Privacy Policy

Privacy Policy

Overview

I am committed to upholding the Data Protection principles of good practice. Protecting your privacy is important to me, and I strive to keep all information relating to you confidential in accordance with this statement and the law. As part of the normal operation of my services, you may voluntarily provide me with information about yourself. The purpose of this Data Privacy Policy is to explain what personal data I collect about you, how that personal data might be used and how I protect your personal data and privacy.

I use Book That In which integrates with the Stripe payment gateway to ensure high performance and security. Each of these organisations is responsible for their handling of your data and is governed by their own respective privacy policy.

What is the legal basis for processing your personal data?

Processing is necessary for the performance of a contract (i.e. the processing of ticket bookings on behalf of the Event Organiser or storing your information if you choose to join a waiting list for an event) and legitimate interest (storage of IP Addresses for risk management or Cookies to allow full access and smooth progression through our website).

How do I process your personal data?

I comply with my obligations under the General Data Protection Regulations (GDPR) by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining unnecessary data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.

I only collect personal information about you when you specifically provide me with such information voluntarily. The information that I collect includes:

• Name

• Address

• Email

• Contact number

• Business name/ position (for some business events)

• Payment card details – card details are encrypted for processing.  I do not store card details within my system. 

• IP address - I may collect information about your computer, including where available, your IP address, operating system and browser type, for system security, customer support and site analytics. This statistical data cannot be used to identify a customer.

• Cookies – cookies are used to track visitors through my site and to save booking information as you move from page to page of the booking process.

I use your personal data for the following purposes:

• To process ticket bookings (including the booking, payment processing and ticket delivery)

• To send you email communication regarding your booking (to include booking reminders or to advise you of an event cancellation)

• To assist you with any query that you may have with your booking or payment

• To place you on a waiting list for a sold-out event at your request, and send updates as tickets become available.

• I may also use your data to perform quality assurance, sales analysis or other business analyses.

Sharing your personal data

I will not use your contact details for any marketing activities, and I do not sell Customer contact details to Third parties. I will only contact you regarding an existing booking or booking attempt, unless you give permission for marketing communications. This permission may be revoked at any time by emailing cmarx359@gmail.com, with the subject header: Unsubscribe.

As the Event Organisers, my team and I will use this information to:

• Manage ticketing for an event

• Facilitate ticket pick-up

• Dispute resolution

• Customer service

• Notification of any changes to the event

• Undertake sales, campaign or demographic analysis.

I may share your Personal Data with our processing partners such as Merchant Service Providers or Email/ Text Service Providers who are contracted to assist me with the booking of your tickets – known as Sub-Processors. I am responsible under GDPR to ensure that any Sub-Processor I contract is fully compliant with GDPR law and will also act to ensure the safety and confidentiality of your Personal Data.

Where Personal Data relating to an EU (or the UK or Swiss) Data Subject is transferred outside of the EEA, it shall be processed by an entity: (i) located in a third country or territory recognised by the EU Commission as having an adequate level of protection; or (ii) that is subject to Standard Contractual Clauses; or (iii) that has other legally recognised appropriate safeguards in places, such as the EU-ME Privacy Shield or Binding Corporate Rules.

Marketing Activities

During the booking process, we will ask if you would like to be included on our mailing list. If you decide to opt into this marketing list, you agree that we can send you marketing information until such a time that you indicate to us a preference not to receive further information.

How long do I keep your Personal Data?

I will keep your Personal Data for no longer than reasonably necessary and it will be deleted after one (1) year, unless you opt into marketing information. Personal Data is retained by me for this period to assist me in responding to customer booking queries or any charge disputes that may arise.

Your Rights and your Personal Data

You have the right to request a copy of the information that I hold about you. If you would like a copy of some or all of your Personal Data held by me, please contact the me using the contact details listed below.

Under GDPR, you have the following rights:

• Right to be informed of why your data is being processed (included within this Data Privacy Policy)

• Right of access to the Personal Data held

• Right of rectification if incorrect data is held

• Right to erasure (may be subject to the booking contract and retention periods)

• Right to object to processing

To instigate any of your rights under GDPR, you must contact me or the person in the external organisation (the Data Controller), who is responsible for how your Personal Data is used. I can either provide you with contact details for the Data Controller or will forward your request on your behalf.

Further processing

I will not undertake any further processing of your Personal Data beyond this booking and the activities outlined above under 'How do I process your Personal Data', unless you have opted into marketing information.

Other Websites

My website may contain links to other websites (e.g. Event Organiser websites or social media pages). This Data Privacy Policy only applies to my website, so when you link to other websites, you should read their own privacy policies.

Contact Details

To exercise any relevant rights, queries or complaints regarding I and the handling of your Personal Data, please contact:

Charlie Marx

300A Ayr Road

Newton Mearns

GLASGOW

G77 6BS

Email: cmarx359@gmail.com

Depending on your query, I may need to forward your request to the Data Controller of the organisation responsible for how your Personal Data is handled.

How to make a complaint

If you are unhappy with how your personal data has been processed by me, you may, in the first instance, contact me using the contact details above.

If you remain dissatisfied, then you have the right to apply directly to the Information Commissioner for a decision. The Information Commissioner can be contacted by phone on 0303 123 1113 or via their online notification system at www.ico.org.uk/make-a-complaint/