Celebrated • Privacy Policy

Privacy Policy

This Privacy Policy explains how Celebrated collects, uses, stores, shares, and protects personal information when organizations, administrators, managers, employees, and other users access or use the Celebrated platform, website, forms, and related services.

Effective date: April 14, 2026
Last updated: April 14, 2026
Contact: celebratedapp@gmail.com

1. Overview

Celebrated is designed to help organizations make employee appreciation more consistent, thoughtful, and scalable. The platform supports recognition campaigns, shared cards, messages, shout-outs, employee onboarding, team-based administration, and related workflows.

Because Celebrated may be used in a workplace context, personal information may be provided directly by individuals, uploaded by an organization, or generated through participation in campaigns, cards, forms, or recognition experiences.

Important: In many cases, the organization using Celebrated decides why employee information is uploaded or used within the service. In those cases, the organization may act as the primary controller or responsible organization for certain workplace data, while Celebrated acts as a service provider or processor on its behalf.

2. Who This Policy Applies To

This Privacy Policy applies to information relating to:

  • website visitors;
  • prospective customers and business contacts;
  • organization owners, admins, HR users, managers, and team leads;
  • employees, members, contributors, or recipients included in recognition campaigns;
  • individuals invited to create an account or submit information through forms; and
  • any other user who accesses or interacts with Celebrated.

3. Information We Collect

3.1 Information You Provide Directly

  • name, display name, username, or profile details;
  • work email address and, where provided, personal email address;
  • password, login credentials, authentication factors, or sign-in verification details;
  • job title, department, team, manager relationship, or organizational role;
  • occasion-related data such as birthdays, start dates, anniversaries, or recognition preferences;
  • messages, card contributions, shout-outs, comments, reactions, approvals, and other content you submit;
  • responses to forms, surveys, support requests, or communications; and
  • billing, invoicing, or transaction-related business information where applicable.

3.2 Information Provided by Organizations

Organizations using Celebrated may upload or sync employee and team information in order to operate recognition campaigns and onboarding flows. This may include:

  • employee names, work emails, and internal identifiers;
  • team membership, role assignment, and manager assignment;
  • employment milestones such as start dates or work anniversaries;
  • campaign eligibility or participation settings; and
  • other information the organization chooses to provide through imports, forms, invitations, or integrations.

3.3 Information Collected Automatically

  • IP address and approximate location derived from IP;
  • browser type, device type, operating system, and language settings;
  • pages viewed, links clicked, referring URLs, and session activity;
  • dates, timestamps, and usage logs;
  • crash reports, diagnostics, and performance data; and
  • cookie identifiers or similar technical identifiers.

3.4 Sensitive or Optional Data

Some organizations may choose to collect optional information to support specific appreciation moments or internal workflows. Celebrated does not ask organizations to upload more personal information than is reasonably necessary for the intended purpose.

Organizations should avoid uploading highly sensitive personal information unless they have a clear legal basis and an operational need to do so. Celebrated may limit or prohibit certain categories of sensitive data through product, contract, or policy controls.

4. How We Collect Information

We collect information in several ways, including when:

  • you visit our website or interact with product pages;
  • an organization creates an account with Celebrated;
  • you are invited to join an organization or team;
  • you submit information through onboarding flows, spreadsheets, or forms;
  • you create or respond to cards, campaigns, or shout-outs;
  • you contact us for support, sales, or product feedback;
  • your organization enables integrations or imports data from connected systems; or
  • we receive technical usage data through cookies, logs, or analytics tools.

5. How We Use Information

We use personal information to operate, secure, improve, and support Celebrated, including to:

  • create and manage user accounts, teams, permissions, and organizations;
  • deliver recognition campaigns, shared cards, personal messages, and shout-outs;
  • send invitations, reminders, notifications, and administrative communications;
  • collect and manage employee data needed for campaign eligibility and scheduling;
  • support moderation, review, and quality controls for user-generated content;
  • analyze product usage, improve features, and troubleshoot issues;
  • maintain system security, detect abuse, and prevent unauthorized access;
  • provide customer support, onboarding, and account management;
  • comply with legal obligations, enforce agreements, and protect rights; and
  • communicate with customers about product updates, service notices, or business matters.
Recognition Operations Scheduling birthday, anniversary, welcome, and custom campaigns; routing card invites; and enabling team contributions.
Administration and Oversight Managing roles, approvals, moderation, imports, forms, and organization-level settings.

7. How We Share Information

We may share information in the following circumstances:

  • Within the organization using Celebrated: content, user details, and campaign data may be visible to admins, managers, moderators, team members, or recipients depending on the feature and permission settings.
  • Service providers: with vendors that host infrastructure, support analytics, deliver communications, process payments, provide authentication, store files, or assist with security and support.
  • Integrations: when an organization connects third-party systems or requests data flow between Celebrated and another tool.
  • Corporate transactions: in connection with a merger, acquisition, financing, asset sale, or similar business event.
  • Legal and safety reasons: when reasonably necessary to comply with law, respond to lawful requests, enforce our agreements, or protect the rights, property, safety, or security of Celebrated, our users, or others.
  • With consent or at your direction: when you or your organization explicitly instruct us to disclose or publish certain information.

We do not sell personal information in exchange for money in the ordinary course of providing Celebrated.

8. Organizations and Account Ownership

When Celebrated is provided to an organization, that organization may control the workspace, the people invited into it, the campaigns configured in it, and the data submitted through workplace forms or imports.

  • the organization may determine which employees are added to the platform;
  • the organization may assign managers, admins, moderators, and other roles;
  • the organization may export or review certain data generated within its workspace; and
  • the organization may request deletion, correction, or transfer of workplace data in accordance with its agreement with Celebrated and applicable law.
If you are an employee or team member using Celebrated through your employer or another organization, you may wish to contact your organization first for questions about workplace data, campaign setup, or account access.

9. Messages, Cards, and User Content

Celebrated enables users to create and share appreciation content. This may include card messages, public shout-outs, internal reactions, manager notes, and moderation actions.

  • content you submit may be visible to intended recipients, relevant team members, and authorized admins or moderators;
  • organization admins or designated reviewers may moderate, approve, edit, hide, or remove content where product settings or policy allow;
  • content may be retained as part of the recognition record, audit trail, or workspace history; and
  • you should not submit personal information about others unless you have a valid reason and are authorized to do so.

10. Cookies and Similar Technologies

Celebrated may use cookies, pixels, local storage, SDKs, and similar technologies to keep users signed in, remember preferences, understand product usage, secure sessions, and improve performance.

We may use these technologies to:

  • authenticate users and maintain sessions;
  • remember settings and preferences;
  • measure traffic, engagement, and feature usage;
  • debug errors and monitor service reliability; and
  • support security and fraud prevention.

You can usually control cookies through your browser settings. Some technologies are necessary for the service to function properly and cannot be disabled without affecting core features.

11. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Policy, including to provide the service, maintain records, resolve disputes, comply with legal obligations, and enforce agreements.

  • account and workspace information may be retained while an organization remains active;
  • recognition history and card content may be retained to preserve records and user experience, subject to customer settings and applicable law;
  • logs, diagnostics, and security records may be retained for shorter operational periods or longer where required for incident response, legal compliance, or fraud prevention; and
  • when information is no longer required, we may delete, anonymize, or aggregate it.

12. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, loss, misuse, alteration, or disclosure.

Examples of safeguards Access controls, role-based permissions, authentication controls, encryption in transit, logging, monitoring, and vendor security practices.
Reality of online systems No system is perfectly secure. We cannot guarantee absolute security, but we work to reduce risk and respond appropriately to incidents.

Users and organizations also play an important role in protecting information by using strong credentials, managing permissions carefully, and limiting unnecessary data collection.

13. International Transfers

Celebrated and its service providers may process or store information in countries other than the country where the data was originally collected. As a result, personal information may be accessible to courts, law enforcement, or national security authorities in those jurisdictions, subject to applicable law.

Where required, we take reasonable steps to use appropriate safeguards for cross-border transfers.

14. Your Privacy Rights

Depending on your location and the context in which Celebrated is used, you may have rights such as the right to:

  • request access to personal information;
  • request correction of inaccurate or incomplete information;
  • withdraw consent, where processing is based on consent and withdrawal is legally available;
  • request deletion of certain information;
  • object to or restrict certain processing;
  • request portability of certain data where applicable; and
  • complain to a privacy regulator or supervisory authority.

Some requests may need to be directed to the organization that controls the workspace. We may also need to verify your identity before responding.

15. Children's Privacy

Celebrated is intended for workplace and organizational use and is not directed to children. We do not knowingly collect personal information from children in connection with the ordinary operation of the service.

16. Third-Party Services and Links

Celebrated may rely on or link to third-party services for hosting, authentication, analytics, communications, billing, embedded content, or integrations. Those third parties may process information in accordance with their own terms and privacy notices.

We are not responsible for the privacy practices of third-party sites or services except as required by law or contract.

17. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes to the product, legal requirements, or business practices. When we do, we will update the Last updated date above and take additional steps where required by law.

18. Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our handling of personal information, contact us using the details below.

  • Company: Celebrated
  • Email: celebratedapp@gmail.com
  • Mailing Address: N/A

If you use Celebrated through an employer or other organization, you may also contact that organization directly regarding workplace data under its control.

Build trust into every moment

We are committed to building trust into every moment. Our privacy practices are designed to ensure organizations, managers, and employees know Celebrated handles recognition data with care, intention, and respect.