What we collect

For organisers: name, email, password (hashed), banking details, the IP we observed at signup. For attendees: name, email, phone (optional), and the IP we observed when the booking was made.

Why we collect it

To deliver the service: dispatch ticket emails, allow organisers to message attendees, run anti-abuse rate limits, and produce an audit trail of consequential actions.

Who sees what

Attendee booking records are visible to the event organiser and to anzbooking superadmins. Organiser banking details are visible to anzbooking superadmins for compliance review and are also shown to attendees on the booking confirmation email (since the deposit goes directly to the organiser).

Retention

Event + booking records are retained for seven years for tax compliance. Audit log entries are retained indefinitely.

Contact

Data requests: [email protected].