Privacy Policy

Welcome to Kulture+. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we look after your personal data when you visit our website or use our mobile application (regardless of where you visit it from) and tell you about your privacy rights and how the law protects you.

This privacy policy aims to give you information on how Kulture+ collects and processes your personal data through your use of this application, including any data you may provide through this application when you sign up for an account, purchase tickets, create events, or take part in any other features of our platform.

Kulture+ (referred to as "we", "us", or "our" in this privacy policy) is the controller and responsible for your personal data.

We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

Our full details are:
Kulture+ GmbH
123 Event Street
10115 Berlin, Germany
Email address: privacy@kultureplus.com

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

• Identity Data includes first name, last name, username or similar identifier, date of birth, and gender.
• Contact Data includes billing address, delivery address, email address, and telephone numbers.
• Financial Data includes payment card details (stored securely by our payment processors).
• Transaction Data includes details about payments to and from you and other details of products and services you have purchased from us.
• Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this application.
• Profile Data includes your username and password, purchases or orders made by you, your interests, preferences, feedback, and survey responses.
• Usage Data includes information about how you use our website, application, and services.
• Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• Where we need to perform the contract we are about to enter into or have entered into with you.
• Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
• Where we need to comply with a legal or regulatory obligation.

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know.

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Under the General Data Protection Regulation (GDPR), you have the following rights:

• Right to access - You have the right to request copies of your personal data.
• Right to rectification - You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• Right to erasure - You have the right to request that we erase your personal data, under certain conditions.
• Right to restrict processing - You have the right to request that we restrict the processing of your personal data, under certain conditions.
• Right to object to processing - You have the right to object to our processing of your personal data, under certain conditions.
• Right to data portability - You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at privacy@kultureplus.com.

Cookies are small text files that are placed on your computer or mobile device when you visit a website. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

We use cookies to:

• Make our website work as you'd expect
• Remember your settings during and between visits
• Improve the speed/security of the site
• Allow you to share pages with social networks like Facebook
• Continuously improve our website for you
• Make our marketing more efficient

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

We share your personal data within the Kulture+ Group. This will involve transferring your data outside the European Economic Area (EEA).

Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

• We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
• Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
• Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.

We may update this privacy policy from time to time. We will notify you of significant changes by sending a notice to the primary email address specified in your account or by placing a prominent notice on our website.

You are advised to review this privacy policy periodically for any changes. Changes to this privacy policy are effective when they are posted on this page.