Privacy Policy

This Privacy Policy was last updated on August 16, 2025.

1. Who we are (Data Controller)

Memphis Series (“we”, “us”, “our”)
Operating in Budapest, Hungary
Website: https://memphisseries.com
Email: info@memphisseries.com

Data Protection Officer: Not appointed (not legally required for our activities). You may still contact us via the email above for any privacy question.

Supervisory authority (Hungary)

National Authority for Data Protection and Freedom of Information (NAIH)
Address: Falk Miksa utca 9–11, H-1055 Budapest
Tel: +36 1 391 1400 / +36 1 391 1401
Email: privacy@naih.hu
Web: https://www.naih.hu

2. Scope of this Policy

This Policy explains how we collect, use, share, and protect personal data when you:

browse our website,
buy tickets via WooCommerce + Tickera,
receive tickets by email and have them scanned with Checkinera at the door,
interact with our analytics/ads (only after consent) and contact our support.

For information about cookies and similar technologies, see our Cookie Policy.

3. What data we collect

We collect the minimum necessary data for the purposes below:

Identity & contact

First/last name, email address, billing address, country, phone (optional).

Order & ticketing

Order ID, ticket type and quantity, event name/date/venue, unique ticket/QR code, check-in status/time, refund/cancellation status.

Payment (processed by Stripe)

Payment intent/ID, payment status, last 4 digits and card brand, payment method details, anti-fraud signals.
We do not store full card numbers on our servers. Payments are processed securely by Stripe.

Technical & usage

IP address, device/browser information, pages viewed, referrer, and basic event logs. Our CDN (QUIC.cloud) may also log IPs and requested resources for security/performance.

Marketing & analytics (only with consent via Complianz CMP)

Pseudonymous identifiers from Google, Meta/Facebook/Instagram, and TikTok pixels if you opt in to the relevant categories.
Koko Analytics (we prefer its privacy-friendly/cookieless mode; if we enable its optional cookie, it is classified under “Statistics”).

Support & communications

Emails and messages you send us and our replies.

4. How we obtain your data

Directly from you (forms, checkout, messages, check-in at events).
Automatically from your device when you browse the site (see Cookie Policy).
From payment and fraud-prevention providers (status/metadata only).
From marketing/analytics tools only after you consent.

5. Why we use your data (legal bases)

Purpose	Examples	Legal basis
Ticket sales & fulfilment	Create order, issue PDF/QR ticket, send confirmations, provide support	Contract (Art. 6(1)(b) GDPR)
Payments & fraud prevention	Process payments via Stripe; detect/prevent abuse	Contract + Legitimate interests
Check-in operations	Validate tickets with Checkinera; prevent duplicate entry	Legitimate interests
Invoicing & compliance	Accounting, tax, consumer protection	Legal obligation
Analytics & performance	Measure site performance; improve UX (e.g., Koko, Google Analytics if enabled)	Consent (where required) / Legitimate interests (privacy-friendly Koko mode)
Marketing/ads	Meta/Google/TikTok pixels	Consent
Security	Logs, CDN protection, rate-limiting	Legitimate interests
Communications	Respond to your requests	Contract or Legitimate interests

Legitimate interests: we process only what is necessary to run a safe, fair ticketing service (e.g., fraud checks, access control, basic analytics). You may object to processing based on our legitimate interests at any time — see “Your rights”.

You may withdraw consent at any time via the Manage cookies link in our footer or by contacting us.

7. International transfers

Some providers are located outside the EEA (e.g., the United States). Where this occurs, we rely on approved safeguards such as Standard Contractual Clauses and, where applicable, adequacy decisions. You can request details of current safeguards via info@memphisseries.com.

8. How long we keep data

Orders, invoices, and ticket records: retained to meet accounting/tax and legal obligations (commonly up to 8 years under Hungarian accounting rules).
Check-in logs: retained only as long as needed for event integrity and dispute handling (typically up to 12 months, unless legally required longer).
Support emails: up to 5 years to handle follow-ups or legal claims.
Marketing/analytics data: per your consent status and tool-specific retention; you can change or withdraw consent any time.
CDN/server logs: short operational periods for security/troubleshooting, then purged.

9. Security

We use HTTPS/TLS, hardened WordPress, least-privilege access, and managed hosting. Cardholder data is processed by Stripe; we never store full card numbers on our servers. We monitor for abuse and use CDN-level protections to mitigate attacks.

10. Your rights

Within the limits of law, you have the right to:

be informed about our processing,
access your data,
rectification and erasure,
restriction of processing,
data portability,
object to processing based on legitimate interests,
withdraw consent at any time (this does not affect past lawful processing).

To exercise these rights, email info@memphisseries.com. You also have the right to lodge a complaint with your supervisory authority (see NAIH details above).

11. Children

Our events and shop are intended for adults. We do not knowingly collect data from children. If you believe a child has provided data, contact us to delete it.

12. Automated decision-making

We do not engage in automated decision-making that produces legal or similarly significant effects about you. Payment providers may run automated fraud checks to protect customers and merchants; these do not override your right to request human review via our support.

13. Cookies and similar technologies

For details about the cookies and trackers we use, the categories, providers, and how to change your choices, please read our Cookie Policy. You can manage your preferences any time via the “Manage cookies” link in our footer/banner (Complianz CMP).

14. Changes to this Policy

We may update this Policy to reflect changes to our services or legal requirements. Material changes will be highlighted on this page and, where appropriate, notified via banner.