Privacy Policy

PubTrivia is an online platform that lets pub and bar operators run live trivia quiz nights. We are based in the United Kingdom and act as the data controller for any personal data collected through this service.

If you have any questions about this policy or how we handle your data, please contact us at privacy@pubtrivia.app.

2.1 Account holders (venue owners / hosts)

When you create an account we collect:

• Name and email address — to identify your account, send transactional emails (e.g. email confirmation, password reset), and for billing purposes.
• Password — stored as a secure hash by Supabase; we never see or store your plain-text password.
• Google account details — if you choose to sign in with Google, we receive your name and email from Google. We do not receive your Google password.
• Venue name — the display name shown to players when they join a quiz.
• Billing information — handled entirely by Stripe. We store your Stripe customer ID and subscription status, but never your card number or bank details.

The legal basis for processing this data is contract performance (Article 6(1)(b) UK GDPR) — it is necessary for us to provide the service you have signed up for.

2.2 Quiz players

Players join a quiz by scanning a QR code at their table. We collect:

• Player name — a display name you choose yourself, used only for the leaderboard during that quiz session. This is not linked to any account or stored after the session ends in a way that is connected to you personally.
• Quiz answers and scores — stored to power the live leaderboard and session history visible to the venue host.

We do not ask players for an email address, phone number, or any other identifying information. Players do not need to create an account.

The legal basis for processing this data is legitimate interests (Article 6(1)(f) UK GDPR) — delivering the quiz session that the player has chosen to join.

2.3 Technical and usage data

We use Sentry to record application errors. Sentry may capture technical information such as browser type, operating system, and the page where an error occurred. We do not intentionally send personal data to Sentry, but error reports can occasionally contain data from the request context.

We use the following services to run the platform. Each acts as a data processor on our behalf and is bound by appropriate data processing agreements.

Supabase handles authentication and our database, hosted on AWS in the EU. Stripe handles all payment processing — we never see your card details. Vercel hosts the application. Google provides optional social sign-in via OAuth. Sentry captures application errors for debugging purposes.

Stripe, Google, and Sentry are based in the USA. Data transfers are covered by Standard Contractual Clauses, an approved mechanism under UK GDPR.

• Account data — kept for as long as your account is active, and for up to 90 days after deletion to allow for disputes or legal obligations.
• Session and game history — retained indefinitely while your account is active. You can delete sessions from the history page at any time.
• Player names and answers — retained as part of session records. Because player names are self-chosen and not linked to a real identity, they are treated as pseudonymous data.
• Billing records — retained for 7 years to comply with UK financial record-keeping requirements.

If you are an account holder, you have the right to:

• Access — request a copy of the personal data we hold about you.
• Rectification — ask us to correct inaccurate data. You can update your name and venue name directly in Settings.
• Erasure — ask us to delete your account and associated personal data, subject to our legal record-keeping obligations.
• Restriction — ask us to stop processing your data in certain circumstances.
• Portability — receive your data in a structured, machine-readable format.
• Objection — object to processing based on legitimate interests.

To exercise any of these rights, email us at privacy@pubtrivia.app. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you are unhappy with how we have handled your data.

We use only essential, functional cookies. We do not use advertising or tracking cookies. See our Cookie Policy for details.

This service is intended for adults operating or attending licensed premises (pubs and bars). We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has provided us with personal data, please contact us and we will delete it promptly.

We may update this policy from time to time. When we make material changes we will update the “Last updated” date at the top of this page and, where appropriate, notify account holders by email.

For any privacy-related queries, please contact us at: privacy@pubtrivia.app