Privacy Policy

All production data is stored in London, UK (AWS eu-west-2). We do not replicate data to other regions.

Data is encrypted at rest (AES-256) and in transit (TLS 1.3). We maintain detailed audit logs of all access to organiser data.

• Identity: Name and email address.
• Attendance Ledger: A record of which events you attended, strictly for the purpose of proving continuity.
• Security Logs: IP address and User Agent are logged solely for security auditing and abuse prevention.
• Voluntary Data: Social links or avatars you explicitly add to your profile.

We define ourselves by what we do not do:

• We do not sell data to third parties.
• We do not track your browsing history across other sites.
• We do not use your attendance data to build advertising profiles.
• We do not expose your attendance history to an organiser unless you attend their specific event.

This feature is opt-in only. If you choose to make yourself visible at an event, your name and avatar will be visible to other attendees of that specific event for 24 hours. You can revoke this visibility at any time.

For Guests: You can delete your Global Profile at any time by contacting support. This anonymises your attendance history across all organisers.

For Organisers: You own your ledger. You can export your data (CSV) at any time. If you delete your account, all event and attendance data is permanently purged.