Privacy Policy
Corsa ehf operates a registration system for the sale and management of tickets for various events and related products (hereinafter referred to as “Corsa” or “the system”). Those who use the system are Corsa’s customers (i.e., event holders, organizers, or event, music, or theater venues, hereinafter referred to as “event organizers”).
Corsa’s event organizers are responsible for their events, while Corsa acts as the data processor. Corsa assists its customers in selling tickets to events by leasing them the system and publishing the events on its website. All questions regarding the privacy practices of specific event organizers should be directed to them.
Storage of Personal Data
Corsa collects and stores personal data in connection with the purchase of tickets for events or products where the customer uses the system, and also when contact is made with us via email.
Processing of Personal Data
Corsa stores personal data on behalf of event organizers and uses it in accordance with applicable laws.
Corsa protects personal data stored in the system, and users have the right to contact Corsa to obtain information about which personal data is stored about them at any given time. This policy explains how Corsa processes personal data when you use the system through Corsa (www.corsa.is and www.corsa.events) or through various event organizers’ websites.
Different event organizers are responsible for different events, meaning that different event organizers are responsible for your personal data depending on which event(s) you purchase tickets for.
Corsa processes the personal data that users provide in connection with the use of the system or when contacting the system. The information may include, for example, name, email address, phone number, home address, date of birth, national ID number, card details, or other information you provide when registering for an event ticket or in other communications with Corsa.
Deletion of Personal Data
You may request the deletion of personal data. If a customer wishes to do so, they must send an email to support@corsa.is with appropriate identifying information.
Responsibility for Personal Data
Corsa ehf (ID No. 550421-1510, Ármúli 3, 108 Reykjavík) responds to inquiries concerning personal data and is responsible, on behalf of event organizers, for the processing of personal data and ensuring that it is processed in accordance with applicable laws.
Corsa’s Use of Personal Data
Corsa uses personal data to:
Process refunds for ticket purchases.
Fulfill our obligations to you as agreed, for example so that you can access your registration and tickets, have tickets resent if you cannot find them or have lost them, etc.
Fulfill obligations to event organizers in accordance with agreements.
Receive and process card and digital payments.
Improve the purchasing process.
Maintain good customer relations in your communications with Corsa and event organizers.
Access to Personal Data
Personal data is processed by Corsa staff and by contacts responsible for data protection at event organizers. Unless there is a legal obligation to disclose personal data, it will not be provided to third parties. Corsa never publishes or sells personal data to third parties for marketing purposes.
Anyone with access to the data is required to process it only in accordance with GDPR Act No. 90/2018.
Retention of Personal Data
Corsa stores your personal data for as long as necessary to fulfill the obligations applicable at any given time.
Security of Personal Data
Corsa implements appropriate technical and organizational measures to protect the personal data being processed. These measures provide security in accordance with applicable data protection legislation and are appropriate considering:
The technical possibilities available.
The cost of implementing the measures.
The specific risks associated with the processing of personal data.
The sensitivity of the personal data.
Updates to the Privacy Policy
Corsa updates this privacy policy regularly.