Privacy Policy

Clubble helps students discover clubs and events, manage memberships, and buy tickets. This policy explains what data we collect, why, and how we use and protect it.

• Account data: name, username, email, password hash, profile photo.
• Community and club participation: memberships, roles, follow requests.
• Events & tickets: RSVPs, interests, purchases (via Stripe metadata), QR codes.
• Content: comments, announcements, messages to the extent the service supports them.
• Device & app info: app version, device identifiers (as provided by OS), crash/usage analytics.
• Notifications: FCM token to send push notifications; user notification preferences.
• Payment info: handled by Stripe; we receive limited metadata (amounts, tax/fee breakdowns, ticket type, intent IDs).
• Media uploads: event video and imagery stored via Wasabi (S3-compatible) and processed via external encoding (Lambda/EC2).

• Provide and improve the service: authentication, profiles, clubs, events, ticketing, and moderation.
• Send notifications about events, clubs, and system messages you opt into.
• Prevent abuse and enforce policies (moderation, suspension, fraud prevention).
• Comply with legal obligations (e.g., tax reporting of ticket sales for clubs).

• Service providers: Firebase (Auth/Firestore/Functions/Storage/FCM), Stripe (payments, Stripe Connect), Wasabi (media), Apple/Google wallet passes, email providers for ticket confirmations.
• Clubs: receive data necessary to manage events and attendees.
• Legal: we may share data to comply with law, enforce terms, or protect rights, safety, and security.

We retain personal data as long as necessary to provide the service and for legitimate business or legal purposes. On account deletion, we delete or anonymize personal data (e.g., remove social references, delete profile, delete FCM token, revoke sessions; authored comments are anonymized to preserve thread integrity) and may retain non-identifying records (e.g., transaction totals/IDs, event stats) where required.

• Access/Update: edit your profile in-app.
• Notifications: manage push/email preferences in settings; unsubscribe from topics.
• Account deletion: delete in-app under Security Settings, or use our web deletion page (self-delete supported; admins/moderators can delete violative accounts).

Our service is not directed to children under 13. If you believe a child has provided us personal data, contact us to remove it.

We use reasonable administrative, technical, and physical safeguards (Firebase security rules, token revocation on deletion, restricted media buckets). No system is 100% secure.

Data may be processed in the United States. By using the service, you consent to transfer and processing in the U.S.

We may update this policy. We’ll post the updated version with a new Effective date. Your continued use means you accept the changes.

Questions or requests? Contact [email protected].