Privacy Policy

1. Scope

This Privacy Policy explains how AdminNinja collects, uses, and handles information when you access or use DropBadge, our web-based badge formatting and PDF export tool.

This policy applies to information processed through the DropBadge website and checkout flow. It does not apply to third-party services that have their own privacy notices, including Stripe.

2. Attendee data is processed locally in your browser

DropBadge is built to process attendee CSV files, badge text, layout selections, and generated badge previews locally in your browser during normal use. We do not upload, host, or store your guest list on our servers as part of the core badge formatting workflow.

As a result, attendee names, titles, companies, QR values, and similar badge content generally remain on your device unless you choose to share them yourself through your browser, operating system, email, cloud storage, or another third-party service.

3. Information stored on your device

To make the product usable across refreshes, DropBadge stores certain data locally in your browser, including:

• draft attendee rows imported from your CSV;
• column mappings, manual badge edits, and selected layouts;
• printer calibration and export preferences;
• a locally stored unlock token after a successful payment; and
• a temporary checkout resume flag used to reconnect the payment flow to your open session.

This data is stored in browser storage such as localStorage or sessionStorage on your device, not in our attendee-data systems. If you use a shared or managed computer, you should clear your browser storage after use.

4. Payment processing and Stripe

Payments for DropBadge are processed by Stripe. We do not receive or store your full payment card number, CVC, or full card details.

When you purchase an unlock, Stripe and our server-side payment confirmation endpoint may process limited transaction information needed to verify that payment completed successfully and to issue an unlock token. This may include data such as the Stripe checkout session ID, payment status, transaction timestamps, and other payment metadata made available by Stripe.

Your use of Stripe is also subject to Stripe's own privacy policy and terms.

5. Technical data that may be processed

Even though attendee CSV content is designed to stay local, our website, hosting providers, and payment providers may still process standard technical information required to deliver and secure the service. This may include IP address, browser and device metadata, request timestamps, error logs, and payment-confirmation request data.

We use that information only as reasonably necessary to operate the site, prevent fraud, maintain security, troubleshoot issues, and confirm paid unlocks.

6. How we use information

We may use the limited information we process to:

• provide, maintain, and secure DropBadge;
• confirm Stripe payments and unlock PDF exports;
• respond to support or refund requests;
• detect abuse, fraud, or misuse of the service; and
• comply with legal, tax, accounting, or regulatory obligations.

7. Data sharing

We do not sell or rent attendee lists. We may share limited information only with service providers that help us operate DropBadge, such as payment processors, hosting providers, infrastructure vendors, or professional advisors, and only to the extent reasonably necessary for those purposes.

We may also disclose information when required by law, to enforce our rights, or to protect the security of the service, our users, or the public.

8. Retention

We do not retain attendee CSV content on our servers through the normal browser-based workflow. However, information stored locally in your browser remains on your device until you delete it, your browser removes it, or a new session overwrites it.

We may retain payment, accounting, anti-fraud, and support records for as long as reasonably necessary to operate the business and satisfy legal obligations.

9. Security

Local processing materially reduces the risk associated with server-side storage of guest lists, but no website, browser, device, or network is completely secure. You are responsible for using appropriate device, browser, and account security, especially on shared machines.

10. Your choices and rights

You may generally control data handled by DropBadge by:

• closing the site without uploading data anywhere;
• clearing your browser storage to remove locally stored draft data and unlock state; and
• contacting us through the support or contact method published on AdminNinja.

Depending on your location, you may also have statutory privacy rights that cannot be limited by this policy.

11. International processing

Our service providers, including payment and hosting vendors, may process data in countries other than your own. By using DropBadge, you understand that limited technical and transaction data may be handled in other jurisdictions subject to applicable safeguards and legal requirements.

12. Changes to this policy

We may update this Privacy Policy from time to time. The updated version becomes effective when posted on this page unless a later date is stated.

13. Contact

For privacy questions, support, or data requests relating to DropBadge, please contact us at [email protected] or using the contact method made available on the AdminNinja website.