Privacy
Effective Date: September 6, 2025
This Privacy Policy describes the policies of Top Things To Do (“Top Things To Do,” “TTTD,” “we,” “us,” or “our”) as they apply to the following services we operate (collectively, the “Service”):
www.topthingstodo.com and any other websites owned and/or operated by Top Things To Do that link to this Privacy Policy (the “Site”);
Any mobile applications we may offer now or in the future that link to this Privacy Policy (the “Apps”); and
All services made available by Top Things To Do through the Site and the Apps, as well as related email communications or other online interactions (together, the “Service”).
This Privacy Policy explains:
What personal data we collect,
How we use and share it,
Your rights and choices, and
How we protect your information.
While we take appropriate safeguards to protect your data, no online service can guarantee absolute security. Please read this Privacy Policy carefully and contact us with any questions at admin@topthingstodo.com.
1. Information We Collect
We collect information about you (“Personal Data”) in the following ways:
1.1 Personal Data You Provide
Account Data. Name, email, and password when you create an account.
Payment Data. If you purchase subscriptions, guides, or other paid features, our payment processors (e.g., Stripe, PayPal, or app stores) collect and process billing information. We do not store full payment card details.
Social Media Data. Information you choose to share when interacting with our social pages (Facebook, Instagram, LinkedIn, TikTok, etc.).
User-Generated Content. Reviews, ratings, photos, itineraries, posts, comments, and other content you submit, plus related metadata (time, location, format).
Contacts Book Data. If you allow the App to access your contacts, we may identify other users you know. You can revoke this at any time in device settings.
Additional Profile Data. Such as city, preferences (e.g., “favorite types of activities”), or profile photo, if you choose to provide them.
Sensitive Personal Data. If you turn on location services or otherwise share sensitive information (such as geolocation or personal preferences), you consent to its collection for providing relevant recommendations.
1.2 Personal Data We Generate Automatically
When you interact with our Service, we may log:
Log Data. IP address, browser type, operating system, date/time of request, and interactions with the Site/Apps.
Cookies & Tracking Data. We may use cookies, pixels, and similar technologies for site functionality, analytics, personalization, and advertising.
Device Data. Device model, operating system, and settings.
Usage Data. Features used, pages visited, lists saved, and time/frequency of activity.
Geolocation Data. If enabled, approximate or precise location (via IP or device GPS) to show relevant activities, venues, or events.
1.3 Data From Third Parties
We may receive:
Profile or login information from third-party sign-ins (Apple, Google, Facebook).
Marketing or demographic data from partners, event organizers, or affiliate networks.
Aggregated analytics from social platforms hosting our brand pages.
2. How We Use Personal Data
We use your Personal Data for the purposes described below. Where required by law (e.g., GDPR/UK GDPR), we rely on the listed legal bases:
Purpose | Categories Used | Legal Basis
Account creation
Account Data
Contractual Necessity
Service delivery (operate and personalize Site/Apps, show relevant activities, enable saved lists, etc.)
Account Data, Social Media Data, User-Generated Content, Additional Info, Geolocation Data
Contractual Necessity; Legitimate Interests
Payments & subscriptions
Account Data, Payment Data
Contractual Necessity
Customer support
Any data relevant to your request
Contractual Necessity; Legitimate Interests
Service improvement & analytics
Usage Data, Device Data, Cookies Data
Legitimate Interests; Consent (where required for cookies)
Fraud/security monitoring
Account Data, Payment Data, Log Data, Cookies Data
Legitimate Interests
Legal compliance
Any necessary data
Compliance with Law
Marketing & promotions (including email, push notifications, interest-based ads)
Account Data, Cookies Data, Device Data, Geolocation Data
Consent
Personalization & recommendations
Usage Data, Geolocation Data, Inferences
Legitimate Interests; Consent (for precise location)
3. How We Share Personal Data
We may share Personal Data as follows:
Affiliates. Within our corporate group and third-party partners.
Vendors & Service Providers. For hosting, analytics, customer support, payment processing, email delivery, marketing, and security.
Payment Processors. For handling transactions.
Business Transfers. In the event of a merger, acquisition, financing, bankruptcy, or sale of assets.
Legal Requirements. To comply with law, protect rights, prevent fraud, or ensure safety.
Other Users. Your profile and content may be visible to other users depending on your settings. Reviews, photos, and comments you submit are generally public.
Advertising Partners. For interest-based advertising, if you consent.
4. Your Privacy Choices
Depending on your location and applicable law, you may have rights to:
Access, correct, or delete your Personal Data.
Restrict or object to processing.
Withdraw consent where processing is based on consent.
Opt-out of marketing emails (via “Unsubscribe” link).
Manage cookies (via site settings or Global Privacy Control signals).
Opt-out of targeted advertising where applicable.
Submit requests by emailing admin@topthingstodo.com or using the “Manage Privacy” settings in your account.
5. Data Retention
We retain Personal Data only as long as necessary for the purposes set out in this Policy, including legal, accounting, or reporting requirements. Retention periods are determined based on sensitivity of the data, risks of harm, and applicable laws.
6. Children’s Privacy
The Service is not directed to children under 16. We do not knowingly collect data from children under 16. If you believe we have done so, contact admin@topthingstodo.com and we will delete the data as required.
7. U.S. State Privacy Rights
For users subject to U.S. state privacy laws (e.g., California CCPA/CPRA, Virginia VCDPA, Colorado CPA, etc.):
We may collect the categories of Personal Data listed in Section 1.
We may disclose them for “business purposes” to vendors, affiliates, and partners.
We may use data for targeted advertising (which may qualify as “selling” or “sharing” under some laws).
You have rights to know, access, delete, correct, opt out of targeted advertising/sharing, and non-discrimination.
To exercise your rights, contact admin@topthingstodo.com. We will verify your request via email authentication or as otherwise required by law.
We honor Global Privacy Control (GPC) signals for opt-outs. Our Site does not currently respond to “Do Not Track” (DNT) signals.
8. EEA and UK Users
Data Controller: Top Things To Do
EU/UK Representatives:
EU Representative: Instant EU GDPR Representative Ltd, Office 2, 12A Lower Main Street, Lucan Co. Dublin K78 X5P8, Ireland. Contact: contact@gdprlocal.com.
UK Representative: GDPR Local Ltd, 27–29 North Street, Brighton BN1 1EB, England. Contact: contact@gdprlocal.com.
Legal Bases for Processing: As outlined in Section 2 (Contractual Necessity, Legitimate Interests, Consent, Compliance with Law).
Your Rights: Under GDPR/UK GDPR, you may exercise rights of access, rectification, erasure, restriction, portability, objection, and withdrawal of consent. You also have the right to lodge a complaint with your supervisory authority.
9. International Transfers
We are based in the United States. Your Personal Data may be transferred to countries with less protective laws than your own. We implement safeguards (such as Standard Contractual Clauses) to protect data transferred outside the EEA/UK.
10. Security
We use technical, organizational, and physical safeguards to protect Personal Data. However, no system is completely secure. Please use strong passwords and safeguard your account information.
11. Links to Other Websites
The Service may contain links to third-party sites and services. Their privacy practices are governed by their own policies, not ours. We are not responsible for third-party practices.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Updates will be posted on this page with the “Last Updated” date revised. Significant changes may also be communicated via email or in-Service notice.
13. Contact Us
Top Things To Do
Email: admin@topthingstodo.com
