Privacy Policy | GigGates

1. Introduction

GigGates ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use our event promotion platform.

We are the data controller for the purposes of UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

Personal Information

Name and contact details (email address)
Account credentials (encrypted passwords)
Organisation and venue information
Event details and promotional content
Payment information (processed securely via Stripe)

Technical Information

IP address and device information
Browser type and version
Usage data and analytics
Cookies and similar tracking technologies

3. How We Use Your Information

We process your personal data on the following legal bases:

Contract Performance: To provide our services, manage your account, and process payments
Legitimate Interests: To improve our services, prevent fraud, and ensure platform security
Legal Compliance: To comply with applicable laws and regulations
Consent: For marketing communications (where you have opted in)

4. Data Sharing and Disclosure

We may share your information with:

Service Providers: Stripe for payment processing, hosting providers for data storage
Legal Requirements: When required by law or to protect our legal rights
Business Transfers: In connection with mergers, acquisitions, or asset sales

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5. International Data Transfers

Your data may be transferred to and processed in countries outside the UK. We ensure appropriate safeguards are in place, including adequacy decisions or standard contractual clauses approved by the UK authorities.

6. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, comply with legal obligations, or resolve disputes. Account data is typically retained for 7 years after account closure for legal and tax purposes.

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

Access: Request copies of your personal data
Rectification: Request correction of inaccurate data
Erasure: Request deletion of your data (right to be forgotten)
Restriction: Request limitation of processing
Portability: Request transfer of your data
Objection: Object to processing based on legitimate interests
Withdraw Consent: Withdraw consent for marketing communications

To exercise these rights, please contact us using the details below.

8. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure hosting, and regular security assessments.

9. Cookies and Tracking

We use cookies and similar technologies to enhance your experience, analyse usage, and provide personalised content. You can manage cookie preferences through your browser settings.

10. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by email or through our platform. Continued use of our services after such changes constitutes acceptance of the updated policy.

12. Contact Information

For questions about this Privacy Policy or to exercise your rights, please contact us at:

Email: contact@giggates.com
Data Protection Officer: contact@giggates.com

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your personal data appropriately.