This policy governs the manner in which seats.io collects, uses, maintains and discloses information collected from users (each, a “User”) of the http://seats.io website (“Site”). This policy applies to the Site and all products and services offered by seats.io.
We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, register on the site, place an order, subscribe to the newsletter, respond to a survey, fill out a form, and in connection with other activities, services, features or resources we make available on our Site. Users may be asked for, as appropriate, name, email address, mailing address, phone number. Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Site related activities.
We may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information.
Seats.io may collect and use Users personal information for the following purposes:
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Site.
Sensitive and private data exchange between the Site and its Users happens over a SSL secured communication channel and is encrypted and protected with digital signatures.
We do not sell, trade, or rent Users personal identification information to others. We may share generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our business partners, trusted affiliates and advertisers for the purposes outlined above.We may use third party service providers to help us operate our business and the Site or administer activities on our behalf, such as sending out newsletters or surveys. We may share your information with these third parties for those limited purposes provided that you have given us your permission.
Users may find advertising or other content on our Site that link to the sites and services of our partners, suppliers, advertisers, sponsors, licensors and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Site, is subject to that website’s own terms and policies.
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.
If you have any questions about this policy, the practices of this site, or your dealings with this site, please contact us at:
GDPR is the EU regulation that deals with data protection in the EU. It protects the personal data of each EU citizen. “Personal data” means data that allow an individual to be identified (the exact definition is in the GDPR).
The Seats.io system is built to allow our customers to design seating charts, render them across platforms, and connect their ticketing system with our API to manage availability of seats in real time.
Therefore, the system is designed to only keep data related to :
And such other non-personal data as further explained in our documentation.
The normal functioning of Seats.io does not require any personal data (e.g. the identity of a ticket buyer) to be held in the Seats.io databases.
However, it is, of course, possible for our customers to store additional data in our system. Some of these data may contain data that could qualify as personal data under GDPR - but Seats.io is not aware of that, and does not provide any functionality specific to such personal data. If Seats.io customers decide to store personal data within the Seats.io system, then, in such instance, Seats.io should be considered as a kind of “external hard disk” - technically, the data can be stored on our system, but we are not in a position to know whether or not they are personal data.
Since we don’t collect, store or operate on personal data for or on behalf of our customers, we believe the operation of Seats.io for our customers does not fall under the scope of GDPR, not even as a data processor.
However, we apply principles of data security and protection that are industry standard (Heroku and AWS), and are, to the best of our knowledge, in line with the requirements of GDPR.
If some of our customers decide to also store data on our system that are personal data under GDPR, then it is their responsibility to do so. We believe they can, within our system, do all the things that GDPR would require them to do (store, retrieve, destroy etc), without our knowledge or interference - again, the analogy with an external hard disk is appropriate.
Of course, if necessary, we will assist our customers to help them comply with their duties under GDPR if they contact us with such request. If such assistance falls outside of normal support, we may be entitled to charge for such work, depending on the circumstances.
If you have any other questions in this respect, please feel free to contact us at firstname.lastname@example.org.
Version 2. This document was last updated on 7 December, 2017