Sign in


Privacy Policy



Last updated: 29 April 2025



1  Introduction



Logerix Ltd (Company No. 15967016), registered at
6 Steele Road, London E11 3JA, United Kingdom ("Logerix",
"we", "us") is the data controller for personal data
processed through the Logerix online ticketsales platform (the “Platform”). 
This Privacy Policy explains what information we collect, how we use it,
and the choices you have.  It applies to
anyone who visits, registers with, or buys tickets through the Platform
(collectively “you”).



2  The Information We Collect





























Category

Examples

Personal data

Name, postal address (where physical tickets are
shipped), email address, phone number.

Social login data

When you sign in with Google or Facebook we receive your
public profile name and email address from that provider.

Transaction data

Ticket selections, face price, VAT, Service Fee, order
number, event preferences, gift‑aid choice (if applicable).

Technical data

IP address, browser type, device identifiers, referring
URLs, time‑stamps, page‑response metrics.

Cookies & similar technologies

See our separate Cookie Policy for full details.
Note: Paymentcard information is collected and
processed directly by Stripe; Logerix never stores full card numbers or CVV
codes.
processed directly by Stripe; Logerix never stores full card numbers or CVV
codes.


3  How We Collect Data



Directly from you – when you create an account, purchase
tickets, contact support, or join a waitlist.

Automatically – via cookies, server logs, and similar
technologies when you browse the Platform.

From Organizers – event hosts may upload attendee lists
(e.g., complimentary tickets) into the Platform.



4  Legal Bases for Processing



We rely on one or more of the following bases under the
UK GDPR:

Contract – to provide the ticketing service you request
(e.g., processing your order, emailing your tickets).

Legitimate interests – to secure and improve the Platform,
prevent fraud, and compile aggregated usage statistics that do not override
your rights.

Consent – where an Organizer chooses to send marketing
communications and you have opted in, and for nonessential cookies.

Legal obligation – to comply with tax, accounting, and
consumerprotection laws.



5  How We Use Your Data

Ticket fulfilment & account management.

Customer support – to answer queries or resolve issues.

Fraud prevention & security monitoring – including
automated checks at checkout.

Analytics – understanding overall Platform performance and
trends (data aggregated and anonymised where possible).

Marketing by Organizers – only where they have captured
valid email consent from you via the checkout optin box.

6  Sharing & Disclosure

We disclose personal data only as necessary:

Organizers – to complete your booking and let them manage
the Event.

Payment processor Stripe – for secure payment processing and
refunds.

Infrastructure & delivery partners – Amazon Web Services
(euwest2,
London), Cloudflare (security/CDN).

Analytics & monitoring – Google Analytics (usage
analytics), Sentry (error logging).

Legal authorities – where we are compelled by law or to
protect rights, property, or safety.

We do not sell your personal data.

7  International Transfers

Your data is primarily stored in the United Kingdom.  Where we use vendors located outside the
UK/EEA (e.g., Sentry in the United States), transfers are protected by the UK
Addendum to the EU Standard Contractual Clauses or other recognised safeguards.

8  Data Retention

We retain account and order records for up to six years
after your last transaction to meet tax and legal requirements.  Logs used for security may be kept for
shorter periods.  Nonessential
data is deleted sooner if no longer needed. 
You may request deletion of data that we are not obliged to keep.

9  Security

We protect personal data with appropriate technical and
organisational measures, including:

TLS 1.2+ encryption for all traffic.

AES256 encryption at rest for databases and backups
(stored in a separate UK availability zone).

Rolebased access & MFA rollout for
privileged staff accounts.

Centralised logging and realtime alerting via AWS CloudWatch
and Sentry.

Vulnerability management – internal scans and periodic
external penetration tests.

Ongoing reviews to adapt controls to evolving threats.

10  Your Rights

Under UK GDPR you can:

Access the personal data we hold about you.

Rectify inaccurate or incomplete data.

Erase data (“right to be forgotten”) where legal grounds
permit.

Restrict processing in certain circumstances.

Object to processing based on legitimate interests.

Port data to another service (where technically feasible).

Withdraw consent at any time (for marketing or cookies).

Complain to the UK Information Commissioner’s Office (ICO)
if you believe we mishandled your data.

To exercise any right, email
[email protected].

11  Children’s Privacy

The Platform is intended for users 18 years and older.  We do not knowingly collect data from anyone
under 18.  If we learn that a minor has
provided personal data, we will delete it.

12  Updates to This Policy

We may update this Policy to reflect changes in law or our
practices.  We will post the new version
here and, for material changes, notify accountholders by email or indashboard
message at least 14 days before it takes effect.

13  Contact























Questions about this
Policy or our dataprotection
practices?  Email [email protected].