TICKETCORE is committed to protect your privacy and handle your personal data in an open and transparent manner, in whatever capacity you communicate or cooperate with us, such as indicatively and non limited to, prospective or active clients, employees, suppliers, traders, individuals, consumers or collaborating third parties and in accordance with the definitions and requirements of the General Data Protection Regulation under number 2016/679 on the Protection of natural persons with regard to the processing of personal data and on the free movement of such data.
Collection and processing of personal data depends on the service we provide to you in each individual case, on the case-by-case contractual relationship that links us to the subject of Personal Data, on the legal obligations imposed by the applicable law, the legal rights granted to us by it, and by the explicit consent of the subject on a case-by-case basis. They are subject to processing within the explicitly defined purposes, based on the principles of legality, objectivity and transparency, restriction of purpose and storage period, data minimization, accuracy, integrity and confidentiality, and within the framework of necessity and proportionality governing each processing operation. At the same time, the taking of technical and organizational security measures from the outset ("by design and by default") is ensured for the compliance with the above system of principles, as well as its periodic review and updating.
The status of personal data protection is hereby defined, in the framework of their processing by TICKETCORE and involves persons who have transactions with it, while at the same time the system of rules is described, on the basis of which such processing takes place. This Policy may be amended and adapted at the discretion of TICKETCORE and within the framework of the applicable legislative framework.
TICKETCORE company operates as controller of the processing of your personal data. Contact details with it are: Address: Building B, Science & Technology Park of Crete, Heraklion, 70013 // e-mail: email@example.com // contact phone +30 2810391244.
All kinds of written requests, as provided for herein and in the law, shall be submitted to the above postal and e-mail address, either electronically or in paper form (in person by the data subject himself/herself or by an authorization to a third person certified for the authenticity of signature).
The company shall take from the outset ("by design and by default") the appropriate technical and organizational measures to ensure the protection of personal data and access thereto only by the controller or other persons authorized by it and exclusively for the legitimate purposes, for which they have been collected, based on the current regulatory framework.
In the framework hereof, the definitions of the Regulation are used, among which the following are indicatively but not limited to mentioned:
«personal data» means information relating to identified or identifiable natural persons (“data subjects”), that is, persons who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
«processing of personal data» means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction; Finally,
«controller» means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
TICKETCORE shall receive and process personal data only in the framework of a transactional relationship and within the scope of its purpose of activities, depending on the type of contract or service provided or the work entrusted to it, which, indicatively but not limited to, may be: identification details, contact details (address, telephone number, e-mail address), Tax Identification Number, Social Insurance Registration Number, bank account details and so on, depending on the case). The above details are received by our company from the following sources and in the following ways:
In the few cases where we collect personal information from children, we always ask for parental consent, while, if we ever collect such information, we shall do so for the purposes specifically defined upon collection.
We use suppliers that sort/compare geo-demographic data that help us better personalize our services to you. If you prefer us not to do so, please read the section entitled "Rights of Subjects" below.
Your personal data shall be stored for the period of validity of the contractual or business relationship between us or for as long as your relevant consent applies or for the reasonable legal time so that our rights or legitimate interests are served or for the exercise of our legitimate rights or in compliance with the applicable law. You may withdraw your consent to the processing of your personal data at any time by notifying us in writing of your relevant request, acknowledging, however, that the receipt of the request does not affect the legality of previous processing, nor does it impose compliance with your request, if there is another superior legitimate reason.
The company performs the necessary and required processing of your personal data, with the least possible interference, in order to fulfill the following, indicatively mentioned, purposes:
For the performance of our contract with you
We use your information when you enter into a contract with us (for example when buying a ticket) so that we can:
For our legitimate business interests
About personalization settings of the user
When we know you better, we can offer you more of the things you want. To make sure that our websites and messages are relevant to you, we create a user profile with the information we know about you and the way you use our services.
How to disable personalization
Just disable the "Allow personalization" option in your account settings. We shall cease any personalization and use your data only for basic services, such as control for fraud or black market activity - and any pre-sale to Verified Fans. If you do not have an account, you can contact us in order to disable it for you.
What happens when you disable personalization?
We shall no longer use your data to consider what you might be interested in. That means that you shall not receive any personal suggestions and that any newsletters you subscribe to shall be of a general nature. However, if you have requested to receive notifications for specific artists or event venues, you shall still receive them.
We shall continue to take actions of profile creation, where we need to do so in order to offer you our services, such as, for example, for anti-fraud control purposes, and where you specifically ask us to do so, such as for a Pre-sale to Verified Fans.
Disabling personalization is the same thing as disabling cookies?
No, they are separate actions. To check your cookies settings, you can use our own cookies consent tool. For more information, please read our Cookies Policy.
Where you have given your consent
Only the controller, its representatives or processors or legally authorized persons, within the scope of their competencies, shall have access to the personal data concerning you, within the framework of proper execution and fulfillment of the contractual, legal and regulatory obligations of the company. The company shall not transfer or disclose personal data to third parties except in the following cases:
Our company lawfully ensures that the processors on its behalf meet the required conditions, provide sufficient security guarantees for the implementation of appropriate technical and organizational measures, and comply with the confidentiality commitment, so that processing of personal data does not affect the rights of subjects.
In the context of application of the Regulation, you retain the following rights, which you can exercise, by submitting the relevant forms, electronically or in writing, as follows:
Our company shall respond free of charge to your requests, without undue delay, and within one month from their receipt, except for special cases where such deadline may be extended by another two months, if necessary, given the complexity or volume of requests. In the latter case, the company shall notify the extension and the reasons for the delay, within one month from the receipt of the request. If your request is considered to be manifestly unfounded or excessive by the controller, it reserves the right to impose a reasonable fee for its processing, taking into account the costs for its satisfaction or even to refuse to carry on with the request.
If your request can not be met, the company shall inform you, without delay, no later than one month from its receipt, of the relevant reasons and of your right to file a complaint with the Hellenic Data Protection Authority (HDPA – 1-3 Kifissias Avenue, P.C. 11523, Athens, tel.: 210-64.75.600 or e-mail: firstname.lastname@example.org), but also about your right to appeal to the competent judicial authorities.
When you use the website and provide us with personal information, Ticketcore shall act as an intermediary and shall not transfer or share your information with third parties, except to the extent that this is required to complete your order and fulfill requests regarding the services provided by us or to suggest ways to improve your overall experience with the services provided. Such third parties may be show producers, service providers, seat reservation systems and other global distribution systems.
In Ticketcore we select trusted providers and put our efforts to set contractual restrictions to the third parties who receive your personal data, in order to ensure that they use them in accordance with this Policy and the applicable legislation on data protection in Europe (GDPR 2016/679) and internationally. However, we can not guarantee that they will not use or disclose such data without your permission. Therefore, we suggest to you to carefully review the personal data protection practices of any third-party providers/suppliers whose products or services you purchase through our websites. In addition, third-party providers may contact you, when necessary, to obtain additional information about a possible service, payment or reservation.
In order to process your data, we may need to transfer your information to other countries, including countries basically inside and exceptionally outside the European Economic Area (EEA), on the basis of competence decisions by EU, corporate binding rules, standard contracts and approved codes of conduct.
In any case, we shall take the appropriate technical and organizational measures to ensure that your personal information is transferred, stored and processed in accordance with the appropriate security standards and in accordance with the terms of this Policy and the applicable data protection laws from time to time. Finally, we may transfer or disclose your personal information to official, national or foreign, governmental and supervisory bodies (e.g. police, Bank of Greece, international tax authorities, etc.), when requested to comply with the legislation and prevent unlawful actions to the detriment of us and to the detriment of our clients (e.g. fraud, money laundering, etc.).
In Ticketcore we have trained and responsible staff, and we recognize the importance of privacy protection and of the protection of all your personal information. For this purpose, we have appropriate security policies and we use the appropriate technical and organizational measures and tools, such as anonymization, pseudonymization, data encryption, firewalls, establishment of access levels, authorized employees, training of our staff, periodic inspections, compliance with security and business continuity standards ISO, PCI for data and payment cards protection etc.
Any partner who has access to the above information uses them only to serve the above purposes. We share the information you give us only in the ways described in this Policy and in accordance with your explicit and specific consent per type of processing, which you may withdraw at any time and freely by contacting us.
Ticketcore’s website may contain links to third-party websites, independent agencies, such as, indicatively, show producers, payment service providers etc., which are operated and maintained exclusively by them, and which we do not control as we mentioned above.
Ticketcore shall not bear any responsibility for the content, actions or policies of such websites. Please read carefully the relevant data protection policies on the different websites you visit, as they may significantly differ from ours.
We may use your personal information together with other information we have collected, following human intervention from our sales department, to display ads related to your obvious preferences, on our website or on another website. However, we do not share your personal information with third parties so that they can send you relevant ads.
If you wish us to stop sending you notifications or offers, you may use the unsubscribe link at the end of the email you received from us.
We do not permit in any way the collection of e-mail addresses or general information of our customers and subscribers through our website or our services. We do not allow and do not authorize any attempt of using our services in a way that could harm, disable, burden any part of our services, or prevent anyone wishing to use our services.
If we consider that unauthorized or inappropriate use of any of our services takes place, we may, without notice, at our sole discretion, take appropriate steps to block messages from a particular domain, an e-mail server or an IP address. We have the ability to immediately delete any account that uses of our services, which, at our absolute discretion, transmits or is associated with the transmission of any messages that violate this policy.
Cookies are used on our website to improve it and to upgrade your experience. This Policy explains how we do this.
What is a Cookie?
Cookie is a text file that contains a small amount of data that is transformed into the device you use to access our site and stored on your device's hard drive. Such cookies are intended for a variety of purposes, including allowing our website to recognize your device when you visit it again, ensuring that the right content is sent to you and storing information about your preferences or services provided to you. Web beacons or other similar files can also do the same. In this Policy we use the term "Cookies" to refer to all files that collect information in this way.
Which Cookies do we use?
Cookies on our site can be divided into five categories:
Change of browser settings>
If you have questions or comments about this personal data protection policy or if you believe that we have not followed the principles set out herein, please email us at email@example.com or contact us at the following address: Science & Technology Park of Crete, Heraklion, 70013.
This Policy was created on the basis of recent legislation on the protection of personal data and General Data Protection Regulation (EU 2016/679). Any changes to this Policy shall apply to the information collected from the date of publication of the revised version on this website, as well as to the existing information we hold. Using the website after the publication of changes implies acceptance by you of these changes.