Privacy Policy

Last Updated: January 1, 2026

1. Introduction

This Privacy Policy describes how Dynadata LLC, doing business as SeatData.io ("SeatData," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you access or use our website at seatdata.io, our APIs, our data analytics platform, and any related services (collectively, the "Services").

SeatData.io is a business-to-business (B2B) software-as-a-service (SaaS) platform providing concert and event ticket sales data analytics. We are committed to protecting your privacy and handling your personal information with transparency and care.

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Services.

2. Definitions

"Personal Data" (also "Personal Information") means any information that relates to an identified or identifiable individual, including but not limited to name, email address, payment information, and usage data.

"Processing" means any operation performed on Personal Data, whether automated or not, including collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, or erasure.

"Data Controller" means the entity that determines the purposes and means of processing Personal Data. For the purposes of this Privacy Policy, SeatData is the Data Controller.

"Data Processor" means an entity that processes Personal Data on behalf of the Data Controller.

"Account" means a unique account created for you to access our Services or parts of our Services.

"Device" means any device that can access the Services, such as a computer, mobile phone, or tablet.

"Usage Data" means data collected automatically, either generated by your use of the Services or from the Services infrastructure itself.

"Cookies" means small files placed on your Device by a website, containing details of your browsing history and preferences.

3. Information We Collect

3.1 Information You Provide Directly

When you register for an account, subscribe to our services, or contact us, you may provide:

• Account Information: Email address, username, and password
• Profile Information: First and last name, company name, job title, business information
• Contact Information: Phone number, mailing address
• Payment Information: Credit card details, billing address (processed securely by our payment processor, Stripe)
• Communications: Information you provide when contacting our support team or responding to surveys
• API Credentials: API keys issued for programmatic access to our Services

3.2 Information Collected Automatically

When you access or use our Services, we automatically collect:

• Device Information: Device type, operating system, browser type and version, unique device identifiers
• Log Data: IP address, access times, pages viewed, links clicked, referring URLs
• Usage Data: Features used, search queries, data exports, API calls and usage patterns
• Location Data: Approximate geographic location based on IP address
• Performance Data: Page load times, errors, diagnostic information

3.3 Information from Third Parties

We may receive information about you from:

• Payment Processors: Transaction confirmations and payment status from Stripe
• Analytics Providers: Aggregated analytics data about website usage
• Business Partners: Referral information when you are referred by a partner

4. How We Use Your Information

We use your Personal Data for the following purposes:

4.1 Service Provision and Operations

• Creating and managing your Account
• Providing access to our data analytics platform and APIs
• Processing subscriptions and payments
• Delivering data products and services you have purchased
• Providing customer support and responding to inquiries

4.2 Service Improvement and Development

• Analyzing usage patterns to improve our Services
• Developing new features and functionality
• Conducting research and analytics
• Testing and troubleshooting

4.3 Communications

• Sending transactional emails (account confirmations, password resets, receipts)
• Providing service announcements and updates
• Sending marketing communications (with your consent where required)
• Responding to your requests and inquiries

4.4 Security and Compliance

• Detecting, preventing, and addressing fraud, abuse, and security issues
• Enforcing our Terms of Service and other agreements
• Complying with legal obligations
• Protecting our rights, property, and safety

4.5 Business Operations

• Managing our business relationship with you
• Billing and account management
• Record-keeping and auditing
• Business analytics and reporting

5. Legal Basis for Processing

We process your Personal Data based on the following legal grounds:

Legal Basis	Processing Activities
Contract Performance	Providing Services, processing payments, managing your Account, fulfilling subscription obligations
Legitimate Interests	Service improvement, analytics, fraud prevention, security, direct marketing to existing customers
Legal Obligation	Tax reporting, responding to legal requests, compliance with applicable laws
Consent	Marketing communications to prospects, optional cookies, specific data uses where consent is requested

6. Information Sharing

We may share your information in the following circumstances:

6.1 Service Providers

We share information with third-party service providers who perform services on our behalf, such as payment processing, email delivery, hosting, and analytics. These providers are contractually obligated to use your information only for the purposes of providing services to us.

6.2 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your Personal Data may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our Services of any change in ownership or uses of your Personal Data.

6.3 Legal Requirements

We may disclose your information when required by law, regulation, legal process, or governmental request, including:

• Responding to subpoenas, court orders, or legal process
• Cooperating with law enforcement or regulatory authorities
• Protecting our rights, property, or safety, or that of our users or others
• Detecting, preventing, or addressing fraud, security, or technical issues

6.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

6.5 Aggregated or De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you for any purpose, including research, analytics, and marketing.

7. Third-Party Service Providers

We use the following categories of third-party service providers to process your data:

Provider Category	Purpose	Data Shared
Stripe	Payment processing	Payment card details, billing address, email, transaction data
SendGrid	Email delivery	Email address, name, email content
Cloud Hosting (PostgreSQL)	Data storage and processing	All account and service data
Redis	Caching and rate limiting	Session data, API usage metrics
Analytics Services	Website analytics	Usage data, device information, browsing behavior

All service providers are contractually bound to protect your information and may only use it for the specific purposes for which we engage them.

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use

We use cookies and similar tracking technologies to collect and track information and to improve and analyze our Services:

Essential Cookies

• Session Cookies: Necessary for the website to function properly, including authentication and security
• CSRF Tokens: Protect against cross-site request forgery attacks

Functional Cookies

• Preference Cookies: Remember your settings and preferences (e.g., language, display options)
• Login Cookies: Keep you logged in across sessions

Analytics Cookies

• Performance Cookies: Help us understand how visitors interact with our website by collecting anonymous usage data
• Usage Tracking: Track feature usage to improve our Services

8.2 Cookie Duration

• Session Cookies: Deleted when you close your browser
• Persistent Cookies: Remain on your device for a set period or until you delete them

8.3 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

• View what cookies are stored and delete them individually
• Block third-party cookies
• Block all cookies from specific sites
• Block all cookies from all sites
• Delete all cookies when you close your browser

8.4 Other Tracking Technologies

• Web Beacons: Small electronic files in emails that help us track email opens and engagement
• Log Files: Automatically collected server logs containing usage information

9. Data Retention

We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations:

Data Category	Retention Period	Rationale
Account Information	Duration of account + 3 years	Service provision, legal compliance
Transaction Records	7 years after transaction	Tax and financial regulations
API Usage Logs	2 years	Service analysis, security, billing
Support Communications	3 years after resolution	Customer service, legal protection
Marketing Preferences	Until consent withdrawn	Respect user preferences
Server Logs	90 days	Security, troubleshooting

When data is no longer needed, we securely delete or anonymize it. Anonymized data may be retained indefinitely for analytics and research purposes.

10. Data Security

We implement appropriate technical and organizational measures to protect your Personal Data:

10.1 Technical Safeguards

• Encryption: Data is encrypted in transit (TLS/SSL) and at rest
• Access Controls: Role-based access limiting data access to authorized personnel
• Secure Infrastructure: Industry-standard cloud infrastructure with security certifications
• Password Security: Passwords are hashed using strong cryptographic algorithms
• API Security: API keys and rate limiting protect programmatic access

10.2 Organizational Measures

• Security Policies: Written policies and procedures for data handling
• Employee Training: Regular security awareness training for staff
• Incident Response: Procedures for detecting and responding to security incidents
• Vendor Assessment: Security review of third-party service providers

10.3 Data Breach Notification

In the event of a data breach that affects your Personal Data, we will:

• Notify affected individuals without undue delay and within any legally required timeframe
• Notify relevant supervisory authorities as required by applicable law
• Take steps to mitigate the impact and prevent future incidents

11. International Data Transfers

SeatData is based in the United States. Your Personal Data may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

11.1 Transfer Mechanisms

When we transfer Personal Data outside your jurisdiction, we ensure appropriate safeguards are in place:

• Standard Contractual Clauses: EU-approved contractual protections with service providers
• Adequacy Decisions: Transfers to countries recognized as providing adequate protection
• Contractual Protections: Binding agreements requiring recipients to protect your data

11.2 Data Processing Location

Your data is primarily processed and stored on servers located in the United States. By using our Services, you acknowledge and consent to this transfer and processing.

12. Your Privacy Rights

Depending on your location and applicable law, you may have the following rights regarding your Personal Data:

12.1 Right to Access

You have the right to request a copy of the Personal Data we hold about you.

12.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete Personal Data.

12.3 Right to Erasure (Right to Be Forgotten)

You may request deletion of your Personal Data, subject to certain exceptions (e.g., legal obligations, ongoing disputes).

12.4 Right to Restrict Processing

You may request that we limit how we use your Personal Data in certain circumstances.

12.5 Right to Data Portability

You may request a copy of your Personal Data in a structured, commonly used, machine-readable format.

12.6 Right to Object

You may object to processing of your Personal Data for direct marketing or based on legitimate interests.

12.7 Right to Withdraw Consent

Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.

12.8 Exercising Your Rights

To exercise any of these rights, please contact us at support@seatdata.io. We will respond to your request within the timeframe required by applicable law (typically 30-45 days). We may need to verify your identity before processing your request.

13. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

13.1 Right to Know

You have the right to request that we disclose:

• The categories of Personal Information we collected about you
• The categories of sources from which Personal Information was collected
• The business or commercial purpose for collecting Personal Information
• The categories of third parties with whom we share Personal Information
• The specific pieces of Personal Information we collected about you

13.2 Right to Delete

You have the right to request deletion of Personal Information we collected from you, subject to certain exceptions.

13.3 Right to Correct

You have the right to request correction of inaccurate Personal Information.

13.4 Right to Opt-Out of Sale/Sharing

You have the right to opt-out of the "sale" or "sharing" of your Personal Information. SeatData does not sell or share Personal Information as defined under the CCPA/CPRA.

13.5 Right to Limit Use of Sensitive Personal Information

You have the right to limit the use and disclosure of sensitive Personal Information. We only use sensitive Personal Information for purposes permitted under the CCPA/CPRA.

13.6 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights. This means we will not:

• Deny you goods or services
• Charge you different prices or rates
• Provide you with a different level or quality of services
• Suggest you will receive any of the above

13.7 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of Personal Information:

• Identifiers: Name, email address, IP address, account username
• Commercial Information: Subscription history, transaction records
• Internet/Network Activity: Browsing history on our site, API usage, search queries
• Professional Information: Company name, job title, business information
• Inferences: Preferences and characteristics derived from usage patterns

13.8 How to Submit Requests

To submit a request under the CCPA/CPRA:

• Email: support@seatdata.io
• Include "CCPA Request" in the subject line
• We will verify your identity before processing your request
• You may designate an authorized agent to make requests on your behalf

13.9 Verification Process

We verify requests by matching information you provide with information we have on file. For requests made through an authorized agent, we may require proof of authorization.

14. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) and similar laws:

14.1 Data Controller

Dynadata LLC (dba SeatData.io) is the Data Controller for your Personal Data:

• Company: Dynadata LLC
• Address: 2108 N ST, STE N, Sacramento, CA 95816, USA
• Email: support@seatdata.io

14.2 Legal Basis for Processing

We process your Personal Data based on the legal grounds described in Section 5, including contract performance, legitimate interests, legal obligations, and consent.

14.3 Your GDPR Rights

Under the GDPR, you have the rights described in Section 12, including:

• Right of access (Article 15)
• Right to rectification (Article 16)
• Right to erasure (Article 17)
• Right to restriction of processing (Article 18)
• Right to data portability (Article 20)
• Right to object (Article 21)
• Rights related to automated decision-making (Article 22)

14.4 Automated Decision-Making

We do not use fully automated decision-making that produces legal or similarly significant effects on you without human involvement.

14.5 Right to Lodge a Complaint

If you believe we have violated your privacy rights, you have the right to lodge a complaint with a supervisory authority in your member state of residence, place of work, or place of the alleged infringement.

14.6 Cross-Border Transfers

When we transfer your Personal Data outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms as described in Section 11.

15. Children's Privacy

Our Services are designed for business users and are not intended for children. We do not knowingly collect Personal Data from anyone under the age of 18 (or the age of majority in your jurisdiction).

If you are a parent or guardian and believe your child has provided us with Personal Data, please contact us immediately at support@seatdata.io. If we become aware that we have collected Personal Data from a child without verification of parental consent, we will take steps to delete that information.

16. Third-Party Links

Our Services may contain links to third-party websites, applications, or services that are not operated by us. If you click on a third-party link, you will be directed to that third party's site.

• We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services
• We strongly advise you to review the privacy policy of every site you visit
• This Privacy Policy applies only to our Services

17. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

17.1 Notification of Changes

We will notify you of material changes by:

• Posting the updated Privacy Policy on this page with a new "Last Updated" date
• Sending an email notification to registered users for material changes
• Displaying a prominent notice within our Services

17.2 Review and Acceptance

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after changes are posted constitutes your acceptance of the updated Privacy Policy.

If you do not agree with any changes, you should discontinue use of our Services and contact us to request deletion of your Personal Data.

18. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

• Email: support@seatdata.io
• Company: Dynadata LLC (dba SeatData.io)
• Address: 2108 N ST, STE N, Sacramento, CA 95816, USA

We will respond to your inquiry within a reasonable timeframe, typically within 30 days.

18.1 Privacy Requests

For data subject requests (access, deletion, correction, etc.), please include:

• Your name and email address associated with your account
• A description of your request
• Any relevant details to help us locate your data

18.2 Complaints

If you are not satisfied with our response to your privacy concerns, you may have the right to file a complaint with your local data protection authority.