Legal
Privacy
The short version: we store what your team enters, we use it to run the product, and nobody else gets it.
What we collect
Account holders: your email address, display name, and optional phone number. Event data your team enters: event names, venues, schedules, checklists, show feedback, and crew rosters, which include names, email addresses, and optional phone numbers of crew members added by event admins. Sign-in is passwordless: we never store a password.
Why we collect it
To run the product: signing you in, showing rosters to your team, sending schedule and checklist alerts, and letting admins reach their crew. We do not sell personal data, run third-party ad tracking, or use your event data for anything other than operating ShowBook HQ.
Where it lives
Data is stored with Supabase (PostgreSQL database and authentication) and served through Vercel (hosting). Transactional email, meaning sign in codes and alerts, is delivered via Resend. Error diagnostics go to Sentry with personal data kept out of reports wherever possible. All traffic is encrypted in transit (TLS); data is encrypted at rest by our providers.
Who can see what
Your event data is visible only to members of that event, scoped by role. For example, a crew member’s phone number is hidden from other crew unless that person turns visibility on. Row-level security is enforced in the database itself, not just in the interface.
Your choices
You can request a copy of your data or ask for your account and its personal data to be deleted by emailing support@showbookhq.com. Unsubscribe links are included in alert emails. If you were added to a roster by an event admin and want off it, the same address works.
If something goes wrong
If we become aware of a breach affecting your personal data, we will notify affected users within 72 hours of confirming it.
Changes
We will update this page as the product evolves and note material changes to account holders by email. This version is effective July 2026, during the ShowBook HQ beta.