suPlayPurchasing GameBeer GameMinigamesPollSSA
suPlayPoll

Privacy Policy

Last updated: June 2026

1. Data Controller

The data controller for suPlay Poll is suPlay B.V., Ruwerstraat 9, 7545 SM Enschede, The Netherlands. You can reach us at info@suplay.nl.

2. What Data We Collect

When you use suPlay Poll, we may collect the following data:

  • Votes and responses: Your answers to polls. In anonymous mode, votes are not linked to your identity. In authenticated mode, your name and/or email address may be linked to your participation, but individual votes remain anonymous by default.
  • Optional participant info: If provided, your name and/or email address when joining an event.
  • Session tokens: Technical identifiers to maintain your session.
  • Presenter accounts: Name, email address, and hashed password for event presenters.
  • Single sign-on (SSO): If your organization uses SSO, when you sign in your identity provider shares your name and email address with us to create or identify your account. We do not receive your SSO password.
  • Sign in with Google:If you choose “Continue with Google”, Google shares your name and verified email address with us to create or identify your account. We never receive your Google password. You can later add a suPlay Poll password to the same account from your settings.

3. How Data Is Stored

All data is stored in a PostgreSQL database hosted by TransIP / team.blue on servers located in the Netherlands. Data is transmitted over encrypted connections (HTTPS/TLS).

4. Cookies

We use only essential cookies:

  • Session token (essential, httpOnly) — maintains your participant session.
  • Authentication JWT (essential, httpOnly) — keeps presenters logged in.

We do not use any tracking, analytics, or advertising cookies.

5. Who Has Access

  • Event presenters can view aggregate poll results for their events. In authenticated mode, they can see which participants joined but cannot link individual votes to participants in anonymous mode.
  • System administrators at suPlay B.V. have access to the database for operational purposes. Any administrative impersonation of a presenter account is logged and retained for 90 days.
  • Organization owners and admins — if you belong to a team or organization account, the owners and administrators of that organization can see your name and account email and can access, manage, and reassign the events, question banks, and templates you create within that organization (for oversight, collaboration, and offboarding). They cannot see your personal workspace or other organizations you belong to.
  • Subprocessors named on our Subprocessors page process data on our behalf under signed Data Processing Agreements.

6. Lawful basis (GDPR Art. 6)

PurposeDataLawful basis
Operate a presenter accountName, email, hashed passwordContract (Art. 6(1)(b))
Run a poll / collect votesVotes, optional participant name/email, session tokenLegitimate interests (Art. 6(1)(f)) or consent when identifying data is voluntarily provided
Send transactional email (verification, reset, invitation)Email, nameContract + legitimate interests
Billing and subscription managementPayPal payer identifiers, plan, billing eventsContract + legal obligation (tax retention)
Security, fraud prevention, rate limitingIP address — processed transiently as a Redis counter key (typically for seconds up to one hour), not written to the application database or server logsLegitimate interests
Error monitoring and service stabilityStack traces with personally-identifying fields scrubbedLegitimate interests

7. Retention

Data categoryRetentionReason
Presenter accountUntil deletion request, plus 30 days graceAllow account recovery
Events, polls, votesRetained until the presenter deletes the event. CLOSED events that have been idle for 90 days are automatically archived. Archived events follow tier-based retention: 1 year on the Free plan, 5 years on Academic, Professional, and Enterprise. The presenter is emailed before deletion (1 month ahead on Free, 6 months ahead on paid plans); opening or editing the event resets the clock.Typical reuse window; data minimisation thereafter
Participant responses & namesSame retention as the parent event (cascaded on deletion).Minimisation
Unverified user accountsPurged 30 days after signup if email is never verifiedNo legitimate purpose once unverified
Pending event invitationsPurged 90 days after sending if never redeemedMinimisation; recipient can be re-invited
GDPR erasure requestsAuto-fulfilled 7 days after submission (per Art. 12(3))Statutory deadline with a short verification window
Email-verification and password-reset tokensDeleted on use or after 24-hour expiryNo purpose once consumed
Billing events, invoices7 yearsDutch tax law
Admin impersonation log90 daysForensics + access-review
Sentry error eventsSentry default (30–90 days)Operated by subprocessor; see their retention schedule
Database backups30 rolling daily, 12 rolling monthly; then overwrittenRecovery window + long-tail integrity

8. International transfers

suPlay B.V. is established in the Netherlands and operates the application from servers in the Netherlands. All processing subprocessors used today are located in the EU: transactional email (Resend, EU), application error monitoring (Sentry, EU region —ingest.de.sentry.io), encrypted backup storage (Scaleway, NL/FR). Subscription billing is handled by PayPal (Europe) S.à r.l. et Cie, S.C.A. in Luxembourg; onward transfers to the US parent for fraud-prevention purposes are governed by Standard Contractual Clauses (SCCs) 2021/914. See our Subprocessors page for the complete list and legal basis of each transfer.

9. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to:

  • Access your personal data (Art. 15). Presenters can self-export via /settings→ “Download my data”.
  • Rectify inaccurate data (Art. 16). Presenters can edit name/email in /settings.
  • Deleteyour data (Art. 17, “right to be forgotten”). Presenters can self-delete their account via /settings. Participants can ask the presenter or email privacy@suplay.nl.
  • Port your data to another service (Art. 20). Machine-readable JSON via the account-export endpoint (CSV export of votes and participants is available per-event from the presenter dashboard).
  • Restrict or object to processing (Art. 18, 21). Email privacy@suplay.nl.
  • Lodge a complaint with a supervisory authority. In the Netherlands this is the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).

We respond to data-subject requests within 30 days. If a request is complex we may extend by a further 60 days with notice.

10. Security measures

See our Security Summary for the public-facing list of technical and organisational measures, including TLS, password and token hashing, rate limiting, runtime privilege isolation, mandatory access controls, backup encryption, and incident response. Detailed measures (versions, internal topology, audit-log retention) are available on request to customers with a signed DPA.

11. Google user data (Slides add-on)

suPlay Poll offers an add-on for Google Slides. When you install and sign in to it, it accesses a limited set of Google data using the following scopes, each only for the feature it powers:

  • See your primary Google Account email address (userinfo.email) — to identify your Google account and link the add-on session.
  • View and manage the presentation the add-on is installed in (presentations.currentonly) — to read the current slide and insert a poll slide into that presentation only. The add-on cannot see or modify your other presentations.
  • Connect to an external service (script.external_request) — so the add-on can talk to poll.suplay.nl to look up the poll bound to a slide and validate your sign-in.
  • Display the add-on sidebar (script.container.ui) — to show the add-on interface inside Google Slides.

Only slide identifiers and the poll you bind to them are sent to suPlay Poll — never the content of your slides.

Limited Use.suPlay Poll’s use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We use Google user data only to provide and improve the add-on’s user-facing features; we do not sell it, do not transfer it to third parties except as needed to provide the service or where required by law, do not use it for advertising, and do not allow humans to read it except with your consent, for security or legal reasons, or where the data has been aggregated and anonymised.

12. Contact

suPlay B.V.
Ruwerstraat 9, 7545 SM Enschede, The Netherlands
General: info@suplay.nl
Privacy / data-subject requests: privacy@suplay.nl
Managing Director: Holger Schiele.
Data Protection contact: Frederik Vos, Co-founder and Head of Development.