Privacy Policy

What we collect, why we collect it, and what you can do about it. No dark patterns, no data brokers, no selling your info.

Last updated: April 10, 2026

This Privacy Policy explains how Trivia Fun ("we", "us") collects, uses, and shares information when you use the Trivia Fun website (trivia-fun.com), the Trivia Fun hosted application (app.trivia-fun.com), the community forum (forum.trivia-fun.com), and any related services (collectively, the "Service").

The short version. We collect the minimum we need to run the Service. Players who join a trivia game through a QR code don't create accounts and we don't track them across the web. We don't sell your data, we don't run ad networks, and we don't share data with third parties except the small set of vendors we need to operate (listed below). If you want your data deleted, email support@trivia-fun.com and we'll do it.

1. Who we are

Trivia Fun is operated by a small team based in Indiana, United States. The data controller for purposes of this Policy is Trivia Fun. You can contact us about privacy at support@trivia-fun.com.

2. The information we collect

If you visit the marketing site

When you visit trivia-fun.com, our hosting provider (Cloudflare) automatically logs basic technical information about your request: IP address, user-agent string, the page you requested, and a timestamp. This is standard for any website and we use it for security and abuse prevention. We do not run third-party advertising trackers.

If you join the waitlist or contact us

If you submit the waitlist form or the contact form, we collect the information you choose to provide — typically your email address, optionally your name, venue name, and the message you wrote. We use this to reply to you and, if you opted into the waitlist, to email you when your plan becomes available.

If you create a venue account

To use the Trivia Fun host dashboard, you create an account for your venue. We collect:

  • Account info: venue name, contact email, and a password (which we store as a salted hash — we never see your actual password).
  • Configuration: the trivia content, branding, and settings you upload to your account.
  • Game activity: records of trivia games you've hosted, including question stats, leaderboards, and player names typed in by your players.
  • Billing info (only when paid plans are active): your subscription status, plan tier, and a customer ID from our payment processor. We do not see or store full credit card numbers — those go directly to the payment processor.

If you host or join a trivia game

Players join games by scanning a QR code and typing a name (any string they want — usually a nickname or team name). We do not ask players for an email, phone number, or any other identifying information. We do not require players to create accounts, install an app, or accept cookies.

During a game we keep, on the venue's behalf, the player nicknames, their answers, and their scores. After the game ends this is part of the venue's history. Venues can delete it at any time from the host dashboard.

For technical reasons (to keep a player connected to the right room across page reloads), the player's browser stores a small identifier in sessionStorage on the player's own device. This identifier does not persist after the browser tab is closed and is never sent off the player's device except during the game itself.

If you post on the community forum

The community forum at forum.trivia-fun.com runs Discourse. Posting on the forum is governed by Discourse's standard data collection (account email, posts, replies, basic activity logs). Anything you post publicly on the forum is visible to anyone who visits the forum.

Cookies and similar technologies

We use cookies (and small amounts of localStorage) for these purposes only:

  • Essential: keeping you logged in to your venue account, remembering your beta invite code, and storing your light/dark theme preference.
  • Operational: session identifiers needed to deliver the Service.

We do not use advertising cookies, cross-site tracking cookies, or third-party analytics that build a profile of your behavior across other sites.

3. How we use information

We use the information we collect to:

  • Operate, maintain, and improve the Service.
  • Authenticate venue accounts and prevent unauthorized access.
  • Reply to your support requests, bug reports, and feedback.
  • Send you transactional emails about your account (account confirmations, billing receipts, security alerts, important changes to the Service).
  • Send you waitlist or product update emails if you opted into them — and only those. You can unsubscribe from these at any time using the link at the bottom of every email.
  • Detect and prevent fraud, spam, abuse, and security incidents.
  • Comply with legal obligations and enforce our Terms of Service.

We do not use your information to train machine-learning models, build advertising profiles, or share with data brokers.

4. Who we share information with

We share information only with the third-party service providers ("subprocessors") that help us operate the Service. They only receive what they need to do their job, and they're contractually required to handle that data securely.

Current subprocessors

  • Railway — application hosting (United States). Receives: all data needed to run the app server.
  • Cloudflare — DNS, CDN, and security for the marketing site (Global). Receives: standard request metadata (IP, user-agent, requested URL).
  • DigitalOcean — hosting for the community forum (United States). Receives: forum data and request metadata.
  • Resend — transactional and marketing email delivery (United States). Receives: recipient email addresses and the contents of the emails we send.
  • Sentry — error monitoring (United States). Receives: error reports and limited request context to help us debug crashes. We try to scrub personal data from error reports, but stack traces may incidentally contain small amounts of identifying information.
  • Stripe — payment processing for paid plans (United States). Receives: billing email and payment method details. Stripe is a PCI-DSS certified payment processor; we never see or store full card numbers ourselves. See Stripe's privacy policy.

We may add or change subprocessors as the Service evolves. When we do, we'll update this list.

Other situations where we may share

  • Legal requests: if we receive a valid subpoena, court order, or other legal process from a governmental authority, we may be required to disclose information to comply with the law. We will only disclose what is legally required.
  • Safety: if we believe disclosure is necessary to investigate, prevent, or respond to suspected fraud, security incidents, or threats to anyone's physical safety.
  • Business transfers: if Trivia Fun is acquired, merged, or sells substantially all of its assets, your information may be transferred to the acquiring entity. We'll notify you by email or a notice in the app before that happens.

We do not sell personal information. We do not "share" personal information for cross-context behavioral advertising, as those terms are defined under California law.

5. How long we keep information

We keep information only as long as we need it for the purposes described in this Policy:

  • Venue accounts: until you delete your account, or until your account has been inactive for 24 months.
  • Game history: for as long as your venue account is active. You can delete individual games from the host dashboard at any time.
  • Waitlist signups: until you unsubscribe, or until we determine your waitlist segment is no longer being marketed to.
  • Contact form messages: typically up to 24 months, longer if needed to resolve an ongoing issue.
  • Server logs: typically 30 days for security and debugging purposes, longer if part of an active investigation.
  • Billing records: as long as required by applicable tax and accounting laws (typically 7 years).

You can request earlier deletion by emailing support@trivia-fun.com.

6. Your rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct information that is inaccurate or incomplete.
  • Delete your personal information ("right to be forgotten").
  • Export your information in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent for processing that is based on consent (such as marketing emails — just unsubscribe).
  • Lodge a complaint with a data protection authority in your jurisdiction.

To exercise any of these rights, email support@trivia-fun.com from the email address associated with your account. We'll respond within 30 days. We won't charge you for exercising your rights, and we won't discriminate against you for doing so.

7. Children's privacy

Trivia Fun is a tool for adult-oriented venues like bars, breweries, and restaurants. The Service is not directed to children under 13 (or under 16 in jurisdictions where that is the applicable age threshold). We do not knowingly collect personal information from children under those ages. If we learn that we have collected information from a child below the applicable age, we will delete it. If you believe a child has provided us information, please contact us at support@trivia-fun.com.

Hosts are responsible for ensuring that their trivia events comply with local laws regarding minors and that any players under the applicable age have appropriate consent.

8. International users and data transfers

Trivia Fun is operated from the United States, and our subprocessors are primarily in the United States. If you access the Service from outside the United States, your information will be transferred to, processed, and stored in the United States. By using the Service, you understand and consent to this transfer.

If you are in the European Economic Area, the United Kingdom, or Switzerland, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers where required by law.

9. Security

We take reasonable technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit (HTTPS everywhere), salted password hashing, scoped access tokens, rate limiting, and regular security review of our subprocessors.

However, no system is perfectly secure. We cannot guarantee absolute security, and we do not warrant that the Service is free from vulnerabilities. If you discover a security issue, please report it responsibly to support@trivia-fun.com.

10. California residents

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the CPRA, gives you specific rights regarding your personal information. These rights include the right to know what personal information we collect about you, the right to delete your personal information, the right to correct inaccurate personal information, the right to opt out of the "sale" or "sharing" of personal information, and the right to non-discrimination. As stated above, we do not sell or share personal information for cross-context behavioral advertising.

To exercise your California rights, email support@trivia-fun.com.

11. Changes to this Policy

We may update this Privacy Policy from time to time. When we do, we'll update the "Last updated" date at the top of this page. For material changes that affect how we use your information, we'll make a reasonable effort to notify you by email or by a prominent notice in the app before the changes take effect. Your continued use of the Service after the changes take effect means you accept the updated Policy.

12. Contact us

Questions, complaints, or requests about your privacy? Email support@trivia-fun.com. We read everything and we'll get back to you.