Early beta · full launch aimed at 2027Early beta
looge

Legal

Privacy Policy

Last updated: June 2026

1. Who we are

Looge Ltd. is the data controller for personal information collected through looge.co.uk. We are a company registered in England and Wales (company number: 17304881), with our registered address at Suite RA01, 195–197 Wood Street, London, E17 3NU.

To contact us about this policy or your personal data, email [email protected].

2. What data we collect

Account data

Your email address, password (stored hashed — never in plain text), and preferences you set within your account (such as saved venues and digest email opt-in).

Usage data

Pages you visit, events you save, searches you make, and other interactions with the site. This is collected both by us and by the analytics services described below.

Technical data

IP address, browser type and version, device type, operating system, and referring URLs. This data is collected automatically by our hosting provider and analytics services.

Communications

If you opt in, we store your consent to send you a weekly personalised email digest of upcoming events. You can withdraw this consent at any time in your account settings.

3. How we use your data

  • To provide and maintain the Looge service, including account management and personalised event recommendations.
  • To send you a weekly event digest email, if you have opted in.
  • To understand how the service is used so we can improve it.
  • To detect and prevent fraud, abuse, and security incidents.
  • To comply with our legal obligations.

Our lawful bases for processing under the UK GDPR are:

  • Contract — to provide the service you signed up for.
  • Legitimate interests — to improve the service, maintain security, and prevent misuse.
  • Consent — for marketing emails and analytics cookies. You can withdraw consent at any time.

4. Analytics and tracking services

We use the following third-party analytics tools on our site. Each sets cookies or uses similar tracking technologies. Their use is subject to your acceptance of their respective privacy policies.

Google Analytics 4

Provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Collects anonymised usage data (pages viewed, session duration, referral source) to help us understand how visitors use the site. Data may be transferred to Google’s servers in the USA under Standard Contractual Clauses approved by the European Commission and recognised under UK adequacy regulations.

Google Privacy Policy → · Opt out →

PostHog

Provided by PostHog Inc., 2261 Market Street #4008, San Francisco, CA 94114, USA.

Collects product analytics data including page views, feature usage, and click events to help us understand how features are used. We use PostHog’s EU-hosted infrastructure. Data remains within the EU and is processed under Standard Contractual Clauses.

PostHog Privacy Policy →

Microsoft Clarity

Provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA.

Records anonymised session replays and generates heatmaps to help us understand how visitors interact with pages and identify usability issues. Microsoft Clarity does not collect personally identifiable information. Data may be transferred to the USA under Standard Contractual Clauses.

Microsoft Privacy Statement → · Opt out →

5. Cookies

We use the following categories of cookies:

Strictly necessary cookies

Session cookies set by our authentication provider (Supabase) to keep you logged in. These cannot be disabled without preventing you from logging in to your account.

Analytics cookies

Cookies set by Google Analytics, PostHog, and Microsoft Clarity (see section 4). These help us understand how visitors use the site. Most modern browsers allow you to refuse or delete cookies via their settings. Browser extensions such as uBlock Origin can also block analytics scripts.

6. Who we share your data with

We do not sell your personal data. We share it only with:

  • Supabase — database and authentication infrastructure (EU-hosted).
  • Vercel — website hosting and edge delivery.
  • Resend — transactional and digest email delivery.
  • Analytics providers — Google, PostHog, Microsoft (see section 4).
  • Law enforcement or regulators — where we are legally required to disclose information.

7. Data retention

We retain your account data for as long as your account remains active. If you request deletion of your account, we will delete your personal data within 30 days, except where we are legally required to retain certain records (for example, financial records under UK law).

To request account deletion, email [email protected].

8. Your rights

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate or incomplete data.
  • Erasure — ask us to delete your personal data in certain circumstances.
  • Objection — object to processing based on legitimate interests.
  • Restriction — ask us to restrict how we use your data in certain circumstances.
  • Portability — receive your data in a structured, machine-readable format.
  • Withdraw consent — for marketing emails, unsubscribe any time via your account settings.

To exercise any of these rights, email [email protected]. We will respond within one calendar month.

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the UK Information Commissioner’s Office: ico.org.uk.

9. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or in applicable law. We will notify registered users of material changes by email before the updated policy takes effect.

Read our Terms of Service →

We use analytics (Google Analytics, PostHog, Microsoft Clarity) to understand how people use Looge and make it better. Privacy policy.