Legal
Nightshift Media Group Pty Ltd
ABN: 83 696 072 483 · ACN: 696 072 483
This policy explains how we collect, use, and protect your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
Last updated: March 2026
This Privacy Policy applies to Nightshift Media Group Pty Ltd (ABN 83 696 072 483 / ACN 696 072 483) ("we", "us", "our"), the brand owner and promoter of "MESSY" student nights. Our ticketing platform operates at messynights.com.au.
Purchase Information: When you purchase a ticket we collect your name, email address, and payment details. Payment card data is processed directly by Stripe and is never stored on our servers.
Ticket & Entry Data: We generate a unique QR code linked to your order. Door staff scan this at entry. We record scan time and entry status.
Device & Usage Data: We may collect standard web analytics data (browser type, pages visited, referring URL) to improve site performance. This data is aggregated and not linked to your identity.
Ticket Fulfilment: We use your name and email to send your ticket confirmation and QR code via email.
Event Operations: Your name and ticket status are used for door management and entry verification on the night.
Marketing: With your consent, we may send you information about future MESSY events. You can unsubscribe at any time via the link in any marketing email.
Legal & Compliance: We may retain transaction records as required by Australian tax law (GST obligations under the A New Tax System (Goods and Services Tax) Act 1999).
We share your data only with trusted third-party providers who help us operate the platform. Each provider is bound by their own privacy obligations.
Stripe: Payment processing. Receives your name, email, and payment details. Stripe is PCI-DSS Level 1 certified. See stripe.com/au/privacy.
Resend: Transactional email delivery. Receives your name and email address to deliver your ticket confirmation. See resend.com/privacy.
Meta / TikTok (where active): If advertising pixels are active on the site, hashed email addresses and event data (e.g. 'Purchase') may be shared for ad measurement and retargeting. You can opt out via your Meta or TikTok ad settings.
Storage: Your data is stored on secure cloud infrastructure. We do not store full card numbers, CVV codes, or card expiry dates.
Retention: We retain purchase records for 7 years as required by Australian tax law. Marketing consent records are retained until you withdraw consent.
Security: We implement industry-standard security measures including HTTPS encryption, access controls, and regular security reviews.
Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), you have the right to access the personal information we hold about you, request corrections to inaccurate data, request deletion of your data (subject to legal retention requirements), and opt out of direct marketing at any time. To exercise any of these rights, contact us at [email protected].
Our website uses essential cookies required for checkout functionality. We do not use tracking cookies without your consent. You can disable cookies in your browser settings, though this may affect checkout functionality.
We may update this Privacy Policy from time to time. Material changes will be communicated via a notice on our website. Continued use of the platform after changes constitutes acceptance of the updated policy.
For privacy enquiries or complaints, contact us at [email protected]. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
MESSY is a brand of Nightshift Media Group Pty Ltd · ABN 83 696 072 483
Privacy enquiries: [email protected]