How we handle your data and protect every grewp

What you’ll learn

• What information we collect
• How we use and protect it
• How discoverability and “grewps near you” work
• How admin controls, anonymised data, and safety removals work

1. Who we are

“We”, “us” and “our” refer to the team behind Grewp (the “Service”). “You” means anyone using Grewp, whether as a group owner, admin, or member.

We act as the data controller for personal data processed in connection with the Service.

For privacy matters, contact us at privacy@grewp.com.

2. What this policy covers

This policy applies when you create or join grewps, RSVP to events, use magic-link sign-in, explore discoverable grewps near you, or interact with safety tools (removals, blocking, reporting).

It does not cover how third-party services (such as email providers or social platforms) handle your data after you leave Grewp—please review their policies separately.

3. Information we collect

Account and contact details, including your email address for magic links, your display name so members know who they are meeting, and passwords only if we ever introduce them.

Group and event data such as grewp descriptions, event details, roles, and RSVP status.

Location information to show nearby grewps while keeping precise locations private.

Limited usage data (sign-ins, screen views, device/browser type, IP address) used for security and aggregate analytics.

4. How we use your information

To provide the Service: send secure magic links, show your grewps and events, manage roles, record RSVPs, and maintain active sessions.

To support discoverable and private grewps by respecting each grewp’s visibility settings and using approximate locations to match people with nearby communities.

To keep people safe by unlocking admin tools for removals, blocking, ownership transfer, and responding to reports or harmful behaviour.

Legal bases (UK/EU): contract (core functionality), legitimate interests (safety, analytics, improvement), and consent (browser location, specific communications).

To create anonymised, aggregate insights that help public bodies understand community activity without exposing personal data or private grewp information.

5. Group visibility, discoverability and young people

Grewp audience types (friends, family, community, school/young people) influence applicable safety rules.

Discoverable grewps may appear in “Greups near you”; non-discoverable grewps stay invite-only.

Grewps connected with schools or under-18s are non-discoverable by default and may include extra safeguards.

6. Community standards and removal of groups

Grewp is not for illegal, harmful, hateful, exploitative, or politically divisive activity that targets people.

We may remove grewps or users, block features, archive events, or notify authorities if we believe safety, legal, or policy breaches have occurred.

7. How blocking and removal work

Owners and admins can remove members (who may rejoin later) or block them (preventing re-entry unless unblocked).

Blocked or archived grewps show neutral messaging such as “Oops this grewp may no longer be active” to protect everyone involved.

8. How we share your information

Within Grewp: display names and RSVP status are visible to the grewps and events you belong to.

With service providers: trusted vendors for hosting, email, and analytics act as processors under strict instructions.

Legal and safety sharing: only where necessary to comply with law, protect people, or address fraud/security.

Business changes: data may transfer during mergers or reorganisations with appropriate safeguards.

Funding & public bodies: we may share anonymised, aggregate insights (never personal data from private grewps) to help community funders understand local activity.

9. Data retention

We keep personal data only as long as needed to deliver the Service, meet legal obligations, and resolve disputes. Inactive accounts, archived grewps, and old events may be removed or anonymised after a reasonable period.

10. Your rights

Depending on your location, you may access, correct, delete, restrict, or port your data, object to certain processing, or complain to a regulator.

Contact privacy@grewp.com to exercise these rights—we may need to verify your identity before responding.

11. Children and young people

Grewp is intended for adults organising activities, including those for young people.

If you are under your local age of contract, only use Grewp with a parent, guardian, or responsible adult.

Youth-related grewps remain non-discoverable and can include additional safeguards. We delete improperly collected child data where required.

12. International data transfers

Your data may be processed outside your country. For UK/EEA data, we use appropriate safeguards (such as standard contractual clauses) when sending data to regions without adequacy decisions.

13. Changes to this policy

We’ll update this page, refresh the “last updated” date, and notify you (email or in-app) where appropriate whenever the policy changes. Continued use of Grewp after updates means you accept the new policy.

14. Contact us

Questions or concerns? Email us at privacy@grewp.com. We’d rather talk things through than leave you uncertain.