This is a courtesy translation. The French version prevails in case of discrepancy.
Privacy Policy
Last updated: March 1, 2026
1. Data controller
The data controller of personal data is SEEDFLOW, SAS, operator of the WonderGuest service, available at wonderguest.app, registered office: 24 rue Lombard, 33300 Bordeaux, France (SIREN 989 468 426).
Contact: support@wonderguest.app
2. Data collected
As part of using the Service, we collect the following categories of data:
2.1 Registration and profile data
- Email address
- First and last name (via manual entry or automatically retrieved when logging in via Google or Apple)
- Preferred language and theme
- Authentication data: we do not store any password; authentication relies on a one-time code (OTP) sent by email, or on the OAuth protocols of Google and Apple
2.2 Usage data
- Information about your accommodations (address, description, photos, GPS coordinates)
- Welcome guide content (texts, images, links, custom blocks)
- Guide viewing statistics (number of views, QR code scans)
- Interaction events in the application (navigation, user actions) collected through our product analytics tool
- Technical logs and diagnostic data in case of error (stack traces, device, application version)
2.3 Payment data
Payment information (bank card number) is processed directly by Stripe, our PCI-DSS-certified payment provider. WonderGuest does not store any bank data. We only keep the Stripe customer and subscription identifiers needed to manage your account.
2.4 Guest data (welcome guide visitors)
When a guest views a published welcome guide, the following data may be collected:
- Email address (if the guest voluntarily provides it via a form embedded in the guide)
- Anonymized browsing data (QR code scan, guide viewing)
3. Processing purposes
Your data is processed for the following purposes:
| Purpose | Legal basis |
|---|---|
| Managing your account and providing the Service | Performance of the contract (ToU) |
| Authentication (OTP email, Google, Apple) | Performance of the contract |
| Billing and subscription management via Stripe | Performance of the contract |
| Service improvement and usage analysis | Legitimate interest |
| Detection and correction of technical errors | Legitimate interest |
| Service-related communications (transactional emails) | Performance of the contract |
| Referral program | Performance of the contract |
| Compliance with our legal obligations (billing, retention) | Legal obligation |
4. Retention period
| Data category | Retention period |
|---|---|
| Account and profile data | Duration of the subscription + 30 days after account deletion |
| Welcome guide content | Duration of the subscription + 30 days after account deletion |
| Billing data | 10 years (legal obligation) |
| Analytics data (PostHog) | 24 months |
| Error logs (Sentry) | 90 days |
| Local storage data (session, preferences) | Until logout or deletion by the user |
5. Subprocessors and third-party services
We use the following subprocessors to operate the Service:
| Service | Function | Data processed | Location |
|---|---|---|---|
| Supabase | Hosting, database, authentication, file storage | All Service data | European Union |
| Stripe | Payment and subscription management | Email, name, payment data | European Union / United States (certified) |
| PostHog | Product analytics and usage events | User identifier, email, interaction events, device data | European Union |
| Sentry | Error monitoring and diagnostics | Technical data, IP address, user identifier | European Union (DE region) |
| OAuth authentication, Google Maps URL resolution | Google profile data (email, name) | United States (standard contractual clauses) | |
| Apple | Sign In with Apple authentication | Apple profile data (email, name) | United States (standard contractual clauses) |
6. Local storage
The application uses local storage on your device (AsyncStorage on mobile, localStorage on the web) for the following items:
- Authentication session (Supabase tokens)
- User preferences (language, theme, onboarding progress)
- Pending referral code
This data is not transmitted to third parties and remains on your device. It is deleted upon logout or uninstallation of the application.
7. Data made public
When you publish a welcome guide, the following information becomes publicly accessible via a unique URL:
- The content of the guide (texts, images, accommodation information)
- The guide URL (wonderguest.app/l/[token])
- The associated QR codes (wonderguest.app/q/[token])
No personal data of the host (email, name, account information) is exposed publicly through these URLs.
8. Your rights
In accordance with the General Data Protection Regulation (GDPR), you have the following rights:
- Right of access: obtain a copy of your personal data
- Right to rectification: correct inaccurate or incomplete data
- Right to erasure: request the deletion of your data
- Right to portability: receive your data in a structured, machine-readable format
- Right to object: object to the processing of your data based on legitimate interest
- Right to restriction: request restriction of processing in certain cases
To exercise these rights, contact us at support@wonderguest.app. We will respond within 30 days.
You may also lodge a complaint with the CNIL: www.cnil.fr
9. Security
We implement the following technical and organizational measures to protect your data:
- Encryption in transit (TLS/HTTPS) for all communications
- Encryption at rest of data stored in Supabase
- Passwordless authentication (OTP, OAuth) reducing credential-related risks
- Row Level Security (RLS) policies at the database level, ensuring that each user only accesses their own data
- Strict separation of production and development environments
- API keys and secrets managed through secure environment variables
10. International data transfers
Some of our subprocessors (Google, Apple, Stripe) may process data in the United States. These transfers are covered by:
- Standard contractual clauses (SCCs) adopted by the European Commission
- The certifications and contractual commitments of each provider
Our main technical subprocessors (Supabase, PostHog, Sentry) are hosted in the European Union.
11. Changes
This policy may be updated. Any material change will be notified by email or through the Service at least 15 days before it takes effect. The last updated date is shown at the top of this document.
12. Contact
For any question relating to the protection of your personal data, you can contact us at: support@wonderguest.app