Privacy policy

Last updated: July 13, 2026

Who this policy covers

This policy covers Pompi accounts, organization workspaces, public Pompi pages, digital business cards, QR and NFC redirects, analytics, contact forms, and support communication.

Data we process

We process account and profile data, organization settings, billing records, resources you publish, security logs, and product usage events.

When a visitor submits a form, the organization that owns the page receives the submitted contact data and the consent snapshot shown with that form.

Why we process data

We use data to provide and secure the service, publish requested content, measure customer-owned experiences, deliver transactional email, process payments, prevent abuse, and meet legal obligations.

Storage and recipients

Pompi uses service providers for infrastructure, email delivery, error monitoring, and payments. Access is limited to the purpose of providing the service.

Retention depends on the record type. Account exports are retention-bound, analytics uses bounded identifiers without fingerprinting, and deleted resources are removed according to the product workflow and backup lifecycle.

Your choices and rights

Account owners can update profile data, control email preferences, export account data, and request deletion from the profile area.

For access, correction, deletion, restriction, objection, or privacy questions, contact support@pompi.app.