Venucore

Privacy Policy

Version 2.0 — Effective Date: March 18, 2026

1. Introduction

Venucore LLC is committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy describes how we collect, use, store, and share information when you use our platform at venucore.ai.

If you are a California resident, please see Section 12 for your CCPA/CPRA rights. If you are an international user, please see Section 13 regarding data processing in the United States.

2. Information We Collect

We collect the following categories of information:

  • Account Information: Name, email address, company name, role, and profile details when you create an account.
  • Billing Information: Payment details processed through Stripe. We do not store raw credit card numbers on our servers.
  • Event Data: Event details, performer information, ticket tiers, revenue streams, expenses, settlement calculations, and related business data.
  • Contact Records: Names, contact information, and business relationships you enter into the CRM features.
  • Uploaded Documents: Contracts, offer letters, rider documents, insurance certificates, and other files you upload to the Platform.
  • Communications: Messages sent through in-app messaging and support conversations.
  • Log Data: IP address, browser type, device information, operating system, referral URLs, and timestamps of access.
  • Usage Data: Pages visited, features used, click patterns, and interaction data, including Cue AI session content and interactions.
  • Cookies: Session cookies, preference cookies, and analytics cookies as described in Section 9.

3. How We Use Information

We use the information we collect to:

  • Deliver, operate, maintain, and improve the Platform and its features.
  • Power AI features through Cue, including contextual responses based on your event data and platform usage.
  • Process billing, manage subscriptions, and track compute credit consumption.
  • Send transactional communications only — account verification, password resets, billing receipts, and system notifications. We do not send marketing emails without your explicit consent.
  • Protect the safety and security of the Platform and its Users, including fraud detection and abuse prevention.
  • Comply with legal obligations, respond to lawful requests, and enforce our Terms of Service.
  • Generate anonymized, aggregate analytics to improve the Platform. Anonymized data cannot be used to identify you.

4. AI Data Processing

Cue AI sessions are processed through Anthropic under a Data Processing Agreement (DPA). Your AI interaction data is not used to train Anthropic’s general-purpose models.

All Cue sessions are logged and retained for 24 months for abuse prevention, quality assurance, and service improvement purposes. Session logs include your prompts and AI responses.

No autonomous AI decisions are made that directly affect Users without human review. AI outputs are advisory and informational only.

5. How We Share Information

We do not sell your personal information. We share data only in the following circumstances:

  • Service Providers: We share data with Stripe (payment processing), Supabase (database infrastructure), Vercel (hosting and deployment), and Anthropic (AI processing) as necessary to operate the Platform. These providers are contractually obligated to protect your data.
  • Invited Collaborators: When you invite team members or collaborators, they may access data within the scope of their assigned permissions. You control what collaborators can see and do.
  • Legal Requirements: We may disclose information when required by law, subpoena, court order, or government request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of the transaction. We will notify you of any such transfer.
  • Aggregated Data: We may share aggregated, de-identified data that cannot reasonably be used to identify you for research and analytics purposes.

6. Data Security

We implement the following security measures to protect your data:

  • TLS 1.2+ encryption for all data in transit.
  • AES-256 encryption for all data at rest.
  • Row-Level Security (RLS) for multi-tenant data isolation — your data is never accessible to other organizations.
  • Third-party credentials and API tokens stored with AES-256-GCM encryption.
  • Role-based access controls with granular permissions.
  • Comprehensive activity logging for audit trails.
  • Anomaly detection for suspicious access patterns.

While we implement industry-standard security practices, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

7. Data Retention

We retain your data according to the following schedule:

  • Active Account Data: Retained for the life of your account plus 30 days after cancellation.
  • Account Deletion: Account data deleted within 60 days of account closure.
  • Settlement Records: Retained for 7 years to comply with financial record-keeping obligations.
  • Activity Logs: Retained for 24 months.
  • AI Interaction Logs: Retained for 24 months.
  • Billing Records: Retained for 7 years to comply with tax and accounting requirements.

8. Your Rights

  • Access and Correction: You can access and update your personal information at any time through your account settings.
  • Data Export: You may request a complete export of your data. Exports are fulfilled within 10 business days of receipt.
  • Account Deletion: You may request deletion of your account and personal data. Deletion is completed within 30 days, subject to legal retention requirements.
  • Transactional Emails: You cannot opt out of transactional emails (billing receipts, security alerts, account notifications) as they are necessary for Platform operation.

To exercise your rights, contact us at hi@venucore.ai.

9. Cookies

The Platform uses the following categories of cookies:

  • Session Cookies (Required): Essential for authentication, session management, and security. These cannot be disabled.
  • Preference Cookies: Remember your settings and display preferences.
  • Analytics Cookies: Help us understand how Users interact with the Platform to improve the experience.

We do not use advertising cookies or behavioral tracking cookies. No cookie data is sold to third parties.

10. Children’s Privacy

The Platform is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from minors. If we learn that we have collected data from a person under 18, we will delete that information promptly upon notice.

11. Fan and Ticket Buyer Data

When you use the Platform to manage events involving ticket buyers or attendees (“Fan Data”), you are the data controller for that information. Venucore LLC acts as a data processor on your behalf.

You are responsible for:

  • Obtaining appropriate consent from attendees for data collection and use.
  • Providing opt-out mechanisms to attendees as required by applicable law.
  • Complying with CCPA and all other applicable privacy laws regarding your attendees’ data.

Fan Data is never accessible to co-promoters or other organizations on the Platform without your explicit authorization.

12. California Residents — CCPA/CPRA

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of your personal information, subject to legal exceptions.
  • Right to Correct: You may request correction of inaccurate personal information.
  • Right to Opt Out of Sale: We do not sell personal information. No opt-out is necessary.
  • Right to Limit Sensitive PI Use: You may request that we limit the use of sensitive personal information to what is necessary to provide the Platform.
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a CCPA/CPRA request, contact us at hi@venucore.ai. We will respond to verified requests within 45 days.

13. International Users

Venucore is a United States-based service. All data is stored and processed on infrastructure located in the United States. The Platform is not currently GDPR compliant.

If you access the Platform from outside the United States, you do so at your own discretion and you acknowledge and consent to the transfer and processing of your personal information in the United States, where privacy protections may differ from those in your jurisdiction.

14. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will provide 30 days notice via email to the address associated with your account. The updated policy will also be posted at venucore.ai/privacy.

Your continued use of the Platform after the notice period constitutes acceptance of the updated Privacy Policy.

15. Contact

For privacy-related questions or to exercise your rights: hi@venucore.ai

For general support: hi@venucore.ai

Venucore LLC
Phoenix, Arizona