Skip to main content

Privacy Policy

Written by BIX HQ

Last updated: 8 May 2026

This Privacy Policy explains how Bix collects, uses, shares, and protects personal information when you use Bix.

We have written this policy in plain language so that it can be read and understood without specialist help. The legal substance is here in full; the framing is intended to make it usable.


1. About this policy

This Privacy Policy applies to anyone who uses Bix – whether you are visiting our website, browsing events, making a booking, running events, or interacting with us in any other way.

Bix is operated by Bix HQ Pty Ltd (ACN 693 170 393), with its registered office at Level 1, 580 Church St, Cremorne, Victoria, Australia. We refer to ourselves throughout as "Bix," "we," or "us."

For privacy queries, including any of the rights described in this policy, please contact us at [email protected].

This policy works alongside our Terms of Use and, for organisations running events on Bix, the Organisation Agreement. To the extent of any inconsistency between this policy and those agreements on matters of personal data, the agreements prevail – this policy explains our practices, but the agreements set out the contractual position.


2. Two important things upfront

We do not sell personal information. Not to organisations using Bix, not to advertisers, not to anyone. The information we collect is used to operate Bix and to help you use it.

We do not store your card details. When you pay for a booking on Bix, your card details go directly to Stripe, our payment processor. Bix never sees or stores them.


3. Bix's role: when we are a controller, and when we are a processor

This is the part of the policy that matters most for understanding how your personal information is handled, so we have tried to explain it clearly.

When you interact with Bix, your personal information may be handled by Bix in two different roles:

  • As a controller – we decide what personal information to collect, why, and what to do with it. This applies to information we collect about visitors to our website, organisations that sign up to use Bix, and people who subscribe to our updates. It also applies to the core information that lets you use Bix – your email, the existence of your booking, and the records we need to operate the platform.

  • As a processor for an organisation – we handle personal information on behalf of an organisation that uses Bix to run their events. The organisation decides what to collect from you (for example, dietary requirements or accessibility needs they ask about at checkout) and why. They are the controller of that information; we process it on their instructions.

In practice, when you make a booking, your information is handled by Bix in both roles at once: we are the controller for the parts of your booking that exist because you chose to use Bix, and we are the processor for the parts of your booking that exist because the organisation asked for them. The rest of this policy explains which is which.

If you have a query about information that an organisation has collected about you through Bix in their role as controller, please contact the organisation directly. If we receive a query that should go to an organisation, we will let you know and, where appropriate, pass it on.


4. Information we collect, and why

Visitors to our website

If you are simply browsing Bix without making a booking or creating a profile, we collect:

  • Technical information – your IP address, browser type and version, device operating system, and similar device information.

  • Browsing information – the pages and events you view on Bix, the search terms you use, how you arrived at Bix, and broadly how you use the site.

  • Approximate location – derived from your IP address; we do not collect precise location unless you give us permission through your browser.

How we use it: to operate the site, understand how it is used, fix bugs, prevent abuse and fraud, and improve our service.

Lawful basis (where GDPR applies): our legitimate interests in operating and improving Bix; or your consent for non-essential cookies (see section 13).


People who make bookings (buyers)

When you make a booking on Bix, we act as controller of:

  • Your contact details – your name, email address, and phone number, used to associate your booking with a single Bix profile across all organisations you book with. Your profile holds a record of your bookings and the contact details you provide. We may verify your email address from time to time to protect access to your profile.

  • Booking records – the events you have booked, when they happened, how they were paid for, and any changes to those bookings.

How we use this information: to deliver the booking you have requested, to make future bookings on Bix faster, to send booking confirmations and other transactional communications, to handle questions and disputes about your bookings, and to operate the platform safely.

Lawful basis (where GDPR applies): performance of our contract with you; or, where we are not contracting directly with you, our legitimate interests in operating Bix.

When you make a booking on Bix, we also act as processor for the organisation running the event in respect of:

  • Additional information requested by the organisation – for example, dietary requirements, accessibility needs, age confirmations, or anything else asked about on the organisation's checkout form.

  • Information generated about your participation – for example, attendance status, check-in records, and any communications the organisation sends you about the event.

How we use this information: as instructed by the organisation, for the purposes of their event. We do not use this information for our own purposes beyond what is necessary to operate Bix.


People who run events (organisations)

If your organisation signs up to use Bix to run events, we collect, as controller:

  • Account information – your name, email address, phone number, role at the organisation, the organisation's name and country.

  • Billing information – the information needed to pay your subscription and, if applicable, to process payments to you through Stripe (account details, business identification, tax identification numbers).

  • Use of Bix – information about how you use the platform, the events you run, and your activity in your account.

  • Communications – any correspondence you have with us, including support conversations.

How we use this information: to provide Bix to you, to bill you, to operate our Stripe relationship for organisations using payouts, to provide support, to keep the platform secure, and to comply with our legal obligations.

Lawful basis (where GDPR applies): performance of our contract with you (the Organisation Agreement); compliance with our legal obligations (for example, tax records); or our legitimate interests in operating Bix.


People who subscribe to our updates

If you subscribe to receive emails from us – for example, our newsletter or product updates – we collect your name, email address, and country.

How we use this information: to send you the updates you have subscribed to.

Lawful basis (where GDPR applies): your consent. You can withdraw consent at any time using the unsubscribe link in any email, or by contacting [email protected].


People who contact us

If you contact us – through our chat tool, email, phone, social media, or any other channel – we collect the information you choose to give us, including your contact details and the content of the conversation.

How we use this information: to respond to you, address your query or complaint, and improve our service.

Lawful basis (where GDPR applies): our legitimate interests in operating Bix and providing support.


5. Marketing communications

We will only send you marketing communications where you have separately agreed to receive them.

For buyers, we will not send you marketing emails about Bix unless you have opted in. Booking confirmations, payment receipts, and other transactional communications about your bookings are not marketing and are sent because they are necessary to deliver your booking. Organisations you have booked with may send you their own communications under their own privacy policy.

For organisations using Bix, we may send service-related communications about your account, such as billing reminders or notices about platform updates. These are not marketing. We will only send promotional or marketing material if you have separately agreed.

You can unsubscribe from marketing emails at any time using the unsubscribe link, or by contacting [email protected].


6. How we share personal information

We share personal information only where necessary to operate Bix, with your consent, or where we are required to by law.

With organisations you book with. When you make a booking, the relevant organisation receives the personal information necessary to run the event – including the additional information they have asked for at checkout. The organisation is the controller of that information and handles it under their own privacy notice.

With our sub-processors. We use a small number of third-party services to help us deliver Bix – for example, our hosting provider, payment processor, transactional email provider, error monitoring, and customer support tools. The current list is published at Bix Sub-processors. These sub-processors handle personal information only as necessary to provide their services to us, and under contracts that require them to protect the information.

With our advisers. We share personal information with our auditors, lawyers, and accountants where necessary for them to advise us.

With government and regulatory bodies. We may share personal information where we are required to by law, by court order, or by a regulator with appropriate authority. We may also share information to protect the rights, property, or safety of Bix, the people who use it, or others.

With a successor. If Bix or its assets are sold or transferred, personal information may be transferred to the buyer or successor. We will let you know before this happens where required by law.

We do not share personal information for any other purposes without your consent.


7. Where personal information is stored

Personal information handled by Bix is primarily stored on servers located in the United States. Some of the third parties we use are based in other countries, including Australia, Ireland, and the Netherlands; the sub-processors page lists each provider and where they operate.

This means that personal information collected from people in Australia, the European Economic Area, the United Kingdom, and elsewhere is transferred internationally as part of how Bix operates.

Where this happens, we rely on appropriate safeguards to protect the information, including the European Standard Contractual Clauses, the UK International Data Transfer Addendum, and equivalent contractual protections under Australian privacy law (in particular, Australian Privacy Principle 8). The countries to which information is transferred may have data protection laws that differ from those in your country of residence.


8. How long we keep personal information

We do not keep personal information for longer than we need to.

For booking records, Bix profiles, and organisation account data, we keep the information for as long as the relationship is active, plus six years after your last activity or after account termination, to allow us to handle queries, resolve disputes, and meet our tax and legal record-keeping obligations. Marketing data is kept while you remain subscribed, plus a short period after you unsubscribe to confirm your preferences. Technical and analytics data is kept only as long as we need it to operate and improve Bix. Where we have anonymised or aggregated data so that it no longer identifies any individual, we may keep it indefinitely.

Some records – for example, financial transaction records, tax records, and records relating to legal claims – may be retained longer where required by law. Where we are required to retain information beyond our standard retention periods, we will continue to protect it under this policy.


9. How we protect personal information

We take the security of personal information seriously and apply administrative, physical, and technical measures designed to protect it from loss, misuse, unauthorised access, disclosure, alteration, and destruction. These measures include encryption in transit, access controls, secure development practices, and regular reviews of our sub-processors.

We do not store credit card details on our own systems. Card details are handled by Stripe, which holds Payment Card Industry Data Security Standard (PCI DSS) certifications.

No system is perfectly secure. If we become aware of a breach that affects your personal information, we will notify you and any relevant regulator as required by law.


10. Your rights

You have a number of rights in respect of your personal information. The rights available to you depend on which laws apply to you, but we extend the following to everyone using Bix where we are able to do so:

  • Access – you can ask us for a copy of the personal information we hold about you.

  • Correction – you can ask us to correct information that is inaccurate or out of date.

  • Deletion – you can ask us to delete information we hold about you. We may not be able to delete information we are required to keep by law, and deletion does not affect records of bookings already made by organisations using Bix.

  • Restriction – you can ask us to restrict how we use your information in certain circumstances.

  • Portability – you can ask us for a copy of information you have provided to us in a structured, commonly used, and machine-readable format.

  • Objection – you can object to our use of your information for direct marketing or where we rely on legitimate interests.

  • Withdrawal of consent – where we rely on your consent, you can withdraw it at any time, without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please contact [email protected]. We may need to verify your identity before responding, to protect the information from being disclosed to the wrong person.

We aim to respond to requests within 30 days. If we cannot fulfil a request – for example, because we are required to keep the information by law, or because the request would unreasonably affect the rights of another person – we will explain why.

If you are unhappy with our response, you have the right to complain to a data protection authority. The relevant authority depends on where you are:

  • Australia: Office of the Australian Information Commissioner (OAIC), at oaic.gov.au.

  • United Kingdom: Information Commissioner's Office (ICO), at ico.org.uk.

  • European Union: the data protection authority of your country – a list is maintained at edpb.europa.eu.

  • New Zealand: Office of the Privacy Commissioner, at privacy.org.nz.


11. Children

Bix is not intended for children under 18 to use directly. Organisations may run events for children, and adults may book tickets for children to attend those events – that is normal use of Bix. But Bix accounts and profiles are intended for adults, and we do not knowingly create profiles for children under 18.

If you believe a child has provided us with personal information directly, please contact [email protected] and we will investigate.


12. Changes to this policy

We may update this Privacy Policy from time to time. Where we make material changes, we will post an updated version with a new "last updated" date and, where you have a profile or account with us, notify you by email at least 30 days before the changes take effect.

If you do not agree to changes, you may stop using Bix. Continued use after the changes take effect indicates that you accept the updated policy.


13. Cookies

Cookies are small text files that are placed on your device when you visit a website. We use cookies and similar technologies (such as pixels and local storage) to operate Bix and to understand how it is used.

We use the following categories of cookies:

  • Strictly necessary cookies – required to operate Bix, including cookies that keep you signed in and that protect against fraud. These cannot be turned off.

  • Functional cookies – help us remember your preferences and provide a smoother experience. We use these where you allow us to.

  • Analytics cookies – help us understand how Bix is used so we can improve it. We use these where you allow us to.

We do not use advertising cookies and we do not allow third parties to use cookies on Bix to build advertising profiles about you.

You can control non-essential cookies through your browser settings or, where we provide one, through our cookie preferences tool. Disabling strictly necessary cookies may affect your ability to use parts of Bix.


14. Contact

For privacy queries, complaints, or to exercise any of the rights described in this policy, please contact us at [email protected].

For general queries about Bix, please contact us at [email protected].

Bix HQ Pty Ltd (ACN 693 170 393) | Registered office: Level 1, 580 Church St, Cremorne, Victoria, Australia.

Did this answer your question?