Privacy Policy for Marketing Activities


TicketSource is committed to upholding the Data Protection principles of good practice. Protecting your privacy is important to us and we strive to keep all information relating to you confidential in accordance with this statement and the law. As part of the normal operation of our services you may voluntarily provide us with information about yourself. The purpose of this Data Privacy Policy is to explain what personal data we collect about you, how that personal data might be used and how we protect your personal data and privacy.

TicketSource is a member of STAR (the Society of Ticket Agents and Retailers) which requires TicketSource to comply with an industry Code of Practice. TicketSource also uses the latest extended validation security (EV SSL) certificate and is PCI DSS compliant ensuring that tickets are sold in a safe and secure environment.

Who are we?

TicketSource is an online ticketing software provider. By signing up to the blog/newsletter or to receive a report (or reports) TicketSource is responsible for the handling and safe and confidential storage of your Personal Data as the Data Controller.

What is the legal basis for processing your personal data?

You have willingly signed up to the TicketSource blog/newsletter or agreed to receive a specific report or future reports published by TicketSource.  Therefore, the legal basis for processing your data is consent.

How do we process your personal data?

TicketSource complies with its obligations under the General Data Protection Regulations (GDPR) by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining unnecessary data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.

TicketSource only collects personal information about you when you specifically provide us with such information on a voluntary basis. The information that we collect from you includes:

  • Email
  • Cookies – cookies are used to track users through our site and to save information as you move from page to page of website.

We use your personal data for the following purposes:

  • If signing up to the TicketSource blog or newsletter, we will use your email address to send you blog article updates.
  • If signing up to receive a report, we will only use your email address to send you this report.  If you have opted to receive future reports, these will also be sent to you by email. 
  • We may also use your data to perform business analysis.

TicketSource will only use your Personal Data in accordance to the consent that you have provided.  However, you can opt out of future TicketSource emails at any time using the unsubscribe link within the email or by contacting us at 

Sharing your personal data

TicketSource does not share or sell client contact details to Third parties unless stipulated within this Privacy Policy.

TicketSource may share your Personal Data with our processing partners who are contracted to assist TicketSource with the delivery of our service – known as Sub-Processors. TicketSource is responsible under GDPR to ensure that any Sub-Processor we contract are fully compliant with GDPR law and will also act to ensure the safety and confidentiality of your Personal Data.

For the purposes of contacting you by email in accordance to the consent you have provided, TicketSource uses the Sub-Processor Mailchimp to manage our email communication. 

Where Personal Data relating to an EU (or UK or Swiss) Data Subject is transferred outside of the EEA it shall be processed by an entity: (i) located in a third country or territory recognised by the EU Commission as having an adequate level of protection; or (ii) that is subject to Standard Contractual Clauses; or (iii) that has other legally recognised appropriate safeguards in place, such as the EU-US Privacy Shield or Binding Corporate Rules.

How long do we keep your Personal Data?

Where you have not engaged with our marketing material for over a year, we will take steps to remove your information from our marketing database. Where you unsubscribe from our marketing, we will keep a record of your email to enable us to comply with your request not to be contacted by us, we won’t keep any information that we don’t need.

If you only provide consent to receive a specific report, we will delete your data after one month.

Your Rights and your Personal Data

You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your Personal Data held by TicketSource, please contact the Data Controller using the contact details listed below.

Under GDPR you have the following rights:

  • Right to be informed of why your data is being processed (included within this Data Privacy Policy)
  • Right of access to the Personal Data held
  • Right of rectification if incorrect data is held
  • Right to erasure (may be subject to the booking contract and retention periods)
  • Right to object to processing

Further processing

If additional processing is required beyond the scope of this Privacy Policy, we will provide you with information explaining this new process prior to commencing the processing and the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.

Other websites

Our website may contain links to other websites (e.g. Mailchimp, Stripe, Google Analytics, etc). This Data Privacy Policy only applies to the TicketSource website so when you link to other website you should read their own privacy policies.

Contact Details

To exercise any relevant rights, queries or complaints regarding TicketSource and the handling of your Personal Data, please contact:

The Data Security Officer


Off Edge


CF64 3EE


How to make a complaint

If you are unhappy with the way in which your personal data has been processed by TicketSource you may in the first instance contact The Data Security Officer using the contact details above.

If you remain dissatisfied, then you have the right to apply directly to the Information Commissioner for a decision. The Information Commissioner can be contacted by phone on 0303 123 1113 or via their online notification system at

Category: Terms of Use

Keywords: privacy, gdpr, marketing, consent, opt-out

Last modified on Thu 13 September 2018