Privacy Policy
Last updated: 25 June 2026
I Was There (“the App”, “we”, “us”) is a personal app for logging the concerts you’ve been to. This policy explains what data the App accesses, how it is used, and what is — and is not — stored. By using the App you agree to this policy.
Who runs this app
The App is operated by the I Was There team. For any privacy questions or requests, contact hello@iwasthere.club.
What we access
When you choose to sign in with Google, the App requests these permissions (scopes):
- Your basic profile (
openid,email,profile) — your name and email address, used only to show who is signed in within the App. - Google Sheets (
https://www.googleapis.com/auth/spreadsheets) — used solely to read and write a spreadsheet you choose or create, so your concert log can be synced to your own Google Sheet.
How we use your data
- The Sheets permission is used only to sync the concert entries you create — reading from and writing to the single spreadsheet you connect or that the App creates for you.
- We do not access, read, or modify any other files, spreadsheets, or data in your Google account.
What we store
- No server-side database. The App does not keep a database of your personal data, your concert entries, or your profile on its servers.
- Concert entries are stored locally in your own web browser (using
localStorage) and, if you connect a sheet, in your own Google Sheet. They remain under your control. - Authentication. To keep you signed in, a Google refresh token is stored in an encrypted,
HttpOnlysession cookie in your browser. It is never exposed to in-page JavaScript and is not stored on our servers. You can sign out at any time to clear it.
How we share your data
We do not sell, rent, or share your personal data with third parties. We do not use it for advertising, and we do not transfer it to others except as required to operate the core sign-in and sync features described above (i.e. communicating directly with Google’s OAuth and Sheets APIs on your behalf).
Google API Services User Data Policy
The App’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only use Google user data to provide and improve the App’s features that you request, and we do not use it for serving advertisements or for any purpose unrelated to logging and syncing your concerts.
Service providers
The App is hosted on Vercel, which may process standard technical request data (such as IP address and browser type) as part of serving the site. Authentication is handled by Google. We do not send your data to any other third-party processors.
Data retention and deletion
- Because we store no personal data on our servers, there is nothing for us to retain or delete on the server side.
- You can delete your concert entries within the App, clear your browser’s site data to remove locally stored entries, and delete or disconnect your Google Sheet at any time.
- You can revoke the App’s access to your Google account at any time at myaccount.google.com/permissions.
Children’s privacy
The App is not directed to children under 13 and we do not knowingly collect data from them.
Changes to this policy
We may update this policy from time to time. Material changes will be reflected by updating the “Last updated” date above.
Contact
Questions about this policy? Email hello@iwasthere.club.