Privacy Policy

Last Updated: 17 March 2026 · Version 1.0

Revvel (“we”, “us”, “our”) operates the revvel.app website and related services (the “Platform”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Platform, purchase tickets, or use our services as an event attendee or event organizer (“Vendor”).

By using the Platform you agree to the practices described in this policy. If you do not agree, please do not use the Platform.

1. Information We Collect

1.1 Information You Provide

  • Account information — name, email address, password, phone number when you create an account.
  • Attendee details — name and email for each ticket holder you add during checkout.
  • Payment information — credit/debit card details are collected and processed directly by Stripe, Inc. We never store your full card number on our servers.
  • Vendor information — business name, business registration, bank account details (encrypted at rest), contact details, and event content you upload.
  • Communications — messages you send us through support channels, WhatsApp, or email.

1.2 Information Collected Automatically

  • Device & browser data — IP address, browser type, operating system, device identifiers.
  • Usage data — pages visited, links clicked, time spent on pages, referring URL.
  • Cookies & similar technologies — see our Cookie Policy for details.

2. How We Use Your Information

  • Process ticket purchases and issue digital tickets.
  • Send transactional communications — order confirmations, tickets, refund notices, and check-in information.
  • Deliver tickets via your preferred channel (email or WhatsApp, where opted in).
  • Enable event organizers to manage check-in and verify ticket authenticity.
  • Calculate and process vendor settlements and payouts.
  • Prevent fraud, enforce our Terms of Service, and protect Platform security.
  • Improve the Platform through aggregated, anonymized analytics.
  • Administer our loyalty and rewards program, if you participate.

3. How We Share Your Information

  • Event Organizers (Vendors) — when you purchase a ticket, the organizer receives the attendee name and email so they can manage their event and check-in.
  • Stripe — payment card data is sent directly to Stripe for processing. See Stripe’s Privacy Policy.
  • Resend — we use Resend to deliver transactional emails (order confirmations, tickets). Email addresses are shared for delivery purposes only.
  • WhatsApp / Meta — if you opt in to WhatsApp ticket delivery, your phone number and ticket information are shared with Meta’s WhatsApp Business API for message delivery.
  • Analytics providers — Google Analytics and Microsoft Clarity receive anonymized usage data only when you accept analytics cookies.
  • Legal requirements — we may disclose information if required by law, subpoena, or government request.

We do not sell your personal information to third parties.

4. Data Security

We take reasonable measures to protect your data, including:

  • HTTPS encryption for all data in transit.
  • Sensitive financial information (e.g. vendor bank accounts) is encrypted at rest using AES-256.
  • Payment card data is handled entirely by Stripe (PCI DSS Level 1 compliant) and never touches our servers.
  • Ticket QR codes are signed with HMAC to prevent forgery.
  • Access to production systems is restricted and logged.

No system is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Data Retention

  • Account data is retained as long as your account is active. You may request deletion at any time.
  • Order and ticket data is retained for at least 7 years for financial record-keeping and dispute resolution.
  • Analytics data is aggregated and anonymized within 26 months (Google Analytics default).
  • Cart and reservation data expires automatically (reservations time out after 10 minutes).

6. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to update inaccurate or incomplete information.
  • Deletion — request that we delete your personal data, subject to legal retention requirements.
  • Withdraw consent — for optional processing (e.g. analytics cookies), you can withdraw consent at any time via the “Manage Cookies” link in our footer.
  • Data portability — request your data in a structured, machine-readable format.

To exercise any of these rights, contact us at privacy@revvel.app.

7. Cookies

We use essential cookies for authentication and security, and optional analytics cookies (Google Analytics, Microsoft Clarity) that are only activated with your consent.

For a full breakdown, see our Cookie Policy.

8. Children’s Privacy

The Platform is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such data, please contact us and we will promptly delete it.

9. International Data Transfers

Our servers and service providers may be located outside your country of residence (including the United States). By using the Platform, you consent to the transfer of your data to these jurisdictions. We ensure appropriate safeguards are in place for cross-border data transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the “Last Updated” date at the top of this page and, where appropriate, by email or an in-app notice.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, contact us at:

We use essential cookies to keep the site running and optional analytics cookies to improve your experience. Cookie Policy

Privacy Policy | Revvel