Privacy Policy
Last updated: March 2026 · Operated by AppEasy
1. Who is Responsible for Your Data
AppEasy is the data controller for ReserveSunshine. For any privacy-related enquiries, contact us at privacy@reservesunshine.com.
2. What Data We Collect
| Data | Why we collect it | Kept for |
|---|---|---|
| Name, email address | Account creation and communication | Duration of account |
| Date of birth (month and day only) | Birthday sunshine gift (30 min free credit) | Duration of account |
| Password (hashed, never plain text) | Account authentication | Duration of account |
| Event name, location, date, time | Reservation processing and certificate issuance | 3 years |
| Payment amount, Stripe payment ID | Financial records and refund processing | 7 years (legal requirement) |
| IP address, browser type | Security and fraud prevention | 90 days |
| Page views, click events (Matomo) | Anonymous analytics to improve the service | 13 months |
We do not collect or store card numbers, CVV, or any payment credentials. All card processing is handled by Stripe. See Stripe's privacy policy.
3. Date of Birth
We collect your date of birth (day and month only — we do not require the year) solely to send you a birthday sunshine credit each year. This data is not shared with any third party and is used exclusively for this purpose. You may remove it from your account settings at any time, which will disable the birthday gift.
4. How We Use Your Data
- To create and manage your account
- To process reservations and payments
- To generate and deliver your sunshine certificates
- To send transactional emails (booking confirmation, certificate ready, wallet credit)
- To credit your birthday sunshine gift
- To detect and prevent fraudulent use of the service
- To comply with legal obligations (financial records)
5. Analytics (Matomo)
We use Matomo, a self-hosted analytics platform, to understand how visitors use our website. Matomo is configured to anonymise IP addresses and does not share data with third parties. Matomo analytics data is stored on our own servers and is not sent to Matomo.org or any other external service. You can opt out of analytics tracking below:
6. Email Communications
We send transactional emails only — booking confirmations, certificate notifications, and wallet credits. We do not send marketing emails unless you explicitly opt in. You can unsubscribe from any email using the link at the bottom of each message.
Emails are delivered via Resend. See Resend's privacy policy.
7. Data Sharing
We do not sell, rent, or share your personal data with third parties for marketing purposes. We share data only with:
- Stripe — payment processing (card data never touches our servers)
- Resend — transactional email delivery (name and email address only)
- Open-Meteo / Visual Crossing — weather verification (location and date only, no personal data)
8. Your Rights (GDPR)
If you are in the European Economic Area, you have the following rights:
- Access: Request a copy of the data we hold about you
- Correction: Ask us to correct inaccurate data
- Deletion: Ask us to delete your account and personal data
- Portability: Receive your data in a machine-readable format
- Objection: Object to processing based on legitimate interests
- Withdraw consent: Where processing is based on consent, withdraw it at any time
To exercise any of these rights, email privacy@reservesunshine.com. We will respond within 30 days.
Note: Financial transaction records must be retained for 7 years under Irish law even after account deletion. These records will be anonymised where possible.
9. Cookies
We use a minimal number of cookies:
- Authentication: A session token stored in localStorage (not a cookie) to keep you logged in
- Analytics: Matomo sets a first-party cookie to distinguish visits. This cookie does not track you across other websites.
We do not use advertising cookies or third-party tracking cookies.
10. Data Security
All data is transmitted over HTTPS. Passwords are hashed using bcrypt and are never stored in plain text. Our servers are located in the European Union. We conduct regular security reviews.
11. Changes to this Policy
We may update this policy from time to time. We will notify registered users by email of any material changes. The date at the top of this page shows when it was last updated.
12. Contact
For any privacy questions or to exercise your rights: privacy@reservesunshine.com