Privacy Policy

Last updated: March 2026

1. Who We Are

Gigpage (gigpage.io) is a link-in-bio platform for musicians and artists, operated in Australia.

2. What Information We Collect

Information you provide:

  • Name and username when you create an account
  • Email address for account authentication
  • Profile information including bio, genre, location and photos
  • Music links, tour dates and shop links you add to your page
  • Payment information when you subscribe to a paid plan (processed securely by Stripe; we do not store card details)

Information we collect automatically:

  • Page view data when fans visit your public page including device type and referral source
  • We do not use cookies for tracking or advertising purposes

Information fans provide:

  • Email addresses when fans subscribe on an artist's page
  • This data is collected on behalf of the artist and stored securely in our database

3. How We Use Your Information

  • To provide and improve the Gigpage platform
  • To send transactional emails such as account confirmation and subscriber welcome emails via Resend
  • To display analytics to artists about their page performance
  • To process payments for paid plans via Stripe
  • We do not sell your data to any third party
  • We do not use your data for advertising purposes

4. Email Communications

  • We will send you transactional emails related to your account
  • We will not send you marketing emails without your explicit consent
  • You can unsubscribe from any non-transactional emails at any time

5. Fan Email Subscribers

  • When a fan subscribes on an artist's Gigpage, their email is stored and associated with that artist
  • A welcome email is sent to the fan via Resend on behalf of the artist
  • Fans can unsubscribe at any time by contacting the artist or emailing us at privacy@gigpage.io
  • Artist subscriber data is not shared with other artists or third parties

6. GDPR and Australian Privacy Act

  • We comply with the Australian Privacy Act 1988
  • For users in the European Union, we comply with GDPR requirements
  • You have the right to access, correct or delete your personal data at any time
  • To exercise these rights contact us at privacy@gigpage.io

7. Data Storage and Security

  • All data is stored securely using Supabase infrastructure with row-level security enabled on all database tables
  • Users can only access and modify their own data, enforced at the database level
  • Storage buckets are publicly readable but require authentication to write or delete, preventing unauthorised file uploads or tampering
  • We use industry standard encrypted connections via Vercel and Supabase infrastructure
  • We do not store passwords or payment card details; authentication is handled by Supabase and payments by Stripe
  • In the event of a data breach that affects your personal information we will notify affected users within 72 hours in accordance with the Australian Notifiable Data Breaches scheme
  • To report abuse or illegal content please contact abuse@gigpage.io; we take all reports seriously and will act promptly
  • We retain your data for as long as your account is active. If you delete your account your data will be removed within 30 days

8. Third Party Services

Gigpage uses the following third party services, each with their own privacy policy and data practices:

  • Supabase: database and file storage
  • Resend: transactional email delivery
  • Stripe: payment processing (paid plans)
  • Vercel: platform hosting

9. Children's Privacy

Gigpage is not directed at children under 13. We do not knowingly collect data from children under 13.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or in-app notice.

11. Contact

For any privacy related questions or requests, email us at privacy@gigpage.io. We aim to respond within 5 business days.

Terms of ServiceBack to Gigpage