Privacy Policy

Summary: TixPulse collects the minimum information needed to operate our ticket price alert service. We do not sell your personal information. We share anonymized, aggregated data with business partners. You can delete your account and all associated data at any time.

1. Who We Are

TixPulse ("TixPulse," "we," "us," or "our") is a ticket price monitoring and alert service accessible at tixpulse.io and related mobile and web applications. TixPulse is operated by its founders and is not affiliated with any ticket platform, venue, artist, or sports organization mentioned on the platform.

For privacy questions or requests, contact us at: hello@tixpulse.io

2. Information We Collect

2.1 Information You Provide Directly

When you create an account or use our services, we collect:

• Account information: email address, password (stored as a one-way hash — we never store your plain-text password), and optionally your name
• Contact preferences: phone number (if you opt in to SMS alerts), push notification subscription tokens
• Alert preferences: event names, target prices, ticket quantities, section preferences, and notification settings you configure
• Billing information: subscription plan selection; payment card details are processed and stored exclusively by Stripe, Inc. and are never transmitted to or stored on TixPulse servers
• Communications: messages you send to our support team or through our in-app chat assistant

2.2 Information Collected Automatically

When you use TixPulse, we automatically collect:

• Usage data: pages visited, features used, alerts created, search queries entered, and time spent on the platform
• Device and browser data: IP address, browser type and version, operating system, device type, screen resolution, and language settings
• Log data: server logs including timestamps, request paths, response codes, and referrer URLs
• Cookies and similar technologies: session cookies for authentication, preference cookies for language and display settings, and analytics cookies (see Section 7)
• Click-through data: which ticket platform links you click after receiving an alert or viewing a price comparison

2.3 Information from Third Parties

If you sign in using Google OAuth, we receive your Google account email address and profile name. We do not receive your Google password or any financial information from Google. We may receive updated payment status information from Stripe when your subscription renews or a payment fails.

3. How We Use Your Information

We use the information we collect to:

• Create and maintain your account and authenticate your identity
• Monitor ticket prices on your behalf and deliver price drop alerts via email, SMS, and push notification
• Generate AI-powered deal scores and personalized event recommendations
• Process subscription payments and manage your billing relationship
• Send transactional emails including welcome messages, alert notifications, billing receipts, and subscription status updates
• Provide customer support and respond to your inquiries
• Detect, investigate, and prevent fraudulent transactions, abuse, and security incidents
• Analyze usage patterns to improve our service, fix bugs, and develop new features
• Comply with legal obligations and enforce our Terms of Service
• Generate anonymized, aggregated market intelligence reports (see Section 5)

We do not use your personal information for advertising targeting by third-party advertisers. We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, we process your personal data under the following legal bases:

• Contract performance: processing necessary to provide the alert service you signed up for
• Legitimate interests: fraud prevention, security, service improvement, and aggregate analytics — balanced against your privacy rights
• Consent: marketing emails and SMS (you may withdraw consent at any time)
• Legal obligation: compliance with applicable laws and regulations

5. Anonymized and Aggregated Data

TixPulse may create anonymized, aggregated datasets derived from user activity — for example, the number of users who set alerts for a specific artist in a specific city, or aggregate price trend data across platforms. This data contains no personally identifiable information, cannot reasonably be used to identify any individual, and meets a minimum cohort threshold of 100 users before inclusion in any export or analysis.

We may share or license this aggregated market intelligence with third parties including talent agencies, venue operators, event promoters, and research organizations. This data sharing is distinct from personal data sharing and is governed solely by the anonymization standards described above.

6. How We Share Your Information

We share personal information only in the following limited circumstances:

• Service providers: companies that help us operate TixPulse, including Supabase (database hosting), Netlify (web hosting), Stripe (payment processing), SendGrid (email delivery), Twilio (SMS delivery), Anthropic (AI processing), Apify (web scraping infrastructure), and PostHog (analytics). Each provider is contractually bound to use your data only as directed by TixPulse.
• Affiliate platforms: when you click a buy link, you are directed to a third-party ticket platform (such as StubHub or SeatGeek) that may set their own cookies and collect data under their own privacy policies. TixPulse may receive a commission on resulting purchases. We do not share your personal information with affiliate platforms beyond what is contained in the referral link URL parameters.
• Legal requirements: we may disclose information if required by law, court order, subpoena, or government request, or to protect the rights, property, or safety of TixPulse, our users, or the public.
• Business transfers: if TixPulse is acquired, merged, or undergoes a change of ownership, your information may be transferred to the successor entity. We will provide notice before your data is subject to a different privacy policy.
• With your consent: in any other case, only with your explicit prior consent.

7. Cookies and Tracking Technologies

TixPulse uses the following categories of cookies:

• Strictly necessary: session authentication tokens required to keep you logged in. These cannot be disabled without breaking core functionality.
• Functional: preference cookies for language, display mode, and notification settings. Disabling these may affect your experience.
• Analytics: PostHog analytics cookies that help us understand how users navigate TixPulse. These are anonymized and do not track you across other websites. You may opt out via your account settings.
• Google Translate: if you use the translation widget, Google may set cookies per its own privacy policy.

We do not use advertising cookies, retargeting cookies, or any cookies that track your activity across unrelated websites.

8. Data Retention

We retain your personal data for as long as your account is active and for a reasonable period thereafter to allow you to reactivate your account, comply with legal obligations, resolve disputes, and enforce agreements. Specifically:

• Account data: retained until you request deletion, plus 90 days thereafter for backup purposes
• Alert history: retained for 24 months to support the AI deal score and recommendation engine
• Billing records: retained for 7 years to comply with financial record-keeping requirements
• Log data: retained for 90 days, then automatically deleted
• Anonymized aggregate data: retained indefinitely as it contains no personal information

9. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

• Access: request a copy of the personal data we hold about you
• Correction: request correction of inaccurate or incomplete data
• Deletion: request deletion of your account and associated personal data (subject to retention requirements described above)
• Portability: receive your data in a structured, machine-readable format
• Objection: object to processing based on legitimate interests
• Restriction: request that we restrict processing of your data
• Withdrawal of consent: withdraw consent for marketing communications at any time by clicking the unsubscribe link in any email or contacting us at hello@tixpulse.io

To exercise any of these rights, email us at hello@tixpulse.io. We will respond within 30 days. We may request verification of your identity before fulfilling any request.

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to opt out of sale (we do not sell personal information), and the right to non-discrimination for exercising privacy rights.

10. Data Security

We implement industry-standard security measures to protect your personal information, including:

• All data transmitted between your browser and TixPulse servers is encrypted using TLS 1.2 or higher
• Passwords are hashed using bcrypt with an appropriate work factor — we cannot recover your password
• Database access is restricted to authorized service accounts with minimum necessary permissions
• Payment card data is never transmitted to or stored on TixPulse servers — all payment processing is handled by Stripe, which is PCI DSS Level 1 certified
• API keys and secrets are stored as environment variables and never committed to source code repositories
• We conduct regular security reviews and promptly investigate any suspected breaches

No method of transmission or storage is 100% secure. While we work hard to protect your information, we cannot guarantee absolute security. In the event of a data breach that affects your rights, we will notify you and applicable regulators as required by law.

11. International Data Transfers

TixPulse is based in the United States. If you access our services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. These countries may have different data protection laws than your country of residence.

For users in the European Economic Area, United Kingdom, or Switzerland, we rely on Standard Contractual Clauses approved by the European Commission and equivalent transfer mechanisms to lawfully transfer personal data internationally.

12. Children's Privacy

TixPulse is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13 without parental consent, we will delete that information promptly. If you believe we may have information from or about a child under 13, contact us at hello@tixpulse.io.

13. Third-Party Links and Services

TixPulse contains links to third-party ticket platforms, websites, and services. When you leave our platform, this Privacy Policy no longer applies. We are not responsible for the privacy practices of third-party platforms. We encourage you to review the privacy policies of any third-party platforms before making a purchase. Each ticket platform (StubHub, SeatGeek, Ticketmaster, Vivid Seats, AXS, Gametime, TickPick, Eventbrite, and Songkick) has its own privacy policy governing data collected during transactions on their platforms.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by sending an email to your registered address and by displaying a prominent notice on our platform for at least 30 days before the changes take effect. Your continued use of TixPulse after the effective date of the updated policy constitutes your acceptance of the changes. If you do not agree to the updated policy, you must stop using TixPulse and may request deletion of your account.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: