PRIVACY NOTICE

PERSONAL DATA PROTECTION POLICY

TICKETCORE is committed to protect your privacy and handle your personal data in an open and transparent manner, in whatever capacity you communicate or cooperate with us, such as indicatively and non limited to, prospective or active clients, employees, suppliers, traders, individuals, consumers or collaborating third parties and in accordance with the definitions and requirements of the General Data Protection Regulation under number 2016/679 on the Protection of natural persons with regard to the processing of personal data and on the free movement of such data.

Collection and processing of personal data depends on the service we provide to you in each individual case, on the case-by-case contractual relationship that links us to the subject of Personal Data, on the legal obligations imposed by the applicable law, the legal rights granted to us by it, and by the explicit consent of the subject on a case-by-case basis. They are subject to processing within the explicitly defined purposes, based on the principles of legality, objectivity and transparency, restriction of purpose and storage period, data minimization, accuracy, integrity and confidentiality, and within the framework of necessity and proportionality governing each processing operation. At the same time, the taking of technical and organizational security measures from the outset ("by design and by default") is ensured for the compliance with the above system of principles, as well as its periodic review and updating.

Please read this Ticketcore Personal Data Protection Policy. By using our website and signing the relevant statement of consent, wherever you are required to do so, you unreservedly accept the practices described herein, the terms of which govern henceforth the contractual relationship between us and are incorporated into the terms of use of each service.

Scope of Privacy Notice

The status of personal data protection is hereby defined, in the framework of their processing by TICKETCORE and involves persons who have transactions with it, while at the same time the system of rules is described, on the basis of which such processing takes place. This Policy may be amended and adapted at the discretion of TICKETCORE and within the framework of the applicable legislative framework.

Company details

TICKETCORE company operates as controller of the processing of your personal data. Contact details with it are: Address: Building B, Science & Technology Park of Crete, Heraklion, 70013 // e-mail: info@ticketcore.gr // contact phone +30 2810391244.

All kinds of written requests, as provided for herein and in the law, shall be submitted to the above postal and e-mail address, either electronically or in paper form (in person by the data subject himself/herself or by an authorization to a third person certified for the authenticity of signature).

Technical and Organizational Security Measures

The company shall take from the outset ("by design and by default") the appropriate technical and organizational measures to ensure the protection of personal data and access thereto only by the controller or other persons authorized by it and exclusively for the legitimate purposes, for which they have been collected, based on the current regulatory framework.

Definitions

In the framework hereof, the definitions of the Regulation are used, among which the following are indicatively but not limited to mentioned:

«personal data» means information relating to identified or identifiable natural persons (“data subjects”), that is, persons who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

«processing of personal data» means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction; Finally,

«controller» means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

Means of collection and period of storage of personal data

TICKETCORE shall receive and process personal data only in the framework of a transactional relationship and within the scope of its purpose of activities, depending on the type of contract or service provided or the work entrusted to it, which, indicatively but not limited to, may be: identification details, contact details (address, telephone number, e-mail address), Tax Identification Number, Social Insurance Registration Number, bank account details and so on, depending on the case). The above details are received by our company from the following sources and in the following ways:

  • When you create an account, buy a ticket, we collect your information, which, depending on the service we provide to you, may include your contact and billing details.
  • When you use our websites or apps, we collect information such as: which browser or device you use, your IP address and/or location, the website from which you come from, what you used and did not use on our website/apps or the website you visit when you leave ours. For more information on how we collect such details, please read our Cookies Policy.
  • When you use a social networking feature within our website or apps and you share on social networking platforms, the website of the media shall provide us some information about you. If you face accessibility problems or needs, we want to make sure that you have the best experience when watching our events. To accomplish this, we need to collect details of your needs (which may include the provision by you of information about your mental or physical health).

In the few cases where we collect personal information from children, we always ask for parental consent, while, if we ever collect such information, we shall do so for the purposes specifically defined upon collection.

We use suppliers that sort/compare geo-demographic data that help us better personalize our services to you. If you prefer us not to do so, please read the section entitled "Rights of Subjects" below.

Your personal data shall be stored for the period of validity of the contractual or business relationship between us or for as long as your relevant consent applies or for the reasonable legal time so that our rights or legitimate interests are served or for the exercise of our legitimate rights or in compliance with the applicable law. You may withdraw your consent to the processing of your personal data at any time by notifying us in writing of your relevant request, acknowledging, however, that the receipt of the request does not affect the legality of previous processing, nor does it impose compliance with your request, if there is another superior legitimate reason.

Purpose of Personal Data Processing

The company performs the necessary and required processing of your personal data, with the least possible interference, in order to fulfill the following, indicatively mentioned, purposes:
For the performance of our contract with you
We use your information when you enter into a contract with us (for example when buying a ticket) so that we can:

  • process your order
  • get paid, and
  • offer customer support services to you

For our legitimate business interests

  • To carry out research and market analyzes that help us improve and personalize our products and services.
  • For our marketing purposes, unless your consent is required for such marketing.
  • To send you customer service emails, in which confirmation of reservation and event reminder are included.
  • To prevent or detect illegal behaviors, protect or enforce the exercise of our legitimate rights or as otherwise permitted by law. For example, by ensuring that tickets arrive at the hands of true fans. Therefore, we may use your information to prevent the black market of tickets, the infringement of our intellectual property (e.g. trademarks owned by us or by our Partner in the event), fraud, or other offenses.
  • To ensure the security of our operations and of the operations of our Partners in the Event.
  • To create a profile for you that will help us personalize our services to you. For example, if you buy tickets for Rock music events and have given your consent for marketing purposes, we shall let you know about other Rock music events that we think might be of interest to you. For more information, this section is below detailed.

About personalization settings of the user

When we know you better, we can offer you more of the things you want. To make sure that our websites and messages are relevant to you, we create a user profile with the information we know about you and the way you use our services.

How to disable personalization

Just disable the "Allow personalization" option in your account settings. We shall cease any personalization and use your data only for basic services, such as control for fraud or black market activity - and any pre-sale to Verified Fans. If you do not have an account, you can contact us in order to disable it for you.

What happens when you disable personalization?

We shall no longer use your data to consider what you might be interested in. That means that you shall not receive any personal suggestions and that any newsletters you subscribe to shall be of a general nature. However, if you have requested to receive notifications for specific artists or event venues, you shall still receive them.

We shall continue to take actions of profile creation, where we need to do so in order to offer you our services, such as, for example, for anti-fraud control purposes, and where you specifically ask us to do so, such as for a Pre-sale to Verified Fans.

Disabling personalization is the same thing as disabling cookies?

No, they are separate actions. To check your cookies settings, you can use our own cookies consent tool. For more information, please read our Cookies Policy.

Where you have given your consent

  • To communicate with you for information or offers about our upcoming events, products, or services – this can be done via email, push notifications and network, via SMS or social media. You can change your marketing preferences at any time. Please read the section entitled "Rights of subjects" below.
  • To provide you with personalized advertising and marketing announcements on our websites and apps (please read Cookies Policy for more information).
  • To process your medical data in order to meet your accessibility needs/requirements, where that is specifically requested and explicit consent has been given.

Recipients of personal data

Only the controller, its representatives or processors or legally authorized persons, within the scope of their competencies, shall have access to the personal data concerning you, within the framework of proper execution and fulfillment of the contractual, legal and regulatory obligations of the company. The company shall not transfer or disclose personal data to third parties except in the following cases:

  • To third-party service providers to us (sometimes known as data processors), such as cloud computing service providers providing the information technology infrastructure in which our products and systems are built, who are bound by Regulation 679/2016 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
  • We may share your information with our Partners in the Event so that they can organize the event and for other reasons outlined in their privacy policies. When you buy a ticket we shall always name our Partners in the Event and you shall always be offered the option to subscribe to the mailing list to receive marketing messages from them.
  • If you buy tickets through our platform, we may disclose your details to the buyer or seller (as the case may be) for the purpose of fulfilling the order, that is to receive the ticket you purchased or to get paid for the ticket you sold.
  • To third parties who supply goods and services that you have purchased (e.g. ticket insurance,) so that they can process and fulfill your orders.
  • To government services or other authorized agencies, where that is permitted or required by law.
  • To any successor of our business or any part of it.

Our company lawfully ensures that the processors on its behalf meet the required conditions, provide sufficient security guarantees for the implementation of appropriate technical and organizational measures, and comply with the confidentiality commitment, so that processing of personal data does not affect the rights of subjects.

Rights of Subjects

In the context of application of the Regulation, you retain the following rights, which you can exercise, by submitting the relevant forms, electronically or in writing, as follows:

  • Right of access (information on stored personal data and receipt of copies).
  • Right to rectification (rectification of inaccurate or incorrect information of the stored personal data).
  • Right to erasure (erasure of data or cessation of their use, subject to the restrictions provided for in the Regulation).
  • Right to restriction of processing (subject to the conditions laid down in the Regulation).
  • Right to portability (direct transfer of personal data to a third organization, as recommended by you, in an appropriately structured format).
  • Right to object (provided that there are no compelling and legitimate reasons for processing, superior to your interests, rights or freedoms or for the establishment, exercise or defense of legal claims).

Our company shall respond free of charge to your requests, without undue delay, and within one month from their receipt, except for special cases where such deadline may be extended by another two months, if necessary, given the complexity or volume of requests. In the latter case, the company shall notify the extension and the reasons for the delay, within one month from the receipt of the request. If your request is considered to be manifestly unfounded or excessive by the controller, it reserves the right to impose a reasonable fee for its processing, taking into account the costs for its satisfaction or even to refuse to carry on with the request.
If your request can not be met, the company shall inform you, without delay, no later than one month from its receipt, of the relevant reasons and of your right to file a complaint with the Hellenic Data Protection Authority (HDPA – 1-3 Kifissias Avenue, P.C. 11523, Athens, tel.: 210-64.75.600 or e-mail: contact@dpa.gr), but also about your right to appeal to the competent judicial authorities.

Transfer to third parties

When you use the website and provide us with personal information, Ticketcore shall act as an intermediary and shall not transfer or share your information with third parties, except to the extent that this is required to complete your order and fulfill requests regarding the services provided by us or to suggest ways to improve your overall experience with the services provided. Such third parties may be show producers, service providers, seat reservation systems and other global distribution systems.

In Ticketcore we select trusted providers and put our efforts to set contractual restrictions to the third parties who receive your personal data, in order to ensure that they use them in accordance with this Policy and the applicable legislation on data protection in Europe (GDPR 2016/679) and internationally. However, we can not guarantee that they will not use or disclose such data without your permission. Therefore, we suggest to you to carefully review the personal data protection practices of any third-party providers/suppliers whose products or services you purchase through our websites. In addition, third-party providers may contact you, when necessary, to obtain additional information about a possible service, payment or reservation.

In order to process your data, we may need to transfer your information to other countries, including countries basically inside and exceptionally outside the European Economic Area (EEA), on the basis of competence decisions by EU, corporate binding rules, standard contracts and approved codes of conduct.

In any case, we shall take the appropriate technical and organizational measures to ensure that your personal information is transferred, stored and processed in accordance with the appropriate security standards and in accordance with the terms of this Policy and the applicable data protection laws from time to time. Finally, we may transfer or disclose your personal information to official, national or foreign, governmental and supervisory bodies (e.g. police, Bank of Greece, international tax authorities, etc.), when requested to comply with the legislation and prevent unlawful actions to the detriment of us and to the detriment of our clients (e.g. fraud, money laundering, etc.).

Security of personal data

In Ticketcore we have trained and responsible staff, and we recognize the importance of privacy protection and of the protection of all your personal information. For this purpose, we have appropriate security policies and we use the appropriate technical and organizational measures and tools, such as anonymization, pseudonymization, data encryption, firewalls, establishment of access levels, authorized employees, training of our staff, periodic inspections, compliance with security and business continuity standards ISO, PCI for data and payment cards protection etc.

Any partner who has access to the above information uses them only to serve the above purposes. We share the information you give us only in the ways described in this Policy and in accordance with your explicit and specific consent per type of processing, which you may withdraw at any time and freely by contacting us.

Links to third-party websites

Ticketcore’s website may contain links to third-party websites, independent agencies, such as, indicatively, show producers, payment service providers etc., which are operated and maintained exclusively by them, and which we do not control as we mentioned above.

Ticketcore shall not bear any responsibility for the content, actions or policies of such websites. Please read carefully the relevant data protection policies on the different websites you visit, as they may significantly differ from ours.

Display of targeted advertising –Newsletter

We may use your personal information together with other information we have collected, following human intervention from our sales department, to display ads related to your obvious preferences, on our website or on another website. However, we do not share your personal information with third parties so that they can send you relevant ads.

If you wish us to stop sending you notifications or offers, you may use the unsubscribe link at the end of the email you received from us.

Unsolicited commercial communication

Ticketcore prohibits the use of our website or services for the purpose of transfer, distribution or delivery of any massive or unsolicited e-mails (spam). We also do not allow the sending of messages to and from our clients that use or contain invalid or forged headings, invalid or non-existing domain names, techniques to conceal the origin of any message, false or misleading information or violate the terms of use of each website.

We do not permit in any way the collection of e-mail addresses or general information of our customers and subscribers through our website or our services. We do not allow and do not authorize any attempt of using our services in a way that could harm, disable, burden any part of our services, or prevent anyone wishing to use our services.

If we consider that unauthorized or inappropriate use of any of our services takes place, we may, without notice, at our sole discretion, take appropriate steps to block messages from a particular domain, an e-mail server or an IP address. We have the ability to immediately delete any account that uses of our services, which, at our absolute discretion, transmits or is associated with the transmission of any messages that violate this policy.

Cookies Policy

Cookies are used on our website to improve it and to upgrade your experience. This Policy explains how we do this.

What is a Cookie?

Cookie is a text file that contains a small amount of data that is transformed into the device you use to access our site and stored on your device's hard drive. Such cookies are intended for a variety of purposes, including allowing our website to recognize your device when you visit it again, ensuring that the right content is sent to you and storing information about your preferences or services provided to you. Web beacons or other similar files can also do the same. In this Policy we use the term "Cookies" to refer to all files that collect information in this way.

Which Cookies do we use?

Cookies on our site can be divided into five categories:

  • i. Necessary cookies
    Certain cookies are necessary for the operation of our site. For example, they allow us to recognize users so that they can log in to their accounts. If you choose to disable these cookies, you shall not be able to access your account.
  • ii. Performance cookies
    We use cookies to analyze the way our visitors use our site and to monitor the upgrading of the performance of our website. In that way we can quickly identify and solve possible problems. For example, we may use performance cookies to track which pages are the most popular. We may also use performance cookies to refer to links to other pages that we consider you are interested in based on the pages you have visited.
  • iii. Functionality cookies
    We use functionality cookies to remember your preferences, such as, for example, any changes you've made to them through your account settings. We may also use functionality cookies to provide you with other services such as, for example, to allow you watch video files on our website.
  • iv. Advertising or targeting cookies
    Both we and our third-party advertisers use cookies to provide you with advertisements that we consider relevant and interesting to you. For example, if you see an artist or event, you may see ads for the same artist or event or similar on our website or other websites you visit.
  • v. Third-party cookies
    Please keep in mind that third parties (e.g. advertising networks) may use cookies, which we do not have under our control, in order to provide you with targeted advertising. Such cookies may be performance or advertising or targeting cookies. We do not control Third-Party cookies and for more information you should refer to the Privacy Policy and/or Cookies Policy of third parties.

Change of browser settings>

You may change your browser settings to restrict the use of Cookies. These settings are typically found at the "options" or "preferences" menu on your Browser.

Contact with Ticketcore and validity of this Policy

If you have questions or comments about this personal data protection policy or if you believe that we have not followed the principles set out herein, please email us at info@ticketcore.gr or contact us at the following address: Science & Technology Park of Crete, Heraklion, 70013.

This Policy was created on the basis of recent legislation on the protection of personal data and General Data Protection Regulation (EU 2016/679). Any changes to this Policy shall apply to the information collected from the date of publication of the revised version on this website, as well as to the existing information we hold. Using the website after the publication of changes implies acceptance by you of these changes.