Privacy Policy

Effective Date: February 24, 2026 · Last Updated: February 24, 2026

Envoi ("we," "us," or "our") operates the Envoi mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our App.

By using Envoi, you agree to the practices described in this policy. If you do not agree, please do not use the App.

1. Information We Collect

Account Information

Name and email address (provided at signup or via Apple Sign-In)
Apple ID credentials (when using Sign in with Apple — we receive only a user identifier, not your Apple ID password)

Event & Design Data

Event type (e.g., wedding, baby shower, birthday)
Event details you enter: names, dates, venue information, and other event-specific fields
Style preferences: color palettes, aesthetic choices, and design descriptions
AI-generated stationery designs and saved projects

Subscription & Purchase Data

Subscription tier (Free, Monthly, Annual)
Purchase history and entitlement status (processed by Apple App Store and RevenueCat — we do not receive or store payment card information)

Usage & Technical Data

App usage patterns and feature interactions (collected via PostHog analytics)
Crash reports and error logs, which may include device model, OS version, and app version (collected via Sentry)
IP address and general location (country/region level) for fraud prevention and analytics

2. How We Use Your Information

Provide the App: Authenticate your account, save and retrieve your projects, and deliver AI-generated designs
Generate Stationery: Send your event details and style preferences to OpenAI's API to generate design concepts tailored to your event
Manage Subscriptions: Verify your entitlements and provide access to features based on your subscription tier
Improve the App: Analyze usage patterns to fix bugs, prioritize features, and improve user experience
Communicate: Send transactional emails (e.g., account confirmation, support responses) — never marketing emails without your consent
Comply with legal obligations

3. AI Processing — Important Disclosure

Your event details are sent to OpenAI's API. When you generate a stationery design, the event information you provide (names, date, venue, style preferences) is transmitted to OpenAI to generate design concepts. OpenAI's Privacy Policy governs how OpenAI handles this data. We do not send your name or email address to OpenAI.

We use OpenAI's API under terms that prohibit OpenAI from training its models on API inputs by default. However, we encourage you to review OpenAI's current privacy policy for the most accurate information.

4. Third-Party Services

We use the following third-party services, each governed by their own privacy policies:

Supabase

Provides database storage and authentication infrastructure. Your account data, event projects, and design history are stored in Supabase's managed PostgreSQL database hosted on AWS. Supabase Privacy Policy →

OpenAI

Processes event details and style preferences to generate AI stationery designs. Data sent includes event type, names, date, venue, and aesthetic descriptions — not your email or account credentials. OpenAI Privacy Policy →

RevenueCat

Manages in-app subscriptions and entitlement verification. RevenueCat receives your Apple App Store receipt data and assigns an anonymous user ID to track your subscription status. RevenueCat Privacy Policy →

Apple App Store & Apple Sign-In

When you sign in with Apple, Apple provides us with a unique user identifier and, at your option, your name and email (or an anonymized relay email). Apple processes all payment transactions. Apple Privacy Policy →

PostHog

Provides product analytics to help us understand how the App is used. PostHog collects usage events (screens visited, features used, session duration) associated with an anonymous user ID. We do not share personally identifiable information with PostHog. PostHog Privacy Policy →

Sentry

Monitors the App for errors and crashes. When a crash or error occurs, Sentry collects a stack trace, device model, OS version, and app version. Crash reports may incidentally contain partial context from the operation that failed. Sentry Privacy Policy →

5. Data Retention

Account data: Retained while your account is active. Deleted within 30 days of account deletion upon request.
Project data: Retained while your account is active. You can delete individual projects at any time within the App.
Analytics data: Aggregated usage data may be retained indefinitely in anonymized form.
Crash logs: Retained for up to 90 days, then automatically purged by Sentry.

6. Data Security

We implement industry-standard security measures including:

TLS encryption for all data in transit
AES-256 encryption for data at rest (provided by Supabase/AWS)
Row-level security (RLS) policies in Supabase so users can only access their own data
No storage of payment card information — all payments handled by Apple

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Your Rights

You have the right to:

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate data
Deletion: Request deletion of your account and associated data
Data portability: Request an export of your project data
Opt out of analytics: Contact us and we will disable analytics collection for your account

To exercise any of these rights, contact us at support@envoiapp.com. We will respond within 30 days.

8. Children's Privacy

Envoi is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, contact us at support@envoiapp.com and we will delete it promptly.

9. International Users

Envoi is operated from the United States. If you access the App from outside the U.S., your information may be transferred to and processed in the U.S. By using the App, you consent to this transfer. We take appropriate measures to protect your data in accordance with this policy regardless of where it is processed.

10. California Privacy Rights (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act. We do not sell personal information. To exercise your rights, contact support@envoiapp.com with the subject line "California Privacy Request."

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the App or by email at least 14 days before the changes take effect. Your continued use of the App after the effective date constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy:

Email: support@envoiapp.com
Website: envoiapp.com