Phynx

Legal

Privacy Policy

Effective date: April 24, 2026

This Privacy Policy describes how Phynx Inc. (“Phynx,” “we,” “us,” or “our”) collects, uses, and shares personal information when you use the Phynx event-operations platform, our websites at www.phynx.studio and app.phynx.studio, and any related services (collectively, the “Service”).

1. Information we collect

We collect the following categories of personal information:

  • Account information — your name, email address, phone number, and organization you belong to. Provided when you sign up, accept an invitation, or complete your profile.
  • Event and guest information — contact details (name, email, phone) of guests on your lists; reservation, ticketing, and check-in records you create. You are the controller of this data; Phynx processes it on your behalf.
  • Device and usage data — IP address, browser type, pages viewed, timestamps, and similar telemetry needed to operate and secure the Service.
  • Payment information — we do not store full payment card numbers. Payments are handled by our processors (e.g. Stripe) who collect card details directly.

2. How we use information

  • To provide, maintain, and improve the Service.
  • To authenticate you and keep your account secure.
  • To send operational communications — sign-in links, invitation notifications, receipts, and security alerts.
  • To send transactional SMS messages (see Section 3) you have explicitly requested or opted into.
  • To respond to support requests and improve our product based on aggregated usage patterns.
  • To comply with legal obligations and enforce our Terms of Service.

3. SMS and text messaging

When you or a guest you invite provides a phone number, we may send SMS text messages for the following purposes:

  • Sign-in codes and verification — to confirm your identity when signing in, or when a guest accepts an invitation.
  • Event reminders and invitations — when an event organizer sends a guest a confirmation, reminder, or related transactional message.
  • Account and security notifications — password changes, suspicious activity, and similar critical account events.

Consent: You consent to receive SMS by providing your phone number during sign-up, accepting an invitation, or explicitly opting in. Message frequency varies based on account activity. Message and data rates may apply.

Opt-out: Reply STOP to any message to cancel SMS from that sender. Reply HELP for help. You may also contact support@phynx.studio to remove your phone number from SMS outreach.

No sale or sharing: We do not sell, rent, or share phone numbers or SMS opt-in information with third parties or affiliates for their own marketing purposes. Phone numbers provided to Phynx are used solely for the purposes described in this policy and are not shared with other companies for marketing campaigns.

Our SMS program is operated in accordance with CTIA Messaging Principles and Best Practices and applicable carrier policies.

4. How we share information

We share personal information only in the following circumstances:

  • Service providers — with vendors who help us run the Service (hosting, database, email, SMS, analytics, payment processing). These providers are bound by contracts to use the information only to perform services on our behalf.
  • Within your organization — information you contribute to an organization (events, guest lists, etc.) is visible to other members of that organization based on their role and permissions.
  • Legal compliance — when required by law, subpoena, or to protect the rights, property, or safety of Phynx, our users, or others.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, subject to the acquiring party honoring this policy.

We do not sell your personal information. We do not share phone numbers or SMS opt-in data with third parties or affiliates for their own marketing purposes.

5. Third-party processors

We use the following categories of processors. This list may be updated from time to time; the most recent version is always published here.

  • Cloud hosting and databases (e.g. Vercel, Neon).
  • Transactional email (e.g. Resend).
  • Transactional SMS (e.g. Twilio).
  • Object storage (e.g. Cloudflare R2).
  • Product analytics and error monitoring (e.g. PostHog).
  • Payment processing (e.g. Stripe).
  • Authentication (Google Sign-In, if enabled by your organization).

6. Data retention

We retain personal information as long as your account is active or as needed to provide the Service. If you close your account, we delete or de-identify your personal information within 90 days, except where we are required to retain it for legal, accounting, or compliance purposes. Audit log entries are retained for the period configured by your organization (up to 10 years).

7. Security

We use industry-standard technical and organizational measures to protect personal information — encryption in transit (TLS), encrypted storage, role-based access control, and audit logging. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

8. Your rights

Depending on your location (e.g. California, the EU / UK), you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Request deletion of your information.
  • Opt out of certain uses of your information (including SMS — see Section 3).
  • Lodge a complaint with your local data-protection authority.

To exercise these rights, contact privacy@phynx.studio. We will respond within the timeframes required by applicable law.

9. Children

Phynx is not intended for users under 16. We do not knowingly collect personal information from children under 16. If you believe we have done so, contact us and we will delete the information.

10. International users

The Service is operated from the United States. If you access it from outside the U.S., your information may be transferred to and processed in the U.S. Where required, we use standard contractual clauses or other lawful transfer mechanisms.

11. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be announced by email or in-product notice at least 30 days before they take effect. The “Effective date” above reflects the current version.

12. Contact us

Phynx Inc.
100 W Broadway, Long Beach, CA 90802
privacy@phynx.studio
hello@phynx.ai