Acara

Privacy Policy

Last updated: February 2026

1. Who We Are

Acara (“we”, “us”, “our”) is a premium concierge service operating in Ireland. We are the data controller for the personal data described in this policy.

2. Data We Collect

Account & Membership Data

  • Name, email address, and phone number (provided at signup)
  • Stripe customer and subscription identifiers (for billing)
  • Invite code usage

Booking & Request Data

  • Reservation details, preferences, and special requests
  • Venue preferences and booking history

Communication Data

  • WhatsApp messages exchanged with our concierge service

Technical Data

  • Error reports via Sentry (stack traces, browser/device info)
  • Session replays via Sentry (only with your explicit consent; all text is masked and all media is blocked)
  • Anonymous usage analytics via Vercel Analytics

3. How We Use Your Data

  • To provide and manage your concierge membership
  • To process bookings, reservations, and requests on your behalf
  • To communicate with you via WhatsApp and email
  • To process payments and manage subscriptions via Stripe
  • To monitor and fix errors in our application
  • To improve our services based on anonymised analytics

4. Cookies & Tracking

We use essential cookies required for authentication (Clerk) and payment processing (Stripe). These cannot be disabled as they are necessary for the service to function.

We also use Sentry for error monitoring. Session replay (which records anonymised browsing sessions to help us debug issues) is only enabled if you provide explicit consent via our cookie banner. You can change your preference at any time by clearing your browser storage.

Vercel Analytics collects anonymous, aggregated page view data with no cookies and no personal data.

5. Third-Party Processors

We share data with the following processors, all of whom are GDPR compliant:

  • Stripe — payment processing (PCI DSS compliant)
  • Clerk — authentication and identity management
  • Convex — application database and backend
  • Sentry — error monitoring and session replay
  • Vercel — hosting and anonymous analytics
  • Meta (WhatsApp) — member communication
  • Resend — transactional emails

6. Data Retention

We retain your personal data for as long as your membership is active. If you cancel, we retain your data for up to 12 months for accounting and legal purposes, after which it is permanently deleted. You may request earlier deletion at any time.

7. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at privacy@acaranetwork.ie.

8. Security

We implement appropriate technical and organisational measures to protect your data, including encryption at rest and in transit, role-based access controls, and regular security audits.

9. Contact

For any privacy-related questions or concerns, contact us at privacy@acaranetwork.ie.