Privacy Policy

1. Introduction
 
 
This Privacy Policy explains how Encore Touring Limited (“Encore”, “we”, “us”) collects, uses, stores, and protects your personal information.
 
By using Encore, you consent to this Policy.
 
 
 
2. Data We Collect
 
 
 
2.1 Required Information
 
 

• Name

• Email

• Phone Number

• Password (handled by Firebase; not visible to Encore)

 
 
 
2.2 Optional Information
 
 

• Profile photo

• Travel documents (passport, ID scans)

• Tour-related photos or uploads

 
 
 
2.3 App-Specific Data
 
 

• Tour names, dates, schedules, and locations

• Venue details

• Crew member names and roles

• Flight numbers and travel itineraries

• Hotel and accommodation details

• Notes and attachments

• Ticketing event data

• Ticket sales, buyer lists, and analytics

 
 
 
2.4 Automatically Collected Data
 
 

• Device information

• Crash reports

• Usage analytics

• Push notification tokens (APNs)

 
 
Encore does not actively track user GPS location.
 
 
2.5 Payment Data
 
 
Handled by:
 

• Stripe

• Apple In-App Purchases

 
 
Encore does not store payment card information.
 
 
 
3. How We Use Your Data
 
 
We use your data to:
 

• Provide core functionality of the Encore platform

• Sync your data across devices

• Process ticket sales (via Stripe)

• Send push and email notifications

• Improve performance and reliability

• Prevent fraud and abuse

• Provide customer support

• Generate anonymized analytics

 
 
We never sell or rent personal data to third parties.
 
 
 
4. Legal Bases (GDPR-aligned)
 
 
Where applicable, Encore relies on the following legal bases:
 

• Contract: To provide the Service you signed up for

• Legitimate Interest: Platform improvement, fraud prevention

• Consent: Optional uploads, marketing communication

• Legal Obligation: Financial compliance for ticketing

 
 
 
 
5. Data Storage & Transfers
 
 
Encore stores data in Firebase (USA) and may process data in other regions through Firebase and Stripe.
 
By using Encore, you consent to international data transfers where required to provide the Service.
 
 
 
6. Third-Party Services
 
 
Encore integrates with:
 

• Firebase Authentication

• Firebase Firestore

• Firebase Storage

• Firebase Functions

• Firebase Cloud Messaging

• Crashlytics

• Stripe

• Apple IAP

• FlightAware API

• Ableset iframe

• Visa requirement checker API

 
 
These providers may process your data according to their own policies.
 
 
 
7. Offline Data
 
 
Encore stores certain data on your device for offline use.
Local data remains until the device is cleared or the app is uninstalled.
 
 
 
8. Data Retention
 
 

• Account data retained up to 90 days after deletion

• Backups may persist for this period

• Anonymized analytics retained indefinitely

• Ticketing transaction data may be retained longer for compliance

 
 
 
 
9. Children’s Privacy
 
 
Encore is not permitted for users under 13.
If we discover an account belonging to a child under 13, we will delete it promptly.
 
 
 
10. Your Rights
 
 
Depending on your region, you may:
 

• Access your data

• Request correction

• Request deletion

• Request export of your data

• Object to certain processing

• Withdraw consent (where applicable)

 
 
To exercise rights:
📧 support@encore-app.com
 
 
 
11. Data Security
 
 
We use:
 

• Encryption in transit (HTTPS)

• Firebase security rules

• Authentication tokens

• Access controls

 
 
No method is 100% secure, but we follow industry-standard practices.
 
 
 
12. Ticketing & Third-Party Data Disclaimer
 
 
Encore displays flight, visa, and travel information from third-party sources.
 
This information may be:
 

• Delayed

• Incorrect

• Incomplete

• Outdated

 
 
Users must verify details with official authorities. Encore assumes no liability for reliance on third-party data.
 
 
 
13. Dispute Resolution
 
 
All disputes regarding privacy must go through online arbitration, governed by New Zealand law.
 
 
 
14. Updates to This Policy
 
 
We may update this Policy occasionally. Changes take effect upon posting.