Digital Ticket Delivery-1.png?width=23&height=24&name=Product%20ticket%20sharing%20icon%20(1)-1.png){kind=small}
Ticket Sharing
PatronSafe™ Ticket Resale
Tessitura Integration
Patron Data
Operas.png?width=24&height=24&name=Untitled%20design%20(25).png){kind=small}
Ballets-1.png?width=22&height=24&name=Museum%20icon2%20(1)-1.png){kind=small}
Museums, Attractions & Cultural Institutions-1.png?width=24&height=16&name=Performing%20Arts%20Curtains%20icon%20(1)-1.png){kind=small}
Performing Arts Centers-1.png?width=19&height=24&name=Orchestra%20icon%20(1)-1.png){kind=small}
Symphony Orchestras
BlogHow we handle personal data
Data Privacy and Security Overview
True Tickets operates as a data processor under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other jurisdictions using a similar framework. As a data processor, the company processes personal data on behalf of clients but does not control or determine the purposes for which the data is used.
PII is processed securely and never stored beyond what is necessary. The only PII retained is customer names for display, while all other data passes directly through the system to Tessitura. Furthermore, True Tickets adheres to strict data retention, deletion, and compliance policies, ensuring no unauthorized access or data misuse occurs.
Key Data Security and Handling Provisions
- True Tickets processes PII for ticket delivery and display, user authentication, ticket sharing, and new user registration.
- Data is stored in the geographic region of the Customer (United States, Canada, United Kingdom, Australia) while customer data is primarily stored within the client’s Tessitura system.
- True Tickets adheres to industry best practices for cybersecurity, employing strong access controls, encryption, audit logging, and security measures to safeguard client data.
- Third Party tests and assessments are conducted routinely. Certificates of completion are available upon request.
- True Tickets can permanently delete a customer’s data upon request to comply with the right to be forgotten in privacy laws such as GDPR and CCPA.
- True Tickets does not sell or share PII with third parties.
- Compliance is maintained with Australian Privacy Act 1988, New South Wales Privacy and Personal Information Protection Act 1998, GDPR, and CCPA.
- True Tickets conducts an annual review of its Terms of Use and Privacy Policies in collaboration with legal counsel to ensure compliance with the latest updates in privacy laws and regulatory requirements.
- True Tickets’ systems are replicated across multiple regions to ensure resilience.
- In the event of a regional failure, data recovery plans allow for a restoration of services within a reasonable timeframe.
For Further Information, please see the True Tickets Privacy Policy, Terms of Use, and standard Data Protection Agreement.