Last Entry
Legal

Privacy Policy

Last updated: 15 June 2026

This Privacy Policy explains how Last Entry LTD ("Last Entry", "we", "us", "our") collects, uses, and protects your personal data when you use our website, app, and services. We are a company based in Sheffield, United Kingdom, and we are the data controller for the personal data described here.

We take your privacy seriously and only collect the data we need to run a safe ticket marketplace for students. If you have any questions about this policy or your data, contact us at support@lastentry.org.

1. Who we are

Last Entry is a peer-to-peer ticket resale marketplace for verified students at the University of Sheffield and Sheffield Hallam University. We act as a facilitator between buyers and sellers; we are not the seller of the tickets listed on the platform.

2. The data we collect

  • Account information — your name, your university .ac.uk email address, your university, and verification status.
  • Transaction information — the tickets you list, buy, or sell, prices, and order references. Card payments are processed by our payment provider; we do not store your full card details.
  • Ticket information — tickets you upload for sale, including information extracted from them to confirm they are genuine and not duplicated.
  • Dispute information — where you report a problem, any evidence you submit, which may include a photo and the location and time it was taken.
  • Technical information — device and usage information needed to keep your account secure and prevent fraud and abuse.
  • Communications — messages you send us, for example support emails.

3. How and why we use your data

  • To create and verify your account and confirm you are an eligible student.
  • To operate the marketplace — listing, buying, and selling tickets.
  • To process payments, hold them securely until after an event, and release payouts.
  • To verify tickets are genuine, detect duplicates, and prevent fraud and abuse.
  • To handle disputes and refunds.
  • To provide customer support and send you essential service messages.
  • To meet our legal and regulatory obligations.
  • To send marketing messages only where you have actively opted in. You can withdraw consent at any time.

4. Legal bases (UK GDPR)

We process your data on the basis of: performance of a contract (to provide the service you have signed up for); legitimate interests (to keep the platform safe and prevent fraud); legal obligation (for example tax and accounting records); and consent (for optional marketing).

5. Who we share data with

We share data only with the service providers we need to run Last Entry, and only as far as necessary. These include:

  • Stripe — for processing payments and managing seller payouts.
  • Resend — for sending verification and service emails.
  • Our hosting and database providers — for securely running the service and storing data.

We do not sell your personal data. We may disclose data where required by law or to protect the rights, safety, and property of our users or Last Entry.

6. International transfers

Some of our service providers process data outside the UK. Where they do, we rely on appropriate safeguards (such as UK adequacy regulations or standard contractual clauses) to make sure your data is protected to UK standards.

7. How long we keep your data

We keep your personal data for as long as you have an account and for as long afterwards as we need to meet legal obligations. Records relating to transactions may be retained for up to six years to meet tax and accounting requirements, after which they are deleted or pseudonymised. Dispute evidence is kept only as long as needed to resolve the dispute and meet our legal obligations.

8. Your rights

Under UK data protection law you have the right to access your data, correct it, delete it, restrict or object to how we use it, and to data portability. To exercise any of these rights, email support@lastentry.org from your registered email address. You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.

9. Cookies and tracking

This website does not use cookies or third-party tracking. Our app uses only the essential cookies and storage needed to keep you signed in and the service working — it does not track you across other apps or websites.

10. Children

Last Entry is intended for university students. It is not directed at children under 16, and we do not knowingly collect their data.

11. Changes to this policy

We may update this policy from time to time. When we do, we will change the "Last updated" date above and, where appropriate, let you know.

12. Contact us

For any privacy question or request, contact us at support@lastentry.org.