Last updated: 25 May 2026
Trust Centre
A short security overview for venues. Full legal detail is in our Privacy Policy and Terms.
At a glance
- Data
- EU only
- Encryption
- HTTPS and encrypted storage
- Sign-in
- Password plus optional authenticator app
- Payments
- Stripe — we never see full card numbers
- Your data
- Export or delete from account settings
Security
- HTTPS only, hashed passwords, optional two-factor authentication.
- Data export needs email confirmation even when you are already signed in.
- Rate limits and bot checks on sign-up, login, and sensitive forms.
- One session cookie — no ad trackers.
Who processes data
Hosting and storage stay in the EU. Key providers: Stripe (payments), Cloudflare (files and video), OpenAI (CV parsing on redacted text only), AWS (email, EU). Full list and purposes — Privacy Policy.
Your data rights
Access, export, correct, or delete your data from account settings. Other requests: Privacy and data rights. Complaints: ico.org.uk.
What we don't do
Sell your data, run ad networks, store full card numbers, or transfer data abroad without EU-acceptable safeguards.
Trust on the platform
- Venues verified via Companies House before listing.
- Reviews only after a completed shift; both sides submit before either is shown.
- No-shows and cancellations on profiles after a 7-day dispute window.
Planned
Pen test and ICO registration before public launch; sign-in alerts and audit log. SOC 2 / ISO 27001 only if a customer contract requires it.
Questions
Sign in, open Help, and pick a topic — we reply within 24 hours.