PRIVACY STATEMENT FOR CUSTOMERS
Processing of personal data at Tikkio AS
When you use our website/mobile app and/or contact us to order and purchase tickets and goods from us at Tikkio AS, we will process personal information about you. Below, you will find information about the personal data we collect, why we do this, and your rights related to the processing of personal data.
The data controller for the personal data we process is Tikkio AS (organization number 913 135 229) with managing director Marcus Aurelius Kalvø.
Contact information for Tikkio AS:
Address: Sjøvegen 77, 6052 Giske
Email: support@tikkio.com
Organization number: 913 135 229
For any questions you may have about our processing of your personal data, you can contact: support@tikkio.com
Why do we collect personal data, and what type of information do we collect?
1.1 Non-users: If you only visit the publicly available parts of our website/app, we do not collect any personal information about you. However, we may automatically collect information about your visits, such as user patterns. Information collected in this way does not include contact information or any other types of personal data, and such information is used only in aggregate form for analysis, operation, and development of the website without being able to be linked to individuals.
When you visit tikkio.com, you consent to us using cookies. These are small data files sent from our website and stored on your computer. These are essential for the solution to function in terms of navigation, login, and ordering:
Cookies remember your choices on the website to enhance user-friendliness.
Cookies help Tikkio understand the use of our website, allowing us to improve functionality and user-friendliness.
Cookies are used to display Tikkio ads on other websites.
You can read more about cookies and the cookies we use here: https://help.tikkio.com/nb/articles/8617432-cookie-policy. We process personal data through cookies based on a balancing of interests. We have assessed that it is necessary for us to do this to customize the website for our users. However, we safeguard your privacy by using the information only for statistics. In this statistics, it is not possible to identify you as an individual. Furthermore, we delete the personal data collected via the website on a daily basis.
1.2 Users: If you create a user account on our website/app, we will collect and store personal data about you when you register as a user. We collect and use your personal data for various purposes depending on who you are and how we come into contact with you.
We collect the following personal data for the specified purposes:
Administration of user accounts and identification of the user to deliver tickets and services requested by the user. The personal data processed for the purpose of administering user accounts include name, gender, age, address, mobile phone number, email address, and purchase history. The information collected is stored in Tikkio's own database. Processing of this personal data is necessary for us to fulfill our obligations under the agreements we enter into with you, cf. GDPR article 6(1)(b).
Identification of customers to provide customer support for tickets and services, and responding to inquiries received. To achieve such purposes, we process name, user number from Tikkio's databases, email address, phone number, and any information that may arise from the inquiry. The processing of this information is based on a balancing of interests, where we have assessed that we have a legitimate interest under GDPR article 6(1)(f) in helping the customer with user and customer support.
Payment solutions. We process personal data to offer various payment solutions such as Adyen, Vipps, and Klarna for customers in connection with the purchase of our services. To achieve such purposes, we process name, date of birth, personal identification number, address, and mobile phone number. Processing of this personal data is necessary for us to fulfill our obligations under the agreements we enter into with you, cf. GDPR article 6(1)(b).
Follow-up of customers in connection with the implementation of events. We or the organizers using our services use personal data to contact you, e.g., in connection with the conclusion of events, the start of events, or when other important information related to your purchase from us needs to reach you. To achieve such purposes, we store personal data such as name and email address. The processing of this personal data is necessary for us to fulfill our obligations under the agreements we enter into with you, cf. GDPR article 6(1)(b).
Marketing. We process personal data to deliver relevant emails and provide targeted marketing-related content on social media for our customers. To achieve such purposes, we store your email address. The processing of personal data for marketing-related purposes is based on your consent, cf. GDPR article 6(1)(a).
Disclosure of personal data to others
We do not disclose your personal information to others unless there is a legal basis for such disclosure. Examples of such a basis will typically be an agreement with you or a legal basis that requires us to provide the information.
Tikkio AS uses data processors to collect, store, or otherwise process personal data on our behalf. In such cases, we have entered into agreements to ensure information security at all stages of processing. We currently use the following data processors:
Intercom. We use Intercom as a data processor to fulfill purposes related to providing customer support in connection with processing user inquiries about our services. Intercom processes personal data as specified in section 1.2.2.
Vipps. We use Vipps as a data processor to fulfill purposes related to providing payment solutions. Vipps processes personal data as specified in section 1.2.3. This only occurs if you choose to use Vipps as a payment method. The use of such information is regulated in accordance with applicable privacy laws and Vipps' privacy statement, which can be read here: https://vipps.no/personvern-og-vilkar/vipps-privacy-protection-policy-old/?gclid=EAIaIQobChMI3OXYkNXIggMVA1MYCh1TDwG1EAAYASAAEgL9w_D_BwE
Adyen. We use Adyen as a data processor to fulfill purposes related to providing payment solutions. Adyen processes personal data as specified in section 1.2.3. The use of such information is regulated in accordance with applicable privacy laws and Adyen's privacy statement, which can be read here: https://www.adyen.com/policies-and-disclaimer/privacy-policy
Klarna. We use Klarna as a data processor to fulfill purposes related to providing payment solutions. Klarna processes personal data as specified in section 1.2.3. This only occurs if you choose to use Klarna as a payment method. The use of such information is regulated in accordance with applicable privacy laws and Klarna's privacy statement, which can be read here: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/nb_no/privacy?_gl=1*1rhi86u*_gcl_au*MTcwMzI2MDU5LjE3MDAxNDEyNTM.
Modish AS and Lily AS: We share certain user data with Modish AS and Lily AS to enable personalized marketing efforts for event organizers using Tikkio's services. This data sharing is based on our legitimate interest in providing relevant and personalized marketing to users, cf. GDPR article 6(1)(f).
The use of such information is regulated in accordance with applicable privacy laws and Modish AS and Lily AS privacy statement, which can be read here: https://modish.no/personvernerklaering-og-cookie-policy/ / https://www.lily.no/privacy-policy
3. Transfer of personal data to countries outside the EU/EEA
The processing of personal data that we carry out mainly takes place within the EU/EEA area. However, your personal data may, in some cases, be transferred to a country outside the EU/EEA that has a lower level of data protection than that which applies to the data protection legislation in the EU/EEA. When your personal data is transferred to a third party outside the EU/EEA, we implement additional security measures to ensure that your personal data is protected at the same level as required by data protection legislation within the EU/EEA.
Currently, this applies to personal data processed by our data processor Intercom. Intercom is certified as a recipient of personal data from the EU/EEA area through the EU-U.S. Data Privacy Framework. For more information on the processing of personal data under the EU-U.S. Data Privacy Framework, see: https://www.datatilsynet.no/rettigheter-og-plikter/virksomhetenes-plikter/overforing-av-personopplysninger-ut-av-eos/omrader-med-tilstrekkelig-beskyttelsesniva/.
4. Storage period
We store your personal data with us for as long as necessary for the purpose for which the personal data was collected.
This means, for example, that personal data processed based on your consent will be deleted if you withdraw your consent. Personal data we process to fulfill an agreement with you will be deleted when the agreement is fulfilled, and all obligations arising from the contractual relationship are fulfilled. Personal data we process for the protection of our legitimate interests in connection with the employment relationship will be deleted when the agreement is fulfilled, and we no longer have a legitimate interest in processing the personal data.
5. Your rights when we process personal data about you
You have the right to request access, correction, or deletion of the personal data we process about you. You also have the right to request restricted processing, object to processing, and request data portability. You can read more about the content of these rights on the Data Inspectorate's website: www.datatilsynet.no.
To exercise your rights, you must contact support@tikkio.com. We will respond to your inquiry as soon as possible, and no later than within 30 days.
We will ask you to confirm your identity or provide additional information before allowing you to exercise your rights with us. We do this to ensure that we only provide access to your personal data to you – and not to anyone pretending to be you.
You can withdraw your consent to the processing of personal data with us at any time. The easiest way to do this is to contact support@tikkio.com.
6. Complaints
If you believe that our processing of personal data does not correspond to what we have described here or that we are otherwise violating data protection legislation, you can complain to the Data Inspectorate.
You can find information on how to contact the Data Inspectorate on the Data Inspectorate's website: www.datatilsynet.no.
7. Changes
If there are changes to our services or changes in the regulations on the processing of personal data, it may result in changes to the information provided here. If we have your contact information, we will notify you of these changes. Otherwise, updated information will always be readily available on our website.