Hey Benson™ — Privacy Policy

Effective Date: September 8, 2025 (v2.5)

From InstaEvent Inc.

At InstaEvent Inc., your data is yours — full stop. We take your privacy seriously, not just because the law says so, but because trust is everything. Benson only uses your information to help you plan and enjoy better experiences with your friends. We will never sell it, and you will always have the power to view, edit, or delete it whenever you want.

Message from Benson

Hi, I'm Benson — your AI social concierge. I take your privacy seriously. This Privacy Policy explains how InstaEvent Inc. (the company behind Hey Benson™) collects, uses, and protects your information. I'll be clear and direct so you know what I remember, what I share, and what you can control.

1. Privacy Philosophy

We believe privacy should be simple and transparent:

• We do not sell or share your personal information.
• We only collect the information necessary to provide event coordination and AI concierge features.
• You control what data Hey Benson remembers, and you may ask me to delete or "forget" your data at any time.

2. Information We Collect

We may collect:

• Account Data: name, email, phone number, password, profile photo.
• Event Data: event details, invitations, RSVPs, polls, guest preferences (including optional dietary or accessibility needs).
• Communications: messages with Benson, SMS/MMS invites, and emails.
• Contacts: if you sync contacts, we only store those you invite, not your entire address book.
• Device & Usage Data: IP address, browser type, device identifiers, operating system, log data.
• Cookies & Analytics: cookies, beacons, and tools like Google Analytics.
• Location Data: if enabled, we may use your location for venue recommendations.

3. SMS/MMS Messaging

Privacy: Your mobile information will not be shared with third parties for marketing or promotional purposes. Your phone number is used only for Service-related communications (such as invitations, reminders, OTPs, and security alerts) and is not sold or shared with unauthorized third parties.

If a Hey Benson user invites a friend who has not yet joined, that friend may receive a one‑time SMS invitation initiated by the user. The invite will include opt‑out instructions (STOP/HELP) and a link to consent before receiving any further SMS.

4. Use of AI

Hey Benson uses artificial intelligence to plan events, personalize recommendations, and automate tasks like invitations, reminders, and messaging.

• Inputs & Processing: Your messages may be processed by third-party AI providers (e.g., OpenAI). These providers process data only to deliver responses and do not use your data to train their models.
• Memory: Benson may remember preferences (e.g., favorite venues, dietary restrictions, group dynamics) to improve recommendations. You can ask Benson to "forget" at any time.
• Limitations: AI suggestions may not always be accurate or appropriate. Verify details before relying on them. InstaEvent is not responsible for actions taken solely on AI responses.
• Automated Decision-Making: We do not use AI for automated decision-making with legal or similarly significant effects under GDPR or other laws.

5. How We Use Information

We use your data to:

• Provide and operate Hey Benson.
• Send invitations, reminders, OTPs, and notifications.
• Personalize recommendations and AI responses.
• Send optional marketing or promotional messages (you may opt out).
• Process payments (if applicable).
• Protect against fraud, abuse, or misuse.
• Comply with legal obligations.

6. Legal Bases for Processing (GDPR/UK GDPR)

If you are in the EU/UK, we process your data under these bases:

• Contract – to provide the Service.
• Consent – for SMS marketing, AI personalization, cookies, and sensitive data.
• Legitimate Interests – analytics, fraud prevention, improvements.
• Legal Obligations – compliance with applicable law.

7. Sensitive Data

If you provide sensitive data (such as dietary preferences), we process it only with your explicit consent and solely for event planning purposes.

8. Data Sharing

We may share data with trusted vendors:

• Twilio (SMS messaging).
• SendGrid (email delivery).
• OpenAI (AI processing).
• Google Maps (location services).
• Analytics & Security Partners.
• Legal authorities, where required.
• In case of merger, acquisition, or restructuring.

We do not sell or share your personal information.

9. International Transfers

If you are outside the U.S., your data may be transferred to and processed in the U.S. We rely on Standard Contractual Clauses (SCCs) and other safeguards approved by the European Commission and UK ICO.

10. Data Retention

We retain data as long as needed for the Service or legal reasons:

• Event data: kept while your account is active, deleted/anonymized within 12 months after deletion.
• AI memory: you can ask Benson to "forget" immediately.
• Marketing preferences: honored within 2 business days of opt-out.

11. Your Rights (GDPR, UK GDPR, CCPA/CPRA)

Your rights may include:

• Access – request a copy of your data.
• Correction – fix inaccuracies.
• Deletion – request deletion.
• Restriction – limit processing.
• Portability – obtain your data in portable format.
• Object – to certain processing, including profiling.
• Withdraw Consent – for AI personalization, marketing, or sensitive data.

California Residents:

• Right to Know what categories we collect and use.
• Right to Delete personal data.
• Right to Correct inaccuracies.
• Right to Opt Out of Sale/Sharing (we do not sell/share data).
• Right to Limit Use of Sensitive Data (limited to event services).

12. Children's Privacy

Hey Benson is not directed to children under 18. We do not knowingly collect data from anyone under 18. If we discover such data, we will delete it immediately.

13. Do Not Track (DNT)

Our Service does not respond to Do Not Track (DNT) signals. Because there is no consistent industry standard for responding to DNT, we do not alter our practices when receiving such signals.

14. Cookies & Controls

You can manage cookies through your browser or opt out of targeted advertising:

• NAI Opt-Out: https://optout.networkadvertising.org/
• DAA WebChoices: https://youradchoices.com/

15. Security

We use encryption (AES-256, TLS/SSL), access controls, and monitoring to protect your data. No method is 100% secure, and we cannot guarantee absolute protection.

16. Complaints & Supervisory Authority

If you are in the EU or UK and believe we have not resolved your concern, you may lodge a complaint with your local authority or the Irish Data Protection Commission (www.dataprotection.ie).

17. Changes to This Policy

We may update this Privacy Policy. If changes are material, we will notify you via email, SMS, or in-app notice.

18. Contact Us