Privacy

Privacy Policy.

Last updated · 2026-04-21

This policy explains what Welcomery collects, why we collect it, and how we handle the most sensitive surface in the product — the guest names shown on your TVs.

What we collect — Account data.

When you sign up we store your email address, a salted bcrypt hash of your password (via Supabase Auth — we never see your plaintext password), your company name, and any pending team invitations you send.

Guest names — special treatment.

Guest names shown on the welcome screen get handling distinct from any other data we process. Specifically:

  1. Display-only. We store guest names only so they can appear on your TVs to welcome visitors. We do not analyze them, train on them, or use them for any other purpose.
  2. Auto-expire. Every name is entered with an editor-chosen expiry: 4 hours, 8 hours, 1 day, 3 days, or 1 week. When the window passes, the name is gone from the screen.
  3. Purged from our database. A scheduled sweep runs every 5 minutes (via pg_cron) and permanently deletes any expired name from our database. Purging is not a soft-delete — the row is gone.
  4. Not exported. There is no CSV export, no API access to the names, and no analytics pipeline that receives them.
  5. Not shared. We do not share guest names with advertisers, analytics providers, ML training datasets, or any other third party.
  6. Receptionist-authored. Guest names are only entered by authorized editors on your team. We do not ingest names from calendars, CRMs, badge systems, or any other source.
  7. Retention guidance. We recommend using the shortest expiry that fits your use case. A lobby screen displayed for a 2-hour morning meeting should use 4-hour expiry, not 1-week.

Cookies.

We use a single session cookie (via @supabase/ssr) to keep you logged in across page loads. We do not use tracking cookies, fingerprinting, or third-party cookies.

Service providers.

  • Supabase — hosts our database, authentication, realtime channels, and image storage. Your data lives in a Supabase-managed Postgres instance.
  • Vercel — hosts the web application that serves the dashboard and TV routes.
  • Resend — delivers transactional email (signup verification, team invites, password resets). Guest names are never sent through Resend.

Your rights.

You can export your account data or request deletion at any time by emailing privacy@welcomeboard.dev. California residents (CCPA/CPRA) and users in the EU/EEA (GDPR) may have additional rights under local law — we will honor reasonable requests.

Contact.

Questions about this policy? Email privacy@welcomeboard.dev.

Changes to this policy.

If we make material changes, we will notify you via email at least 30 days before the new policy takes effect. The "Last updated" date at the top will always reflect the most recent revision.

Last updated.

2026-04-21