GSN Tickets logoTickets
Sign InGet Started

Privacy Policy

Last updated: 5/27/2026

This Privacy Policy explains how BrownGlobal Holdings LLC ("we", "us"), operator of the GSN Tickets platform, collects, uses, and shares your information.

1. Information We Collect

  • Account info: name, email address, password hash, and (optionally) avatar.
  • Organizer info: team name, logo, cover image, location, and Stripe Connected Account ID.
  • Order info: buyer name, email, items purchased, amount, currency, and Stripe payment intent ID. We do not store card numbers — Stripe handles all card data.
  • Ticket scans: ticket ID, scan result, timestamp, and the device label provided by the scanning user.
  • Technical info: IP address, browser type, and basic logs needed to operate and secure the Service.

2. How We Use Information

  • To operate ticket sales, payment processing, and gate scanning.
  • To send transactional emails (e.g., ticket delivery, order confirmations, account changes).
  • To provide customer support and detect fraud.
  • To comply with legal obligations.

3. Sharing

We share your data with:

  • Stripe — for payment processing and payouts. Stripe's privacy policy applies to the data they receive.
  • Organizers — when you buy a ticket, your name, email, and tier purchased are visible to the Organizer running the event.
  • Service providers — hosting (Lovable Cloud / Supabase) and email delivery, under contracts that restrict use to operating the Service.
  • Legal — if required by law, court order, or to protect rights and safety.

We do not sell your personal information.

4. Cookies & Local Storage

We use cookies and browser local storage to keep you signed in, remember preferences, and store an offline queue for the gate-scanner PWA. We do not use third-party advertising trackers.

5. Data Retention

We retain account, order, and scan data for as long as your account is active and as needed to comply with legal, accounting, or reporting obligations. You can request deletion at any time (see §7).

6. Security

We use Row-Level Security in our database, encrypted transport (HTTPS), and best-practice password hashing. No system is perfectly secure — please use a unique password and notify us if you suspect unauthorized access.

7. Your Rights

Depending on your jurisdiction (e.g., GDPR for EU residents, CCPA for California residents), you may have rights to access, correct, delete, or export your personal data, and to object to certain processing. Contact us to exercise these rights.

8. Children

The Service is not directed to children under 13. We do not knowingly collect data from them.

9. International Transfers

Your data may be processed in the United States and other jurisdictions where our service providers operate. We rely on appropriate safeguards where required by law.

10. Changes

We will update this policy as the Service evolves and notify you of material changes.

11. Contact

For privacy questions, contact BrownGlobal Holdings LLC via the email listed on our website.

This document is a starter template and does not constitute legal advice. Have a qualified attorney review before relying on it for live commerce.