Guest privacy protects private details
Guest sites resolve through private links and privacy checks before private details are shown. Guests see only the published information they are allowed to view.
Privacy
A beautiful wedding site still needs a serious privacy boundary.
LinenInvite is designed around trusted guest experiences and careful tenant separation. This page summarizes the product posture; formal legal policies can be added before public launch.
Tenant data stays separated
The platform uses row-level security as the tenant data boundary. Runtime code accesses data through repositories and tenant context rather than privileged database clients.
Published state is deliberate
Guest-facing pages read the published guest site. Draft edits do not become public simply because someone has a link.
Analytics avoids sensitive payloads
Acquisition instrumentation records event names and safe context only. It does not collect passwords, raw guest details, or invitation tokens.