Brighton What’s On

Privacy Policy

Last updated: 08 May 2026

Overview

This policy explains how Brighton What’s On collects, uses, and protects your personal data. We only collect what we need to run the service and improve the experience. Brighton What’s On is responsible for deciding how the platform uses personal data collected through this website.

What we collect

  • Account details (name, email, login credentials).
  • Public organiser profile details (for Business/Ultimate accounts that opt to publish them).
  • Event submissions (event details, images, and admin notes).
  • Tickets (ticket codes, orders, and redemption scans when tickets are used).
  • Newsletter signup details (email address, signup source, and unsubscribe status).
  • Basket data stored in your browser (ticket selections before checkout).
  • Usage data (page views, saves, and ticket clicks).
  • Payment and subscription details (handled by Stripe; we do not store full card numbers).
  • For organisers using paid ticketing: Stripe Connect account status (for example onboarding, payouts enabled, and requirements due).

How we use data

  • Provide and improve the event listing service.
  • Display publisher attribution and organiser profile pages.
  • Process event submissions and approvals.
  • Provide analytics for paid accounts.
  • Manage subscriptions, upgrades, and cancellations.
  • Send email updates when you actively choose to subscribe.
  • Support ticket refunds, payout routing, and fraud prevention for paid ticketing.
  • Send service-related communications (e.g., confirmations, updates).

Lawful basis

  • Contract: to provide accounts, event submissions, ticketing, subscriptions, boosts, organiser tools, and customer support.
  • Consent: for optional email updates and optional analytics or advertising scripts that are controlled by Cookie settings.
  • Legitimate interests: to keep the platform secure, prevent fraud and abuse, understand service performance, handle disputes, and improve the site.
  • Legal obligations: to keep records needed for payment, tax, accounting, dispute, and regulatory requirements.

Data sharing

We use trusted providers to operate the service, including Supabase (hosting and database). For bot and abuse prevention we may use Cloudflare Turnstile. When payments are enabled, we use Stripe (checkout, Connect payouts, subscription billing, webhook updates). We use Resend for transactional email and newsletter delivery. We do not sell personal data.

Public organiser profile fields and verification badge status are visible to site visitors. Private account information (including login credentials and payment methods) is not public.

International transfers

Some providers may process data outside the UK. Where this happens, we rely on the provider’s appropriate safeguards, such as recognised transfer mechanisms, contractual protections, and security controls.

How long we keep data

  • Account data is kept while your account is active and then deleted or anonymised where possible.
  • Event, ticket, order, support, payout, and refund records may be kept for longer where needed for operation, fraud prevention, legal claims, accounting, or dispute handling.
  • Newsletter data is kept until you unsubscribe. We may keep a minimal suppression record so we do not accidentally re-subscribe you.
  • Analytics data is used in aggregate where possible and is not used to sell your data.

Your rights

You can ask to access, correct, delete, restrict, or receive a copy of your personal data. You can object to some uses of your data and withdraw consent where processing is based on consent. You also have the right to complain to the UK Information Commissioner’s Office if you are unhappy with how your data is handled.

Cookies

We use essential cookies to keep you signed in and maintain security. With your permission, we also use Google Analytics and, when enabled, Google AdSense to understand usage and ad performance. You can opt in or out at any time via Cookie settings in the footer. For full details, see the Cookie Policy.

Read the Cookie Policy

Newsletter

If you actively opt in to Brighton What’s On emails, either through the newsletter form or the account signup form, we store your email address and signup source, then send local event updates, launch updates, or a weekly edit of upcoming events. Newsletter consent is optional and separate from accepting our Terms. Every newsletter includes an unsubscribe link, and unsubscribing stops future newsletter emails.

Ticketing data

If you buy or claim tickets (including free tickets), we store ticket codes and related metadata (such as order status and redemption time). If a ticket is redeemed at the door, we may store an audit record of the scan/redemption to prevent fraud and provide entry support to organisers.

Contact

For privacy questions, use the contact form or email feedback@brightonwhatson.app.

Privacy Policy - Brighton What’s On