Privacy Policy
Last updated: June 2026
What we collect
When you create an account we store your email address, display name, and a hashed password. If you bookmark events, submit listings, or join an organizer team, we store those associations. Subscribing to the newsletter stores your email address only.
How we use it
Your data powers the product: signing you in, showing your bookmarks and submissions, and sending transactional email (verification, password resets, moderation decisions, organizer invitations). We don't sell your data or use it for advertising.
Cookies
We use first-party cookies strictly for authentication: a short-lived session token, a refresh token, and a CSRF protection token. There are no tracking or advertising cookies.
Third-party services
Transactional email is delivered through Resend. Public forms may be protected by Cloudflare Turnstile, which processes connection data to distinguish humans from bots. Both process only what's needed to provide their function.
Security and retention
Passwords are hashed with bcrypt, and session, reset, and invitation tokens are stored only as SHA-256 hashes. Security-relevant actions are recorded in an internal audit log. Account data is kept while your account exists.
Your choices
You can update your profile, revoke active sessions, and permanently delete your account — including bookmarks and memberships — from your account page at any time. For anything else, contact us and we'll help.