Skip to main content

Privacy Policy

Last updated: May 4, 2026

Gilded ("we," "us," or "our") operates the website at gildedhq.com and the application at app.gildedhq.com (together, the "Service"). This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have.

If you create a Gilded account, this policy governs all data we collect about you and the people whose information you store in the Service. If you only joined the waitlist, you can skip ahead to the Waitlist section.

What We Collect

From Planners (account holders)

When you create an account and use the Service, we collect:

  • Identity: name, email address, phone number, business name, business address, profile photo (if uploaded)
  • Account credentials: a hashed password (never stored in plain text); session tokens
  • Subscription info: which plan you're on, billing status, trial start/end dates, payment method on file (Stripe stores your card; we store only Stripe identifiers)
  • Branding assets: logo, colors, fonts, hero images you upload for client-facing documents
  • Account preferences: notification channel (email, SMS, both), event-type toggles, timezone, business address fields
  • Activity data: which features you use, when you log in, IP address, browser type, device type, pages viewed

About Your Clients

When you create an event in Gilded, you provide and we store information about your clients (the wedding couple), including:

  • Names, email addresses, phone numbers
  • Mailing addresses
  • Partner information
  • Event details (date, venue, guest count, budget, preferences)
  • Document content (proposals, contracts, signed agreements)
  • Electronic signatures and signing audit trail (consent timestamp, IP address, user agent at time of signing)
  • Payment records (Stripe-tokenized; we store amounts, statuses, and Stripe identifiers)

You are responsible for ensuring you have the right to provide your clients' information to us, including their consent to receive emails and SMS messages from you through the Service. When you enter a client's phone number and enable SMS for that client, you confirm that the client has consented to receive transactional SMS about their event.

About Vendors and Participants

When you add vendors to your rolodex or participants to a wedding timeline, we store their names, business names, contact info (email, phone, website), category, notes, and any timeline assignments. As with clients, you are responsible for having appropriate consent.

About Visitors

When you visit gildedhq.com without creating an account, we collect:

  • IP address, browser type, device type, referring URL, pages viewed
  • Cookies and similar technologies (see Cookies and Tracking below)
  • Email address if you join the waitlist

How We Use Your Information

  • To provide the Service — display your dashboard, render documents, send emails on your behalf, process payments, generate timelines, store your data
  • To send you transactional notifications — payment confirmations, signature requests, document activity alerts (you control which via your preferences)
  • To send you product updates and marketing emails — you can unsubscribe at any time (this never blocks transactional emails)
  • To improve the Service — analyze usage patterns, debug errors, run experiments and feature flags
  • To comply with legal obligations — tax records, fraud prevention, responding to lawful requests
  • To enforce our Terms of Service

Service Providers and Subprocessors

We rely on the following third-party services to operate Gilded. Each only processes data necessary to provide their service to us, under their own privacy commitments:

  • Supabase (privacy policy) — database, file storage, authentication. Stores all account, client, document, payment, and signing data.
  • Vercel (privacy policy) — application hosting and cron jobs. Processes all HTTP requests with no persistent storage of personal data.
  • Stripe (privacy policy) — subscription billing for Gilded plans and Stripe Connect for client payments to planners. Stores card details, payment records, subscription details, and payout details.
  • Resend (privacy policy) — transactional and marketing email delivery. Processes recipient and sender email, message content, and delivery status.
  • Twilio (privacy policy) — SMS notifications. Processes recipient and sender phone numbers, message content, and delivery status.
  • DocRaptor (privacy policy) — server-side PDF rendering for documents. Receives document HTML/CSS at render time and does not persistently store it.
  • PostHog (privacy policy) — product analytics, feature flags, error tracking, and session replay. Receives event properties (with PII filtered before sending), masked session recordings, and error stack traces.
  • Anthropic (privacy policy) — AI features such as vendor parsing, timeline generation, and the support chatbot. Processes prompts and completions for AI-assisted features only.
  • OpenAI (privacy policy) — embeddings for help-center chatbot retrieval. Processes query text.
  • Sentry (privacy policy) — error tracking (being phased out and replaced by PostHog). Processes stack traces and user/organization identifiers.

We do not sell your personal information. We do not share your information with third parties for their own marketing purposes.

Mobile Information Specifically

No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing with subprocessors solely in support of providing the Service (e.g., Twilio for SMS delivery) is permitted. This applies to all phone numbers we collect, including planners' business phone numbers and contact phone numbers for clients, vendors, and participants.

Cookies and Tracking

We use cookies and similar technologies for:

  • Authentication (Supabase) — to keep you signed in across pages
  • Product analytics (PostHog) — to count pageviews, identify your account so we can build per-planner funnels, and remember your distinct identifier across visits
  • Session replay (PostHog) — to record interactions in the application for debugging and product improvement (input fields, signature pads, intake forms, and document body content are masked; client-facing token URLs are not recorded)
  • Cross-subdomain identity — a single cookie scoped to `.gildedhq.com` so visiting the marketing site and signing into the app are recognized as the same session for analytics

We do not use third-party advertising cookies. We do not run retargeting pixels.

You can disable cookies in your browser, but parts of the Service may not function correctly without them (notably, you won't be able to stay signed in).

Session Recording

PostHog records interactions inside the authenticated application (`app.gildedhq.com`) for product debugging and analytics. Recordings exclude:

  • All form input values (signature pads, intake forms, document editors)
  • Any element marked sensitive in the application code
  • Token-based client-facing pages (`/view/[token]`, `/pay/[token]`) — these are never recorded so couples and clients are excluded entirely

If you'd like a specific session recording deleted, email us at privacy@gildedhq.com with the approximate time and we will remove it.

AI Features

Gilded uses AI services (Anthropic Claude, OpenAI embeddings) to power features like vendor list parsing, timeline generation, and the in-app help chatbot. When you use these features:

  • Your prompt and the AI's response are sent to the third-party provider for processing
  • Anthropic and OpenAI commit not to train on data submitted via their API (per their published policies as of the date of this policy)
  • We log token counts and feature attribution to monitor cost — we do not store the prompt content beyond what's needed for the feature itself

Data Retention

  • Active accounts: we retain your data as long as your account is active.
  • Closed or expired accounts: 90 days after closure, after which your data may be permanently deleted. You can export your data at any time while your account is active.
  • Document audit trails: signed documents and signing event logs are retained for the lifetime of your account, and for 7 years after closure if required by ESIGN/UETA recordkeeping rules.
  • Payment records: retained as required by tax, accounting, and dispute-resolution law (typically 7 years).
  • Aggregate analytics: anonymized event counts may be retained indefinitely.

Your Rights

You have the following rights regardless of where you live:

  • Access — get a copy of the personal data we hold about you
  • Correct — fix anything inaccurate
  • Delete — request deletion of your data
  • Export — receive your data in a portable format
  • Object — opt out of marketing emails (any time, via the unsubscribe link)
  • Withdraw consent — for SMS, reply STOP to any message; for marketing email, click unsubscribe; for the entire Service, close your account

To exercise any of these rights, email privacy@gildedhq.com.

EU/UK Visitors (GDPR)

If you are in the European Economic Area or United Kingdom, you have additional rights under GDPR including the right to lodge a complaint with your local supervisory authority. Our legal bases for processing are:

  • Contract — to provide the Service to you
  • Legitimate interests — to operate, improve, secure, and market the Service
  • Consent — for marketing emails, SMS, and non-essential cookies (where consent is required)
  • Legal obligation — for tax, accounting, and law-enforcement requests

California Residents (CCPA/CPRA)

You have the right to know what personal information we collect, the right to request deletion, the right to correct inaccurate information, and the right to opt out of "sales" of personal information. We do not sell or share your personal information. Contact privacy@gildedhq.com to exercise these rights.

Children's Privacy

The Service is not directed to individuals under 18. We do not knowingly collect information from children. If you believe we have collected information from a child, contact us and we will delete it.

International Transfers

Gilded operates in the United States. Our subprocessors (Supabase, Vercel, Stripe, etc.) may process data in the US or other regions. By using the Service, you consent to your data being transferred to and processed in the United States.

Security

We use commercially reasonable measures to protect your data, including encryption in transit (TLS), encryption at rest, role-based access controls, audit logging, and infrastructure hosted by SOC 2-compliant providers. No system is perfectly secure — if we detect a breach affecting your data, we will notify you as required by applicable law.

Waitlist

If you joined our waitlist before launch:

  • We collected your email address and the referral source (UTM parameter) of how you found us.
  • We use your email to send launch updates and confirm your spot.
  • You can unsubscribe at any time using the link in our emails or by emailing privacy@gildedhq.com.
  • If you create a Gilded account at launch, your information becomes governed by the rest of this policy. If you don't, your waitlist data will be deleted within 90 days of public launch.

Changes to This Policy

We may update this policy as Gilded evolves. If we make material changes, we will notify account holders by email at least 30 days before the changes take effect. The "Last updated" date at the top reflects the most recent revision.

Contact Us

For privacy questions, requests, or concerns:

Email: privacy@gildedhq.com

Mail: 375 Redondo Ave #1133, Long Beach, CA 90814