Privacy Policy
Last Updated: 8/25/2025
Table of Contents
Introduction
This Privacy Policy applies to SessionGuide ("we," "us," or "our") and describes how we
collect, use, and protect information from users of our website and services (collectively, the
"Services").
This Privacy Policy applies only to users located in the United States. We use Cloudflare
geo-blocking to restrict access to US users only. Attempts to access our Services from outside the
United States will be blocked.
By using our Services, you agree to the collection and use of information in accordance with this
Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.
Summary of Data We Collect
We collect only the information necessary to provide our Services:
For Photographer Accounts:
- Account Data: Name, email, username, password (encrypted)
- Business Information: Business name, location, portfolio
- Payment Data: Only collected when you choose a paid plan after your free trial (processed
securely by Stripe - we don't store card numbers)
- Your Content: Locations, photos, and guides you create
For Client Accounts:
- Account Data: First name, last name, email address
- Interaction Data: Favorites lists, saved locations
- No Payment Data: Client accounts are free
For All Users:
- Usage Data: How you interact with our Services
- Technical Data: Device info, IP address (anonymized), error logs
-
- Profile Data: Profile picture, various information related to your profile (optional)
We do not sell your personal information to anyone.
We collect information you provide directly to us, such as when you:
- Create an account (Photographer or Client)
- Use our Services
- Upload content (Photographers) or save favorites (Clients)
- Contact us for support
- Subscribe to our communications
For Photographer Accounts:
- Name and contact information (email address, phone number)
- Business information: Business name, location, portfolio photos
- Account credentials (username and password)
- Optional profile picture
- Payment information (only after free trial when selecting a paid plan - processed securely through
Stripe)
- Locations, guides, and content you create and upload
- Communications you send to us
For Client Accounts:
- First name and last name
- Email address (used for magic link authentication)
- Optional profile picture
- Favorites lists and saved locations
- No password required (passwordless authentication)
- Communications you send to us
When you use our Services, we automatically collect:
- Log data: IP address, browser type, operating system, access times
- Device information: Device type, unique device identifiers
- Usage information: Pages viewed, features used, actions taken
- Location information: General location based on IP address
We use the information we collect to:
- Provide, maintain, and improve our Services
- Authenticate users (passwords for Photographers, magic links for Clients)
- Process transactions and send related information (Photographer accounts with paid plans only)
- Manage and display your favorites lists (Client accounts)
- Send technical notices, updates, security alerts, and support messages
- Send magic link authentication emails (Client accounts)
- Respond to your comments, questions, and customer service requests
- Monitor and analyze trends, usage, and activities
- Detect, investigate, and prevent fraudulent transactions and other illegal activities
- Personalize and improve the Services
- Provide location recommendations based on your saved favorites (Client accounts)
- Carry out any other purpose described to you at the time the information was collected
Legal Basis for Processing
We collect and use your information only when:
- You've given us permission (consent)
- We need it to provide our Services to you (contract)
- We have a legitimate business interest (like preventing fraud)
- We must comply with legal obligations
We may share information about you as follows:
- Service Providers: With vendors that perform services on our behalf:
- Payment processing (Stripe)
- Analytics (Google Analytics)
- Error monitoring (Sentry)
- Email delivery (MailChimp, Zoho Mail)
- Hosting services (DigitalOcean)
- Customer service
- Legal Requirements: To comply with applicable law, regulation, legal process, or governmental
request
- Protection of Rights: To protect the rights, property, and safety of SessionGuide, our users,
or others
- Business Transfers: In connection with any merger, sale of company assets, financing, or
acquisition
- With Your Consent: With your consent or at your direction
We do not sell, rent, or share your personal information with third parties for their marketing
purposes.
Your Content
When you upload files or content to SessionGuide:
- We store your content securely to provide our Services
- You retain ownership of all content you upload
- We only access your content to provide support (with your permission) or as required by law
- You control who can access your shared content
- We use industry-standard encryption for content storage and transmission
- Deleted content is removed from our active servers within 30 days (may persist in backups for up
to 90 days)
Cookies and Tracking Technologies
We use the following types of cookies:
- Essential cookies: Required for the Services to function properly
- Analytics cookies: Help us understand how you use our Services
Most web browsers accept cookies by default. You can set your browser to remove or reject cookies,
but this may affect your ability to use certain features of our Services.
We currently do not respond to Do Not Track signals.
Analytics and Tracking Technologies
We use third-party services to help us understand how users interact with our Services:
Google Analytics
Collects information such as:
- How often users visit our site
- Which pages they visit and for how long
- Which site referred them to us
- General location (city/state level)
- Device and browser information
Sentry
We use Sentry for error tracking and monitoring to improve reliability. Sentry collects:
- Technical error information and crash reports
- Browser and device information
- IP addresses (which we configure to be anonymized)
- Performance data related to errors
- User actions leading up to an error (without personal content)
We configure Sentry to minimize personal data collection and automatically scrub sensitive
information from error reports.
Google Maps: We use Google Maps to display and help you discover photography locations. Google
Maps may collect:
- Your device location (if you grant permission)
- Map interaction data
- Search queries for locations
This information is processed according to Google's Privacy Policy:
https://www.google.com/policies/privacy/
Data Retention: Analytics data is retained for 26 months. We use this information solely to
improve our Services. We do not sell or share this data with third parties for their marketing
purposes.
Learn more:
- Google Analytics: https://policies.google.com/privacy
- Sentry's privacy practices: https://sentry.io/privacy/
Your Privacy Rights
Depending on your state of residence, you may have certain rights:
California Residents (CCPA/CPRA)
- Right to know what personal information we collect, use, and disclose
- Right to delete personal information (subject to certain exceptions)
- Right to opt-out of the sale of personal information (we do not sell personal information)
- Right to data portability
- Right to non-discrimination for exercising your privacy rights
Residents of Virginia, Colorado, Utah, and Connecticut
Similar rights may apply under your state's privacy laws, including rights to:
- Access your personal information
- Delete your personal information
- Correct your personal information
- Obtain a copy of your personal information
- Opt-out of certain data processing
To exercise these rights, you can:
- Delete your account instantly through your profile settings (self-service, no need to contact us)
- For other privacy rights, contact us at [email protected]. We will respond within 30 days.
Communications
We may send you:
- Transactional emails (required - cannot opt out):
- Account confirmations
- Magic link authentication emails (Client accounts)
- Password resets (Photographer accounts)
- Billing receipts (Photographer accounts with paid plans only)
- Important service updates
- Security alerts
- Marketing emails (optional - can opt out):
- Product updates
- Tips and features
- New photographer guides (Client accounts)
- Feature announcements
- You can unsubscribe anytime
To update your email preferences, click "unsubscribe" in any marketing email. Note that you cannot
opt out of transactional emails as they are essential for account security and service operation.
Data Retention
We retain your information as long as necessary to provide our Services:
Photographer Accounts:
- Account information: While your account is active and for 90 days after closure
- Content (locations, guides, photos): Until you delete it (plus up to 90 days in backups)
- Billing records: 7 years (as required by law)
- Subscription history: 7 years
Client Accounts:
- Account information: While your account is active and for 90 days after closure
- Favorites lists: Until you delete them or close your account
- Magic link authentication logs: 30 days
- Profile picture: Until you delete it or close your account
All Accounts:
- Usage data and analytics: 26 months
- Customer support records: 3 years
- Security logs: 90 days
You can delete your account and all associated data instantly through your profile settings page -
it's completely self-service, no need to contact support. Deletion is immediate and irreversible.
Client accounts that remain inactive for 12 months may be automatically deleted after notification.
Security
We implement appropriate technical and organizational measures to protect your information:
- Encryption of data in transit using TLS
- Encryption of data at rest
- Secure storage of personal information
- Limited access on a need-to-know basis
- Regular security assessments
- Secure coding practices
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we
will notify affected users within 72 hours via email.
However, no method of transmission over the Internet or electronic storage is 100% secure. While we
strive to protect your information, we cannot guarantee absolute security.
Data Location
Our Services are operated in the United States. Your information may be processed and stored by our
service providers in other countries. By using our Services, you consent to the transfer of
information to countries outside of your state of residence.
Children's Privacy
Our Services are not directed to children under 13 years of age, and we do not knowingly collect
personal information from children under 13. If we learn that we have collected personal information
from a child under 13, we will take steps to delete such information. If you become aware that a
child has provided us with personal information, please contact us at [email protected].
Third-Party Links
Our Services may contain links to third-party websites. We are not responsible for the privacy
practices of these third parties. We encourage you to read the privacy policies of any third-party
sites you visit.
Payment Processing
We use Stripe for payment processing. When you make a purchase, your payment information is
transmitted directly to Stripe and is not stored on our servers. For information about Stripe's
privacy practices, please visit https://stripe.com/privacy.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will:
- Update the "Last Updated" date at the top of this policy
- Obtain your consent where required by applicable law
Your continued use of our Services after any changes indicates acceptance of the updated Privacy
Policy.
For privacy-related questions or to exercise your rights:
SessionGuide LLC 1121 Worthington Woods Blvd #6214
Columbus, OH 43085