Privacy Policy
Data Controller
The data controller for processing of personal data in connection with the Linjerum platform is: Linjerum ApS Aarhus, Denmark Email: support@linjerum.com CVR no.: 46273249 If you have questions about how we process your personal data, you are welcome to contact us at the email address above.
What Data We Collect
We collect and process the following categories of personal data: Ticket buyers: • Name and email address (provided at purchase) • Payment information (processed by our payment provider — we do not store card details) • Purchase history and ticket details • IP address and browser information (for security and fraud prevention) Organizers: • Name, email address, and phone number • Organization and business information • Bank account details (for payouts) • Login credentials (passwords are stored encrypted) Website visitors: • Technical data such as IP address, browser type, and device information • Usage data collected via cookies (see the Cookies section below)
Purpose and Legal Basis
We process your personal data for the following purposes: • To complete ticket purchases and deliver tickets (legal basis: performance of contract) • To process payments and payouts to organizers (legal basis: performance of contract) • To provide customer support (legal basis: legitimate interest) • To prevent fraud and ensure platform security (legal basis: legitimate interest) • To send order confirmations and event updates (legal basis: performance of contract) • To comply with legal obligations such as bookkeeping requirements (legal basis: legal obligation) • To improve our platform and services (legal basis: legitimate interest) We do not use your personal data for marketing purposes without your explicit consent.
Data Sharing
We share your personal data with the following categories of recipients: • Event organizers: When you purchase a ticket, your name and email are shared with the organizer so they can manage event access and contact you regarding changes. • Payment providers: Payment data is processed by our payment service providers to complete transactions. • Hosting and infrastructure providers: Your data is stored on servers operated by our hosting providers within the EU/EEA. • Email service providers: We use third-party services to send transactional emails (order confirmations, tickets). We do not sell your personal data to third parties. All our data processors are bound by data processing agreements in accordance with GDPR Article 28.
Data Retention
We retain your personal data only for as long as necessary for the purposes described above: • Purchase and ticket data: Retained for up to 5 years after the event date to comply with Danish bookkeeping legislation. • Account data for organizers: Retained for the duration of the account and up to 5 years after deletion for bookkeeping purposes. • Technical logs and IP addresses: Retained for up to 12 months. • Cookie data: See the Cookies section below. When the retention period expires, your data is deleted or anonymized.
Cookies
Our website uses cookies to ensure the website functions correctly and to improve your experience. Necessary cookies: • Session cookies to keep you logged in • Security cookies to prevent fraud and protect your account • Preference cookies to remember your language setting We do not use third-party tracking or advertising cookies. You can manage your cookie preferences through your browser settings. Please note that disabling necessary cookies may affect the functionality of the website.
Your Rights
Under the General Data Protection Regulation (GDPR), you have the following rights: • Right of access: You can request a copy of the personal data we hold about you. • Right to rectification: You can request that incorrect or incomplete data be corrected. • Right to erasure: You can request deletion of your personal data, subject to legal retention obligations. • Right to data portability: You can request to receive your data in a structured, machine-readable format. • Right to object: You can object to processing based on legitimate interest. • Right to restrict processing: You can request that we limit processing of your data in certain circumstances. • Right to withdraw consent: Where processing is based on consent, you can withdraw it at any time. To exercise your rights, please contact us at the email address listed under Data Controller. We will respond within 30 days. If you are dissatisfied with how we process your personal data, you have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet), Carl Jacobsens Vej 35, 2500 Valby, dt@datatilsynet.dk.
Data Security
We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. These measures include: • Encryption of data in transit (TLS/SSL) • Encrypted storage of passwords • Access controls and authentication requirements for our systems • Regular security reviews Despite our efforts, no method of transmission over the internet is 100% secure. If you become aware of a security breach, please contact us immediately.
Changes to This Policy
We may update this privacy policy from time to time. Changes will be published on this page with an updated version number and date. We encourage you to review this policy periodically. If we make significant changes that affect your rights, we will notify you via email or a prominent notice on our platform.
Contact
If you have questions or concerns about this privacy policy or our processing of your personal data, please contact us: Linjerum ApS Aarhus, Denmark Email: support@linjerum.com CVR no.: 46273249