Privacy Policy

AVA’s Privacy Policy

At AVA we respect your privacy and take it extremely seriously. We will always endeavour to make clear at the point we collect personal data from you why we need it and how it will be used.

This privacy policy outlines how we use and treat personal data and has been prepared in line with the EU’s General Data Protection Regulation.

If you would like to get in touch about anything in this policy or about your Personal Information then please contact us directly.



1. Information we collect

  a) What personal data do we collect?

During the course of our operation we collect the following personal data:

  • Your name
  • Your email address
  • Your password for our site
  • Your payment details
  • Other information you actively send to us for example if you contact our customer support via email


  b) When and how do we collect this data?

We only collect the data we need to deliver the best AVA experience we can to you. This includes:

  • When you set up an AVA membership
  • When you sign-up to receive our communications (such as our newsletter and membership matters)
  • When you win an AVA auction and purchase an experience through AVA

When we engage in conversation with you (for example via email or on the phone) to answer queries or respond to comments and feedback


  c) What information do we collect when you visit our website and why?

We collect some personal data automatically when you visit our website. This includes:

  • IP address
  • Device type
  • Browser
  • Location

We use this information to provide us with feedback and analysis of how you use our site so that we can improve it.

We do not serve cookies for marketing purposes, only in order to monitor and improve our service.


2. Why do we share Personal Information with third parties and who are they?

We never sell, rent or otherwise give away your data to anyone.

We do share personal data with a select group of third parties in order to deliver the AVA experience to you.

We share Personal Information with the following third parties


Organisation Purpose Is data shared outside of the EEA? Organisation’s privacy policy
MailChimp To send and deliver emails to our AVA members and businesses Yes, Mailchimp is based in the US as are its servers. MailChimp is covered by the EU/US privacy shield
Google To provide us with web analytics so we can monitor and improve our website’s performance Yes, Google is based in the US as are its servers. Google is covered by the EU/US privacy shield
Stripe To process payments for us Yes, Stripe is based in the US as are its servers. Google is covered by the EU/US privacy shield


There are certain situations in which we may share access to your personal data outside of the situations outlined above. For example, we may be required by law, to protect someone’s life, or to comply with any valid legal process, government request, rule or regulation.


3. Why do we share data outside of the EU?

We may transfer personal data to a country outside of the European Economic Area (‘EEA’), for example if a third party we share information with has servers outside of the EEA. If this is the case we will ensure to have gained your consent or made sure that the transfer is legal and your data is secure by following the EU’s guidelines.

You can see above where we send information outside of the EEA and on what basis we do so.


4. What we don’t do with your Personal Information

We do not sell, rent or otherwise give away your personal data to anyone.


5. How do we keep your Personal Information secure?

We work very hard to keep your data secure. Our website is SSL certified and personal data is encrypted in transit and at rest. All of the third parties we work with are also assessed to ensure they follow the highest security standards.

We also follow industry standards on information security management. This means we don’t just secure your data technologically but we make sure that everyone who works for us and the processes they follow are continually monitored to ensure there are no vulnerabilities.

In the unlikely event of a breach of our security we will inform the relevant regulatory body as soon as we can and at a minimum, within 72 hours and, if your personal data was involved in the breach and the breach could impact you we would also inform you.


6. Changes to our privacy policy

We may change this privacy policy from time to time. But when we do, we’ll let you know either by changing the date or when significant changes happen by directly notifying you. By continuing to access or use our Services after those changes become effective, you agree to be bound by the revised Privacy Policy.


7. Your rights & our contact details

You can edit any of your personal data through your account.

You can also make any other requests of your data directly by emailing us at This includes asking to be forgotten, querying our use of your data or revoking your consent

We will only hold personal data for as long as we need it to deliver you the AVA experience.

We are open and transparent about our use of data so if you are unclear about how we use data or think we could improve how we deal with Personal Information, let us know!


AVA Experience Limited


Registered address: 47 Marylebone Lane, London, England, W1U 2NT