Privacy Policy — Ticket Timeline

1. Introduction

Ticket Timeline LLC ("Ticket Timeline," "we," "us," or "our") operates the Ticket Timeline mobile and web application (the "App"). This Privacy Policy explains how we collect, use, store, and protect your information when you use the App.

We take your privacy seriously. Your data is private by default. We do not sell your personal information, we do not serve advertisements, and we do not operate public profiles or social feeds.

By using the App, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the App.

2. Information We Collect

2.1 Account Information

Email address (authentication and recovery)
Password (hashed; never stored in plaintext)

Optional:

Display name
Profile photo
Home city and state
Marketing communications preference — whether you choose to receive marketing emails

We do not collect your legal name, phone number, mailing address, date of birth, or payment information.

2.2 Guest Session Data

Anonymous session identifier is created
Data stored like registered users
Merged if account is later created

2.3 User-Generated Content

Event attendance records
Ratings and notes
Ticket details
Photos (max 50MB)
Scrapbook content
Memories
Imported data (CSV, Sheets, OCR)
Reports
Dashboard preferences

2.4 Computed Data

Lifetime stats
Team stats
Venue stats
Achievements

2.5 Technical Data

Analytics via PostHog (no session replay)
Error logs
Server logs

2.6 Financial Info

Ticket prices (user-entered)
No payment processing or credit card storage

3. How We Collect Information

Directly from you
Automatically (analytics, logs)
From Google integrations
From sports data providers (non-personal)

4. How We Use Your Information

Purpose	Data Used	Legal Basis
Operate the App	Account + user data	Contract
Authentication	Email, password	Contract
Guest data merge	Session data	Contract
Analytics & improvements	Usage data	Legitimate interest
Support	Email + account info	Contract

We do not sell your data, run ads, or profile users for advertising.

If you opt in, we may use your email address and marketing preference to send product updates, promotions, and similar messages. You can withdraw your consent at any time.

5. How We Share Your Information

5.1 Service Providers

Supabase — infrastructure, database, auth · supabase.com/privacy
PostHog — analytics (no replay) · posthog.com/privacy
Google — Sheets, Maps, auth · policies.google.com/privacy
OpenAI — ticket OCR · openai.com/privacy
Visual Crossing — weather data · visualcrossing.com/privacy

5.2 Sports Data

We pull public sports data only. No personal data is shared.

5.3 Other Disclosures

Legal compliance
Safety protection
Business transfer

We do not sell your data.

6. Data Storage and Security

6.1 Storage

Data is stored on Supabase infrastructure (U.S.).

6.2 Security

Row-Level Security (RLS)
Password hashing
HTTPS encryption
Scoped backend access
Session tokens expire after 1 hour

7. Data Retention

Account data: until deleted
User content: until deleted
Guest data: up to 90 days
Logs: ~90 days

8. Your Rights

GDPR (EEA)

Access, correct, delete data
Restrict or object to processing
Data portability

CCPA/CPRA (California)

Right to know
Right to delete
No sale of data

In-App Controls

Delete events
Delete account
Edit/remove content
Disconnect integrations

9. Guest Users

Anonymous sessions supported
Data merged upon signup
Protected with same security

10. Children's Privacy

We do not knowingly collect data from children under 13.

11. International Transfers

Data may be processed in the United States.

12. Changes

We may update this policy. Continued use means acceptance.

13. Contact

contact@tickettimeline.com

Mailing Address

Ticket Timeline LLC
555 SE Martin Luther King Jr Blvd
Portland, OR 97214
United States

Last updated: April 1, 2026