Privacy Policy
Last Updated: December 27, 2025
At BrightStar Events, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. We believe in transparency and want you to understand exactly how your data is handled.
1. Information We Collect
We collect information that you provide directly to us, information we obtain automatically when you use our services, and information from third-party sources.
Information You Provide
- Account Information: Name, email address, password, phone number, and profile photo
- Payment Information: Credit card details, billing address (processed securely by our payment partners)
- Profile Information: Bio, location, interests, and preferences related to conscious events
- Event Information: For organizers: event details, descriptions, images, venue information, and pricing
- Communications: Messages you send to us or other users through our platform
- Survey Responses: Feedback and responses you provide in surveys or reviews
Information Collected Automatically
- Device Information: Browser type, operating system, device identifiers, and screen resolution
- Usage Data: Pages visited, events viewed, search queries, and interaction patterns
- Location Data: General location based on IP address; precise location only with your consent
- Log Data: IP addresses, access times, referring URLs, and error logs
Information from Third Parties
- Social Login: If you sign in via Google or Facebook, we receive your name, email, and profile photo
- Payment Processors: Transaction confirmations and fraud prevention data from Stripe
- Analytics Partners: Aggregated usage statistics and demographic insights
2. How We Use Your Information
We use the information we collect to provide, maintain, and improve our services:
| Purpose | Description |
|---|---|
| Service Delivery | Process ticket purchases, manage accounts, and deliver event information |
| Communications | Send order confirmations, event reminders, and important updates |
| Personalization | Recommend events based on your interests, location, and past attendance |
| Analytics | Understand how users interact with our platform to improve the experience |
| Marketing | Send newsletters and promotional content (with your consent) |
| Security | Detect fraud, protect against abuse, and ensure platform security |
| Legal Compliance | Comply with legal obligations and respond to lawful requests |
3. Information Sharing
We do not sell your personal information. We may share your information in the following circumstances:
With Event Organizers
When you purchase a ticket, we share your name, email, and ticket information with the event Organizer so they can manage attendance and communicate event details. Organizers must agree to use this information only for event-related purposes.
With Service Providers
We work with trusted third-party service providers who assist us in operating our platform, including:
- Payment processing (Stripe)
- Email delivery (SendGrid, Mailchimp)
- Cloud hosting (Vercel, Supabase)
- Analytics (Google Analytics, Mixpanel)
- Customer support tools
These providers are contractually obligated to protect your data and use it only for the services they provide to us.
For Legal Reasons
We may disclose information if required by law, court order, or government request, or to protect the rights, property, or safety of BrightStar, our users, or others.
Business Transfers
If BrightStar is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
Your Data Stays Yours: We believe event organizers should own their audience relationships. Unlike some platforms, we do not use your attendee data to market competing events or build our own audience at your expense.
4. Data Retention
We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specific retention periods include:
- Account Data: Retained while your account is active, plus 3 years after deletion for legal compliance
- Transaction Records: Retained for 7 years for tax and accounting purposes
- Marketing Preferences: Retained until you opt out or delete your account
- Server Logs: Retained for 90 days for security and debugging purposes
- Analytics Data: Aggregated data may be retained indefinitely
You can request deletion of your personal data at any time by contacting us or through your account settings.
5. Data Security
We implement industry-standard security measures to protect your information:
- Encryption: All data is encrypted in transit (TLS/SSL) and at rest
- Payment Security: We are PCI-DSS compliant; we never store full credit card numbers
- Access Controls: Employee access to personal data is limited and logged
- Regular Audits: We conduct security assessments and vulnerability testing
- Incident Response: We have procedures to detect and respond to data breaches
While we strive to protect your data, no method of transmission or storage is 100% secure. We encourage you to use strong passwords and protect your account credentials.
6. Your Rights and Choices
You have several rights regarding your personal information:
Access and Portability
You can request a copy of your personal data in a portable format. Use the "Download My Data" option in your account settings or contact us.
Correction
You can update your account information at any time through your profile settings. If you need assistance correcting other data, please contact us.
Deletion
You can delete your account and request deletion of your personal data. Some information may be retained for legal or legitimate business purposes.
Marketing Opt-Out
You can unsubscribe from marketing emails using the link in any email or through your notification settings. Note that you will still receive transactional emails related to your purchases.
Cookie Preferences
You can manage cookie preferences through your browser settings or our cookie consent tool. See the Cookies section below for more details.
8. Third-Party Services
Our platform may contain links to third-party websites or integrate with third-party services. These third parties have their own privacy policies, and we are not responsible for their practices. Key third parties include:
- Stripe: Payment processing (Privacy Policy)
- Google: Analytics and authentication (Privacy Policy)
- Facebook: Social login and sharing (Privacy Policy)
We encourage you to review the privacy policies of any third-party services you interact with.
9. Children's Privacy
BrightStar is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected information from a child under 13, we will delete it promptly.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.
10. International Data Transfers
BrightStar is based in the United States. If you access our services from outside the United States, your information will be transferred to, stored, and processed in the United States or other countries where our service providers operate.
For users in the European Economic Area (EEA), we ensure appropriate safeguards for international transfers, including Standard Contractual Clauses approved by the European Commission.
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: You can request information about the categories and specific pieces of personal information we have collected
- Right to Delete: You can request deletion of your personal information, subject to certain exceptions
- Right to Opt-Out: We do not sell personal information, so there is no need to opt out of sales
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights
To exercise these rights, contact us at privacy@brightstarevents.com or call us at the number provided below.
California Shine the Light
California residents may also request information about disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their own marketing.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Notify you by email if you have an account with us
- Display a prominent notice on our platform
We encourage you to review this policy periodically. Your continued use of BrightStar after changes become effective constitutes acceptance of the updated policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Privacy Email: privacy@brightstarevents.com
- General Email: support@brightstarevents.com
- Website: brightstarevents.com/contact
- Address: BrightStar Events, Los Angeles, CA, USA
For EU residents, you also have the right to lodge a complaint with your local data protection authority.
Our Commitment: Privacy is a core value at BrightStar. We believe that trust is the foundation of our community. Your data enables us to serve you better, and we are committed to handling it with the respect and care it deserves.