Protecting your private information is our priority. This Privacy Policy describes how Fourth Wall Tickets LLC (doing business as "CrowdWork") ("Fourth Wall Tickets," "CrowdWork," "we," "us," or "our") collects, uses, discloses, and otherwise processes personal information when you access or use our websites, ticketing platform, and related services (collectively, the "Services").
This Privacy Policy applies to personal information processed through the Services. By using the Services, you acknowledge that you have read and understand this Privacy Policy. Where required by applicable law (including in the UK/EEA), we will obtain your consent before processing personal information in a manner that requires consent (for example, certain cookies and direct marketing).
Fourth Wall Tickets LLC is the controller of the personal information described in this Privacy Policy when we determine the purposes and means of processing, including for account administration, platform operations, payments support, fraud prevention, security, analytics, and our own marketing where permitted by law.
When you buy or attempt to buy tickets or registrations for an Event, the applicable Venue/Organizer may also process your personal information for its own purposes, such as event administration, attendance management, customer service, refunds, venue operations, legal compliance, and event-related communications. In those circumstances, the Venue/Organizer may act as a separate controller/business under its own privacy notice.
If you have any questions about this Privacy Policy or our privacy practices, or if you would like to submit a privacy request or complaint, you may contact:
Privacy Contact: Privacy Officer, Fourth Wall Tickets LLC
Email: hello@crowdwork.com
Mailing Address: CrowdWork, 3838 N Ravenswood Ave, Office 247, Chicago, IL 60613
If you are located in Canada, you may direct privacy inquiries or challenges to our compliance with applicable privacy law to the Privacy Officer identified above.
If we are required to appoint a data protection officer, our DPO contact details will be made available here.
If we are required to designate an EU representative or UK representative for GDPR/UK GDPR purposes, their contact details will be made available here.
CrowdWork may collect personally identifiable information, as outlined below, to better provide you with products and services.
When you make a purchase or subscribe through the Platform, payment transactions are processed by CrowdWork and/or our third-party payment processor. We may receive limited payment-related information (such as a tokenized payment credential, card type, last four digits, and billing ZIP/postal code) and transaction details to complete and support the transaction; our payment processors generally handle sensitive payment card data in accordance with applicable security standards.
CrowdWork collects personal information in three ways: (1) information you provide directly (for example, when you create an account, contact support, enroll in a subscription, or purchase tickets/registrations); (2) information we collect automatically when you use the Services (for example, device and browser information, IP address, identifiers, and usage/activity data); and (3) information we receive from third parties (for example, Venues/Organizers in connection with Events and customer support, payment processors in connection with transactions, and integrations you connect as authorized by you). Certain information is required to register, complete a transaction, or access specific features; if you choose not to provide required information, we may be unable to provide those features. We use personal information to provide and secure the Services, process transactions, communicate with you about your account and purchases, provide customer support, prevent fraud and abuse, comply with legal obligations, and improve the Services.
We may receive personal information from third parties such as Venues/Organizers, payment processors, fraud-prevention providers, analytics providers, connected integrations, and referral or promotional partners. Where required by applicable law, when we receive personal information indirectly rather than from the individual, we will provide the individual with the applicable privacy information within the timeframe required by law, unless an exception applies.
Depending on how you use the Platform, we may collect: (a) identifiers (e.g., name, email address, phone number, account credentials); (b) commercial information (e.g., tickets purchased, subscriptions, transaction history); (c) payment information (e.g., payment method details, typically processed and stored by our payment processor); (d) internet or other electronic network activity (e.g., IP address, device identifiers, browser type, pages viewed); (e) location data (approximate location derived from IP address); and (f) communications (e.g., messages to support, survey responses). We may also receive information from venues/organizers (e.g., event details and customer-service communications) and from third-party integrations you connect (as authorized by you).
| Purpose of Processing | Categories of Personal Information | Legal Basis |
|---|---|---|
| To create and manage user accounts, authenticate users, and provide login functionality | Identifiers and account information, such as name, email address, username, password, account preferences, and related account credentials | Performance of a contract |
| To process ticket purchases, subscriptions, registrations, payments, refunds, and related billing support | Identifiers, contact information, transaction information, payment-related information, order history, billing details, and event participation information | Performance of a contract |
| To provide customer support, respond to inquiries, troubleshoot issues, and maintain service records | Identifiers, contact information, account information, transaction history, support communications, and any information you choose to provide in connection with a request | Performance of a contract, and in some cases our legitimate interests in providing support and improving service quality |
| To protect the Services, detect and prevent fraud, unauthorized access, abuse, suspicious activity, and other harmful or unlawful conduct | Identifiers, device information, IP address, log and usage data, account activity, transaction data, and security-related information | Our legitimate interests in protecting the Services, users, and business operations, and in some cases compliance with a legal obligation |
| To send administrative, transactional, operational, or service-related communications, including confirmations, receipts, notices, updates, and security alerts | Identifiers, contact information, account information, transaction information, and communications preferences | Performance of a contract, and where appropriate our legitimate interests in operating and securing the Services |
| To analyze use of the Services, improve performance, develop new features, understand user interactions, and maintain internal reporting and analytics | Device information, browser information, IP address, cookie or similar technology data, usage data, and inferred interaction data | Our legitimate interests in operating, improving, and developing the Services, and consent where required by applicable law for analytics cookies or similar technologies |
| To send marketing or promotional communications by email, SMS, or similar channels | Identifiers, contact information, marketing preferences, account information, purchase history, and engagement data | Consent where required by applicable law, and otherwise any other lawful basis permitted by applicable law |
| To comply with applicable law, enforce our terms and policies, respond to lawful requests, establish or defend legal claims, and maintain appropriate records | Any categories of information reasonably necessary for the relevant compliance, recordkeeping, investigation, or dispute-resolution purpose | Compliance with a legal obligation, and where applicable our legitimate interests in protecting our legal rights and business interests |
Where we rely on legitimate interests, those interests generally include operating, securing, improving, and defending the Services, preventing fraud and abuse, supporting customers, and understanding how users interact with the Services in a privacy-respectful way.
We determine the applicable legal basis for each processing activity before carrying it out and describe that basis in this Privacy Policy. If the relevant legal basis for a processing activity materially changes, we will update this Privacy Policy as required by applicable law.
If you are located in the United Kingdom or European Economic Area, we process personal data only where we have a lawful basis, including: (a) performance of a contract (to provide the Platform, process transactions, and manage your account); (b) legitimate interests (to secure, maintain, and improve the Platform; prevent fraud and abuse; and support customers), balanced against your rights; (c) compliance with legal obligations; and (d) consent, where required (including for certain cookies and direct marketing).
Your personal information may be processed in the United States and other countries where we or our service providers operate. These countries may have data-protection laws that differ from those in your place of residence. Where required by applicable law, we rely on appropriate safeguards for cross-border transfers, such as the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum or other approved transfer mechanisms. You may contact us for more information about the safeguards we use.
CrowdWork does not sell or rent your personal information for monetary consideration. We may, however, disclose personal information to third parties as described in this Privacy Policy, including to provide the Services, complete transactions, operate and improve the Platform, communicate with users, protect the Platform and our users, comply with law, and support our business operations.
We may share personal information with the following categories of recipients:
Venues/Organizers. When you purchase or attempt to purchase tickets or registrations for an Event, we share information with the applicable Venue/Organizer as needed to process the transaction, provide ticket or registration status, support entry and attendance, communicate about the Event (including changes, cancellations, or venue rules), handle refunds where applicable, and provide customer support. Venues/Organizers may process your information as independent controllers or businesses under their own privacy practices.
Payment processors and payment-related service providers. We may share personal information and transaction-related information with payment processors, billing providers, fraud-screening vendors, and other payment-related partners to process purchases, subscriptions, refunds, chargebacks, and related support.
Hosting, cloud, and infrastructure providers. We may share personal information with vendors that host, store, back up, secure, and support the Platform and related systems.
Analytics, measurement, and product-improvement providers. We may share identifiers, device information, usage data, cookie data, and related information with analytics and measurement providers to help us understand how the Services are used, improve performance, evaluate campaigns, and develop or improve features.
Customer support and communications providers. We may share personal information with vendors that help us provide support services, manage customer inquiries, send service-related or transactional communications, and deliver email, SMS, push, or similar messages.
Fraud, security, and abuse-prevention providers. We may share personal information with vendors and partners that support account security, fraud prevention, identity verification, risk scoring, bot detection, access control, and investigations into suspicious, malicious, fraudulent, or unlawful activity.
Identity verification providers. If we use identity verification tools in connection with account security, age checks, payment risk, fraud prevention, or legal compliance, we may share relevant personal information with those providers for those purposes.
Advertising, marketing, and campaign-measurement partners. Where enabled and permitted by applicable law, we may share identifiers, internet or other electronic network activity information, cookie data, and related information with advertising, remarketing, social media, and campaign-measurement partners to measure, personalize, deliver, or optimize marketing and advertising. Some of these disclosures may be considered "sharing" for cross-context behavioral advertising or "targeted advertising" under certain U.S. state privacy laws.
Professional advisors and corporate transaction recipients. We may disclose personal information to auditors, lawyers, consultants, insurers, financing sources, and counterparties or participants in an actual or proposed merger, acquisition, financing, reorganization, bankruptcy, sale of assets, or other corporate transaction.
Legal, regulatory, and governmental recipients. We may disclose personal information to courts, regulators, law enforcement, government authorities, tax authorities, or other third parties where required or permitted by applicable law, legal process, or governmental request, or where we believe in good faith that disclosure is necessary to protect the rights, property, or safety of CrowdWork, the Services, our users, or others.
We may also disclose personal information within our corporate group and to affiliated entities for the purposes described in this Privacy Policy, where permitted by applicable law.
We require service providers processing personal information on our behalf to do so under contractual restrictions and to use appropriate safeguards designed to protect the information and limit its use to authorized purposes.
We (and our service providers) may collect and analyze information about how users interact with the Services (for example, pages viewed, features used, and approximate location derived from IP address) to understand usage, improve the Services, prevent fraud/abuse, and measure the effectiveness of communications and campaigns. Where enabled, we may also use cookies and similar technologies to personalize content and measure and deliver advertising, including by working with analytics and advertising partners.
Some disclosures of identifiers and internet/network activity information to advertising/analytics partners may be considered "sharing" for cross-context behavioral advertising (or "targeted advertising") under certain U.S. state privacy laws. You can control these disclosures by adjusting cookie preferences (where available) and, where required, we respond to browser-based opt-out signals such as the Global Privacy Control, as described below.
We do not engage in solely automated decision-making that produces legal effects or similarly significant effects concerning individuals. We may use automated tools and signals to help detect fraud, protect account security, personalize content, measure performance, and support analytics, advertising, or customer support workflows, but material decisions are not made solely by automated means in a manner that produces legal or similarly significant effects.
Information about your computer hardware and software may be automatically collected by CrowdWork. This information can include: your IP address, browser type, domain names, access times and referring website addresses. This information is used for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of the CrowdWork website.
We use cookies and similar technologies (such as pixels and SDKs) to operate the Platform, remember preferences, help with security and fraud prevention, understand how the Platform is used, and, where enabled, to measure and deliver advertising. Some cookies are set by third parties that provide analytics, advertising, and other services to us.
Some cookies and similar technologies may identify, locate, or profile users, including by linking browsing activity across sessions or services. Where required by applicable law, we will inform you of these technologies in advance and provide a means to activate or manage them.
You can control cookies through your browser settings. In addition, where we provide a cookie banner or preference center, you can use it to accept, reject, or manage non-essential cookies. If you are located in the UK/EEA, we will ask for your consent where required before setting non-essential cookies.
Non-essential analytics, personalization, advertising, and similar cookies or technologies will not be activated unless and until you provide consent where consent is required by applicable law, and you may withdraw or change that consent at any time through the cookie preference center or other controls we make available. Where we provide a cookie banner or preference center, it will allow users to accept, reject, or manage non-essential cookies, and users will be able to revisit those choices at any time.
Where required by applicable law, you may opt out of certain targeted advertising/"cross-context behavioral advertising" by adjusting cookie preferences or using other controls we provide. Where required, we also respond to browser-based opt-out signals, such as the Global Privacy Control.
This website contains links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of any other site that collects personally identifiable information.
CrowdWork secures your personal information from unauthorized access, use, or disclosure. CrowdWork uses reasonable administrative, technical, and physical safeguards designed to protect personal information, which may include encryption in transit, access controls, logging/monitoring, and vendor security requirements, as appropriate to the nature of the information and processing.
When personal information (such as a credit card number) is transmitted to other websites, it is protected through the use of encryption, such as the Secure Sockets Layer (SSL) protocol.
We strive to take appropriate security measures to protect against unauthorized access to or alteration of your personal information. Unfortunately, no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, you acknowledge that: (a) there are security and privacy limitations inherent to the Internet which are beyond our control; and (b) security, integrity, and privacy of any and all information and data exchanged between you and us through this Site cannot be guaranteed.
Depending on your location and subject to applicable law, you may have the right to request that we:
Access. Provide access to the personal information we hold about you and information about how we process it.
Correction / Rectification. Correct or update inaccurate, incomplete, or outdated personal information.
Deletion / Erasure. Delete certain personal information we hold about you, subject to exceptions permitted by applicable law.
Portability. Provide a copy of certain personal information in a portable, usable format, where required by applicable law.
Restriction. Restrict certain processing of your personal information, where permitted by applicable law.
Objection. Object to certain processing, including where we rely on legitimate interests and, where applicable, processing for direct marketing purposes.
Withdrawal of consent. Withdraw consent at any time where we rely on consent as the legal basis for processing. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
Direct marketing choices. Opt out of marketing communications by using the unsubscribe link in an email, adjusting your account settings where available, replying STOP to SMS messages where supported, or contacting us using the contact details below.
Targeted advertising / cross-context advertising choices. Where required by applicable law, you may opt out of targeted advertising or cross-context behavioral advertising by adjusting your cookie preferences, using other controls we make available, or using browser-based opt-out signals we recognize, such as the Global Privacy Control, as described in this Privacy Policy.
Complaints. If you are located in the EEA or UK, you have the right to lodge a complaint with the supervisory authority in the country of your habitual residence, place of work, or the place of the alleged infringement.
Appeals. If we deny your privacy request, you may have the right to appeal our decision where provided by applicable U.S. state privacy law. We will explain how to do so, if applicable, in our response.
Canada. If you are located in Canada, you may request information about our privacy practices and may challenge our compliance with applicable privacy law by contacting us using the details below.
You may submit privacy requests using the contact information provided in this Privacy Policy. We may take steps to verify your identity before processing your request, and we may deny or limit a request as permitted by applicable law.
We may not be able to fulfill a request in full where an exception applies, including where the information is needed to complete a transaction, provide a requested good or service, perform a contract, detect or prevent security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, debug or repair errors, exercise or defend legal claims, comply with legal obligations, maintain appropriate business and financial records, enforce our agreements, or otherwise use the information in a manner permitted by applicable law.
If you request deletion of personal information before an Event, while a ticket or registration remains active, we may delete or de-identify personal information that is not needed for fulfillment while retaining a limited record necessary to complete the transaction, maintain the validity of the ticket or registration, support attendance or entry, process refunds or chargebacks, prevent fraud, maintain security and audit logs, respond to customer-service issues, and comply with legal obligations. During that period, we may restrict the retained information from non-essential uses, including marketing and other secondary processing, and then delete, de-identify, or further minimize that information in accordance with our retention schedule once the Event and applicable post-Event operational periods have ended.
We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, complete transactions, maintain accounts, support Events, comply with legal obligations, resolve disputes, enforce agreements, and protect the Platform and our users.
Retention periods vary depending on the type of information and the reason we collected it. In general:
Account and profile information is retained while your account remains active and thereafter for a reasonable period as needed to maintain business records, support reactivation, resolve disputes, enforce our agreements, or comply with legal obligations, after which it is deleted, anonymized, or archived according to our retention schedule.
Transaction, order, billing, tax, and payment-related records are retained for as long as necessary to complete the transaction and for additional periods required by applicable accounting, tax, chargeback, fraud-prevention, and financial recordkeeping obligations.
Ticket fulfillment records are retained where a deletion request is received before an Event or before a ticket or registration has expired, and may be kept until the ticket is used, expires, or the applicable refund, dispute, chargeback, fraud-review, audit, and customer-service periods have ended. During that period, the record may be restricted from non-essential processing, and only the information reasonably necessary for fulfillment, security, compliance, and dispute handling will be retained.
Customer support communications and service records are retained for as long as reasonably necessary to respond to inquiries, provide support, investigate complaints, resolve disputes, maintain business records, and improve the Services.
Usage, device, log, security, and fraud-prevention information may be retained for as long as reasonably necessary to secure the Platform, investigate incidents, detect and prevent fraud or abuse, enforce our terms, and comply with legal obligations.
Cookie, consent, and privacy-preference records may be retained for as long as reasonably necessary to honor your preferences, demonstrate compliance, and maintain appropriate audit records.
Marketing records and suppression lists may be retained for as long as necessary to maintain your marketing preferences, honor opt-out requests, prevent unwanted communications, and comply with applicable law.
Information related to legal claims, investigations, or regulatory matters may be retained for longer where necessary to establish, exercise, or defend legal claims, respond to lawful requests, or comply with legal, regulatory, tax, accounting, or reporting obligations.
When we no longer need personal information for the purposes described above, we will delete, anonymize, or de-identify it, unless applicable law requires or permits continued retention.
CrowdWork is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are under 18 (or the age of majority where you live), you may use the Platform only with the involvement/permission of a parent or legal guardian.
You will be able to connect your CrowdWork account to third party accounts. BY CONNECTING YOUR CROWDWORK ACCOUNT TO YOUR THIRD PARTY ACCOUNT, YOU ACKNOWLEDGE AND AGREE THAT YOU ARE CONSENTING TO THE CONTINUOUS RELEASE OF INFORMATION ABOUT YOU TO OTHERS (IN ACCORDANCE WITH YOUR PRIVACY SETTINGS ON THOSE THIRD PARTY SITES). IF YOU DO NOT WANT INFORMATION ABOUT YOU, INCLUDING PERSONALLY IDENTIFYING INFORMATION, TO BE SHARED IN THIS MANNER, DO NOT USE THIS FEATURE. You may disconnect your account from a third party account at any time. Users can disconnect their accounts by emailing us directly at support@crowdwork.com.
We may send transactional, administrative, security-related, and service-related communications when necessary to provide the Services, complete transactions, administer accounts, support Events, or comply with legal obligations. We may also send marketing or promotional communications where permitted by applicable law and, where required, with your consent. For recipients in Canada, commercial electronic messages will be sent in accordance with applicable law, including applicable consent, sender-identification, and unsubscribe requirements.
If you would like to stop receiving marketing or promotional communications via email from CrowdWork, you may opt out of such communications by clicking on the UNSUBSCRIBE link in the footer of the email.
If you are located in the UK/EEA, we will send marketing communications only where permitted under applicable law, including where required, with your consent. You may withdraw consent at any time by using the unsubscribe mechanism or contacting us. Unsubscribe requests will be processed within the timeframe required by applicable law.
CrowdWork reserves the right to change this Privacy Policy from time to time. We will notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your account, by placing a prominent notice on our website, and/or by updating any privacy information. Your continued use of the Services after the effective date of an updated Privacy Policy constitutes your acknowledgment of the update. Where applicable law requires consent for a particular processing activity (for example, certain cookies or direct marketing in the UK/EEA), we will obtain that consent through appropriate mechanisms.
In Canada, individuals may request information about our privacy practices, including the name or title and contact information of the person accountable for our privacy program, the means of gaining access to personal information we hold, and how to challenge our compliance with applicable privacy law.
CrowdWork welcomes your questions or comments regarding this Privacy Policy. For general inquiries, you may contact us at:
Email Address: hello@crowdwork.com
For privacy requests, complaints, and data protection inquiries, please use the contact details listed in the "Contact Details; Privacy Inquiries" section above.
Last Updated: April 15, 2026