Privacy Policy

Last updated: draft — pending review.

1. What we collect

Account details (name, email), the events you create, save, RSVP to or buy tickets for, and limited technical data needed to run the service. Card details are handled by Stripe and never stored by Glentio.

2. How we use it

To operate your account, run discovery and ticketing, issue tickets and receipts, prevent fraud and abuse, meet legal obligations, and improve the product. We do not sell your personal data.

3. Legal bases (EEA/UK)

We process data to perform our contract with you, to pursue legitimate interests (security, product improvement), to comply with law, and on the basis of consent where required (e.g. optional analytics).

4. Sharing

With infrastructure providers that process data on our behalf (e.g. Supabase for hosting/database, Stripe for payments), and with event organisers for their own events (an organiser can see who is attending their event). We never expose your data to other attendees beyond what an event requires.

5. Cookies and analytics

We use the cookies needed to keep you signed in. Product analytics are privacy-first and optional: nothing is collected unless analytics is configured, and we capture only explicit events — no session recording and no payment data.

6. Retention and your rights

We keep personal data only as long as needed for the purposes above or as the law requires. Subject to local law you may request access, correction, deletion, portability, or object to certain processing.

7. International transfers

Where data is transferred across borders we rely on appropriate safeguards. Our primary data region is the EU.

8. Contact

Privacy requests: privacy@glentio.com.