1. Who is your personal data controller?

Controller of data provided by the User is Eventim sp. z o.o., with registered office in Warsaw, al. Jerozolimskie 25, 00-508 Warsaw, registered in the commercial register kept by the District Court for the capital city of Warsaw, 12th Commercial Division under number KRS 0000213454, NIP: 526-277-47-51, share capital PLN 4,106,000 (hereinafter referred to as the “Data Controller”).

2. Who may provide you with additional information on the processing of your personal data?

You may contact the Data Controller at: ido@eventim.pl.
You may also write about any and all issues concerning the processing of personal data and use of rights connected with data processing to an indicated data protection officer at: ido@eventim.pl or by mail to: Inspektor Ochrony Danych Eventim sp. z o.o., al. Jerozolimskie 25, 00-508 Warszawa.

3. What is the purpose and legal basis for the processing of your personal data?

The Data Controller may process personal data:

3.1 on the basis of your consent – in such a case your personal data will be processed for the purposes for which the consent was provided. A detailed description of the purpose is provided at the moment the consent is collected. On the eventim.pl website you may grant your consent for the processing of data in connection with:

a) transferring a contact form – data is transferred for the purpose of establishing contact or providing information in connection with the sending of the contact form.

4. Is it necessary to provide us with your personal data?

You are free to provide us your personal data, however, such data is necessary in order to perform the above mentioned purposes.

5. How long do we store your personal data?

The Data Controller will not store your personal data longer than necessary, in order to achieve the purposes for which it was collected or longer than stipulated under the law.

Depending on the legal basis of processing, your personal data will be stored:

on the basis of your consent – personal data will be stored until the moment you withdraw your consent or the purpose of processing for which the data was obtained ends, depending on whichever is earlier.

6. What are your rights in respect of data processing?

Based on the principles of the GDRP you have the right to demand access to your data and to seek data rectification, deletion or blocking their processing. Upon your request data controller will provide you with the copies of personal data subject to processing, while any further copies may be obtained subject to a reasonable fee as a result of administrative costs.
In the event of data processing on the basis of your consent, you have the right to withdraw the consent at any time. Such withdrawal does not influence compliance with the law of the processing, which was performed based on the consent prior to its withdrawal. To withdraw your consent contact ido@eventim.pl.

To the extent to which your data is processed by automated means in order to conclude and perform the agreement or based on the consent granted – you may transfer your personal data, i.e. receive your personal data from the controller of your data, using a structured commonly used format in a machine-readable form. You may sent such data to another data controller.

In the event of data processing on the basis of legitimate interest of the Data Controller you have the right to raise at any time an objection for the reasons connected with your specific situation. If your personal data are also processed for direct marketing purposes, you have the right to object to the processing of your personal data to the extent that the processing is related to such direct marketing, at any time and without giving reasons.

You may also pursue a claim with the supervisory body responsible for the protection of personal data (President of the Office of Personal Data Protection).

In order to use the above mentioned rights you should contact your data controller or data protection officer. Contact details are as above.

7. Who may be your data recipient?

We are providing your personal data only to such entities which must have access to the same in order for us to guarantee the high quality of services. Data is transferred on the basis of an agreement concluded with the Data Controller and exclusively upon the instructions of the Data Controller. We do not make available your data to any third parties for their own use – we do so solely to perform our services. All partners engaged in the processing of personal data of our users ensure data security and abide by all personal data protection obligations.

Data importers may be entities providing services to Data Controller such as: bookkeeping, marketing, IT, legal services and entities supporting the Data Controller in the provision of services as well as those which provide the services connected with the events and IT services providers, post and mobile operators and couriers. In case of data of persons acquiring the tickets for events, data importers may be also events’ organizers. Moreover, personal data may be disclosed to competent authorities according to applicable provisions of law. Your data may also be transferred for marketing purposes to event organizers, but only on the basis of your consent.

Using cookies files (so-called cookies), which are files recorded by your internet browser on a hard drive of your computer, Eventim collects data related to the manner, in which you use Eventim’s websites, in order to optimize our services offered to the visitors and users of our company’s websites. Cookies do not allow identification of your identity. Data recorded in cookies contain information as to which websites were visited by you, the date and time of the visit and other information concerning your activity on the websites.

Eventim uses various software solutions in order to optimize its online services. These solutions allow analysing the use of websites and collecting valuable information on the needs of the users in order to constantly enhance the intuitiveness and the quality of online services. In order to conduct such analysis, aggregate and anonymous statistical data are intercepted. These data are the data of anonymised connection and data on the sequence of launched links (clickstream data), related to the used browser, a number of visits/entries on the website and the behaviour of the given users visiting the Eventim.pl website. Within the course of collecting and processing data, an abbreviated IP address of the visitor may also be viewed.

Data are analysed, in particular for the following purposes:

1. calculating the number of website’s visitors,

2. tracing these areas of the website which are particularly attractive for a particular visitor of the website,

3. analysing where the visitors of the website come from in order to optimize the provided services.

Aforementioned process covers the use of cookies. By adjusting settings in their browsers, users may at any time block cookies or indicate that cookies may be set only, when they are expressly accepted by the user. At any time, the users may also block using their data at all, for all the implemented solutions, by choosing the “opt-out option” as presented in a particular solution. However, if the user wishes to opt-out, particular recommendations may not be further presented.

Eventim uses the following programme solutions in a meaning mentioned above (by means of clicking on a proper link below, the user will be redirected to the opt-out option):

• CTS EVENTIM AG & Co. KGaA
• Google Analytics

Note: The resignation is made using cookies. If the cookies are deleted, the opt-out option must be reactivated.

Retention Period

Eventim will not retain your personal data longer than it is necessary to attain purposes for which these data were collected or longer than as provided by the relevant law.

Right to Access, Modify or Object

You may address Eventim to access your personal data held by Eventim, and you may modify or delete invalid personal data. You are entitled to prohibit Eventim from collecting or disclosing your personal data.

In order to exercise this right, please inform us about this fact at iod@eventim.pl.

Data Security

Eventim undertook all measures in order to ensure confidentiality, security and integrity of your personal data. Communication between your computer and our server when we collect your personal data is encrypted using the SSL (Secure Socket Layer) protocol. Access to personal data is allowed only to persons, who need to know such data and who are expected to abide by these rules. Eventim pays great attention to ensuring that your personal data are not modified, infringed or inappropriately used by third parties, who are not authorised to have access to the data.

You can freely modify your own cookie settings through the Privacy Preferences Center, which you can access via the "Cookie settings" button in the lower left field of the page.