cookies, authentication tokens, preferences

1.3 Information from Third-Party Services

We integrate with the following third-party services that may collect information:

Stripe: Payment processing and subscription management
OpenAI: AI-powered event generation (planner feature)
Google Maps API: Venue information and booking links
Resend: Email delivery for notifications

2. How We Use Your Information

We use the collected information for the following purposes:

Account Management: Create and maintain your account, authenticate users
Service Delivery: Provide event discovery, RSVP management, messaging, and social features
Subscription Processing: Process payments, manage subscriptions, send billing notifications
Personalization: Filter events by age range, show chapter-specific content, AI event recommendations
Communications: Send RSVP confirmations, subscription updates, event notifications, newsletter (if subscribed)
Safety and Security: Detect fraud, prevent abuse, enforce our Terms of Use
Analytics and Improvements: Understand usage patterns, improve features, develop new functionality
Legal Compliance: Respond to legal requests, protect our rights

3. How We Share Your Information

3.1 Service Providers

We share information with third-party service providers who process data on our behalf:

Service Provider	Purpose	Data Shared
Stripe	Payment processing	Email, payment details, subscription info
Resend	Email delivery	Email address, notification content

3.2 Other Users

Certain information is visible to other users of the Service:

Your name and profile information (for friends and group members)
Event RSVPs and attendance
Messages sent in event chats or group chats
Friend connections

3.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights and safety.

3.4 Business Transfers

If MANWË is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

4. Data Retention

We retain your information for the following periods:

Account Data: Duration of your subscription plus 2 years for legal compliance
Payment Records: 7 years per tax and financial regulations
Event RSVPs: Indefinitely for historical event records
Messages: Indefinitely unless you delete them
Analytics Data: Aggregated data retained indefinitely; individual data deleted after 3 years

After subscription cancellation, we delete your account data within 30 days unless you reactivate. Certain information may be retained in backups for up to 90 days.

5. Your Privacy Rights

5.1 All Users

Access: Request a copy of your personal data
Correction: Update inaccurate or incomplete information in your profile settings
Deletion: Request deletion of your account and associated data
Data Portability: Receive your data in a machine-readable format
Opt-Out: Unsubscribe from marketing emails (notification emails related to service usage cannot be disabled)

5.2 GDPR Rights (EU Residents)

If you are located in the European Economic Area, you have additional rights under GDPR:

Right to Object: Object to processing based on legitimate interests
Right to Restriction: Request restriction of processing in certain circumstances
Right to Withdraw Consent: Withdraw consent at any time (where processing is based on consent)
Right to Lodge a Complaint: File a complaint with your local data protection authority

Legal Basis for Processing: Contractual necessity (to provide the Service), consent (for marketing), legitimate interests (analytics, security)

5.3 CCPA/CPRA Rights (California Residents)

If you are a California resident, you have rights under the California Consumer Privacy Act and California Privacy Rights Act:

Know: Request disclosure of personal information collected, used, and shared
Delete: Request deletion of personal information (with certain exceptions)
Correct: Request correction of inaccurate personal information
Opt-Out of Sale/Sharing: We do not sell or share personal information for cross-context behavioral advertising. If this changes, you have the right to opt-out.
Limit Use of Sensitive Personal Information: Request that we limit the use and disclosure of your sensitive personal information (Social Security number, account credentials, precise geolocation, etc.) to purposes necessary to provide the Service. We do not use sensitive personal information for purposes beyond service delivery.
Non-Discrimination: We will not discriminate against you for exercising your CPRA rights

Sensitive Personal Information We Collect: Account credentials (email/password), precise geolocation (if you enable location services). We use this information solely to provide the Service and do not use it for additional purposes.

5.4 How to Exercise Your Rights

To exercise any of these rights, contact us at privacy@manweclub.com. We will respond within:

30 days (GDPR requests)
45 days (CCPA requests, extendable to 90 days if needed)

We may request verification of your identity before processing requests.

6. Cookies and Tracking Technologies

We use the following types of cookies:

Essential Cookies: Required for authentication and core functionality (cannot be disabled)
Preference Cookies: Remember your settings (chapter selection, theme preferences)
Analytics Cookies: Understand usage patterns and improve the Service

You can control cookies through your browser settings. Disabling essential cookies may prevent you from using the Service.

7. Data Security

We implement industry-standard security measures to protect your information:

Encryption: All data transmitted over HTTPS/TLS; passwords hashed using SHA-256
Access Controls: Limited employee access on a need-to-know basis
Secure Storage: Database hosted on secure Neon PostgreSQL with encryption at rest
Payment Security: PCI-DSS compliant payment processing via Stripe (we never store full card numbers)

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your information.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure adequate protection through:

Standard Contractual Clauses (for EU data transfers)
Service providers with appropriate data protection agreements

9. Children's Privacy

Our Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will delete it.

10. AI and Automated Decision-Making

We use OpenAI for event generation based on planner preferences. This AI assistance:

Generates event suggestions based on category, location, age range, and date preferences
Does not make automated decisions that significantly affect you
Is supervised by planners who review and approve all AI-generated events
Does not use your personal data to train AI models

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Material changes will be communicated via:

Email notification to your registered email address
Prominent notice on the Service

Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Third-Party Links

Our Service may contain links to third-party websites (event booking links, venue websites). We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies.

13. Do Not Track Signals

We do not currently respond to Do Not Track (DNT) browser signals. We do honor Global Privacy Control (GPC) signals for California residents.

14. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us:

Email: hello@manweclub.com
General Inquiries: hello@manweclub.com
Website: manweclub.com

Data Protection Officer: For GDPR-related inquiries, contact our DPO at hello@manweclub.com