We continually strive to abide by existing legislation. This also applies to the rules of the Personal Data Protection Act and the Personal Data Regulation, and it is important to us that your personal data is treated safely and securely.
When you book tickets with us, or sign up to one of our newsletters, or to one of our customer clubs, we receive a range of personal data regarding yourself.
In accordance with the Privacy Act and the Personal Data Regulation, we are therefore required to supply you with a certain amount of information.
Among other things you are to be informed as to how you can contact us, if you wish to have access to the information we have regarding yourself, how we process this information, what the information is used for, and when your information is deleted.
You can find this information below.
1. We are the controller – how do you get into contact with us?
Katuaq is the controller responsible for the processing of personal information that we have received about you. You will find our contact details below.
P.O. Box 1622
tel.: (+299) 36 37 70
2.1 Duration of time cookies are stored
Cookies delete themselves after a certain number of months (can vary), but are renewed following new visits.
2.2 How to delete cookies
See instructions here: http://minecookies.org/cookiehandtering
2.3 How do I avoid cookies?
If you do not wish to receive cookies you can block them. See instructions here: http://minecookies.org/cookiehandtering
2.4 What cookies on our website are used for
Cookies are used to store your log on information for the purchase of your item, or for booking your order (but only if you choose to tick on the checkbox), as well as session cookies for purchasing and booking tickets.
3. The purpose of, and the legal basis for the processing of your personal data
We retrieve and process your personal data when you buy a book or a movie ticket through our ticket booking system. Retrieval of data is necessary in order to confirm and identify your purchase or reservation.
The legal basis is therefore the Personal Data Regulation, article 6, paragraph 1, litra b.
If you have signed up to a newsletter or to one of our customer clubs, our processing of your personal data is based on your consent.
The legal basis in such cases is the Personal Data Regulation, article 6, paragraph 1, litra a.
4. Categories of personal information
We only process your ordinary personal data, such as; names, telephone number, mail address and geographical address. We will never retrieve sensitive personal information regarding you.
5. Recipients or categories of recipients
We transfer or assign your personal data to ebillet.dk, which we use as controllers, and to which we have a data processing agreement.
For newsletters we use Sendgrid, for transfer of notifications concerning upcoming events.
We do not transfer your information otherwise.
6. Storage of your personal information
If you have bought or booked tickets via our booking system, your personal information will be stored for up to 5 years after you have seen a show.
If you have received newsletters from us, the information will be deleted immediately from the moment you unsubscribe the newsletter.
7. Your rights
Pursuant to the Personal Data Regulation, you have a series of rights in regards to our processing of information about you.
If you wish to exercise your rights, you must contact us. Our contact info is listed under section 1.
The right to see information (right of access)
You have a right to access the information that we process on your behalf, as well as retrieving additional information.
The right to amend information (rectification of data)
You have a right to amend erroneous data regarding yourself.
The right of erasure
In special cases you have the right to erase information about you, prior to the normal erasure time of your information as specified under section 5.
The right of restriction of processing
In special cases you have a right to restrict process of your information. If you have a right for restriction, we are allowed only to process your information – apart from storage – with your consent, or if legal requirements are to be determined, in exercise or in defense of legal claims, or for the protection of an individual, or for important reasons of public interest.
The right to object
In special cases you have a right to object our legal processing of your personal information. You also have a right to object to the processing of the use of your personal information for direct marketing.
The right to transmit information (data portability)
In special cases you have a right to receive your personal information in a structured, commonly used or machine readable format, as well as the transfer of such personal data from one data controller to another without hindrance.
You may read further about your rights in the Danish Data Protection Agency’s instructions concerning the rights of the registered through the following link www.datatilsynet.dk.
8. Complaints to the Danish Data Protection Agency
You have a right to file a complaint to the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You can find the Agency’s contact details through this link www.datatilsynet.dk.
9. The right to withdraw consent
You should know that you are entitled to withdraw your consent, if our processing of your personal data rests on consent from you. That is the case for example, if you are a member of a member’s club, or if you receive newsletters from us.
If you choose to withdraw your consent, you may contact us through the contact details provided under section 1.
If you choose to withdraw your consent, it will be effective from the time you withdraw your consent. Hence, it will not affect the legality of our processing of your personal data until then.
10. Transfer to third countries, including international organizations
As mentioned under section 4, if you are a member of a customer’s club, or have consented to receive newsletters, we will at times use mail-systems, such as Sendgrid, for the distribution of newsletters.
While using Sendgrid for example, we transfer your information to a receiver outside the EU/EAA.
However, we have a data processing agreement with MailChimp, and Sendgrid abides by the guidelines as stated in the EU-US Privacy Shield, which have been assessed by the EU Commission to have sufficient and similar security as the guidelines in the Personal Data Regulation.
If we are to use other mailing systems placed in third countries, we will only use them if they comply with the same requirements as stated in Sendgrid.
11. Additional information
Your information will not be subject to profiling or automation, and we have not designated a data protection officer.