Privacy Policy

Protection of Your Privacy and the Security of Your Personal Data

Safeguarding your privacy when processing personal data and ensuring the security of that data is a matter of great importance to Electric Love GmbH & Co KG, headquartered at Urstein Süd 19/1/601, 5412 Puch bei Hallein, Austria (hereinafter also “Electric Love GmbH & Co KG,” “we,” “us,” “our”). We handle personal data solely in accordance with the applicable data-protection regulations.

Scope of this Privacy Policy


This privacy policy covers the following areas:
  • purchasing tickets for events
  • personalising event tickets
  • access authorisation and the cashless payment system at events
  • payout of any remaining credit after events
  • subscribing to our newsletter via our website
  • general use of our website
  • contacting us via the contact details provided (especially info@electriclove.at) or via the website contact form
  • visiting the merchandise store linked on our website
  • establishing, exercising and defending legal claims, including the conduct of proceedings

We want you, as a user of our services, to understand how we use information and what choices you have to protect your data. Please read the following information carefully. If you have any questions, feel free to contact us at info@electriclove.at.

This privacy policy explains:
  • which data we collect and use, for what purposes and on what legal basis;
  • how long we process your data;
  • to whom we disclose your data;
  • which rights you have as a data subject.

1. Data Processing in Connection with Purchasing Tickets for Events


When you order tickets for events organised by Electric Love GmbH & Co KG (or for which Electric Love GmbH & Co KG holds ticketing rights) via our website, personal data are collected by See Tickets GmbH on behalf of Electric Love GmbH & Co KG. See Tickets GmbH acts as a “processor” and Electric Love GmbH & Co KG as the “controller” within the meaning of the GDPR.

Data collected during the purchase process
  • first and last name
  • email address
  • date of birth
  • gender
  • telephone number
  • address
  • payment data (PayPal, credit card, Apple Pay, Google Pay)
  • IP address
  • ID number
  • in the case of commercial orders, VAT ID number
  • Facebook Messenger ID (only if you log in with your Facebook account)
  • Instagram Messenger ID (only if you log in with your Instagram account)

Locker ticket category

For “Locker” tickets, lockers are provided. To enable this service, first and last name, email address, locker size, quantity and the “locker tag” are transmitted to our partner TruckLock – mobile lockers. You receive a code by email to open the locker. The transmission is necessary so that, in case of damage, the affected lockers can be assigned to customers and included in the insurance process, and so customers can be uniquely linked to a locker if access fails or is lost.

Legal basis

Processing is based on the performance of a contract (Art. 6 (1) (b) GDPR), on compliance with legal obligations regarding ticket personalisation (Art. 6 (1) (c) GDPR – see also section 3), and on our legitimate interests (Art. 6 (1) (f) GDPR – see also section 3).

2. Data Processing in Connection with Personalising Event Tickets


After completing the purchase, all tickets must be personalised. The following data are processed:
  • name
  • email address
  • date of birth
  • gender
  • telephone number
  • city
  • postal code
  • country

Legal basis

Obligations arising from various legal provisions (Art. 6 (1) (c) GDPR) and our legitimate interests (Art. 6 (1) (f) GDPR).
  • Name and date of birth: required to comply with the Salzburg Youth Protection Act (§ 36 alcohol rules; § 25 presence in hospitality venues).
  • City, postal code, country: required for a comprehensive traffic concept (access routes, parking, shuttle buses).
  • Gender: necessary under § 23 Salzburg Venue Regulation (separate toilet facilities by gender).
  • Telephone number and email: used to inform you of potential risks to life and health (e.g., severe weather) pursuant to § 17 Salzburg Event Act and our legitimate interest in warning attendees or announcing programme changes.

3. Data Processing for Access Authorisation and the Payment System at Events


At our events we use a system from Global Event Technologies GmbH & Co KG (“Global Event Technologies”) for access control and cashless payments, based on RFID chips.

Data transmitted to Global Event Technologies
  • purchaser’s name, email, telephone number, address, gender, date of birth
  • ticket holder’s name, email, date of birth, gender, country

Top-ups of RFID chips can be made on site (cash, debit, credit) or in advance via an online form.

Entry checks involve only an analogue comparison of ticket data with an ID document; IDs are neither scanned nor digitally stored. This is required to comply with §§ 25, 36 Salzburg Youth Protection Act (Art. 6 (1) (c) GDPR) and serves our legitimate interest (Art. 6 (1) (f) GDPR) in ensuring only holders of valid personalised tickets gain entry.

All other processing in this section is based on contractual necessity (Art. 6 (1) (b) GDPR).

4. Data Processing for Payout of Remaining Credit after the Event


After the event you may reclaim any remaining credit.
  • If you topped up via PayPal, the refund is made via PayPal, with no processing beyond the chip’s ID number.
  • For other payment methods, you must request a refund via an online form provided by Global Event Technologies.

Required data
  • RFID chip ID number
  • IBAN
  • name linked to the IBAN
  • country of the bank account
  • email address
  • for non-SEPA transfers: account holder’s address, BIC/bank code, bank name
  • for transfers to Swiss accounts: account holder’s address

Bank data are forwarded to our bank to execute the transfer. Legal basis: contractual necessity (Art. 6 (1) (b) GDPR).

5. Data Processing for the Newsletter


If you subscribe to our newsletter and give consent, we process your data to send newsletters (Art. 6 (1) (a) GDPR). We process your name, email address, telephone number and/or WhatsApp number.

Providing these data is voluntary but required to receive the newsletter. You may unsubscribe at any time via the link in each newsletter or by contacting us (section 16).

6. Data Processing for General Website Use

6.1 Displaying the Website


When you visit our website, the following data are processed to display the site (performance of a service explicitly requested by you, § 165 (3) Austrian Telecommunications Act):
  • IP address
  • login data
  • location
  • browser plug-in types and versions
  • operating system and platform
  • information about your visit (URL click-stream, pages viewed, products viewed/searched, download errors, time spent, interactions)

These server log files ensure functionality, stability and security of our website (legitimate interest, Art. 6 (1) (f) GDPR).

6.2 Cookies


We also use third-party programmes (cookies, web beacons, similar technologies) to make the ads you see more relevant. You can configure your browser to notify or disable cookies; some site features may then not function properly.

Cookie types
  • Session cookies (deleted when you close your browser)
  • Persistent cookies (remain to recognise your browser on return)

Services used
  • Facebook (Custom Audience, etc.)
  • Google Analytics
  • Google Fonts
  • Teads Tag
  • Outbrain
  • TikTok Analytics
  • YouTube (embedded videos)
  • Snapchat

Legal basis: your consent via the cookie banner (Art. 6 (1) (a) GDPR). You can withdraw consent at any time (section 17).

7. General Contact via Contact Details / Contact Form


If you contact us, we process your contact and correspondence data for the purpose you pursue.
  • Prospective customers / business partners: data processing for contract initiation, conclusion and performance (Art. 6 (1) (b) GDPR).
  • Employees or representatives of legal entities: processing based on our legitimate interest in managing contractual relationships (Art. 6 (1) (f) GDPR).
  • Other enquiries: processing based on our legitimate interest in answering enquiries and maintaining contacts (Art. 6 (1) (f) GDPR).

Providing data is voluntary but necessary to answer your enquiry.

8. Data Processing when Visiting the Merchandise Store


You can access the merchandise store via our website (https://merch.electriclove.at). The privacy policy of that store (https://merch.electriclove.at/policies/privacy-policy) applies.

9. Data Processing for Asserting and Defending Claims / Conducting Proceedings


We process your data to assert, exercise or defend legal claims and to conduct proceedings before authorities and courts (legitimate interest, Art. 6 (1) (f) GDPR).

Information under Art. 14 GDPR: For these purposes we may obtain data from other sources (your/company website, public registers, credit agencies).

10. Links to Third-Party Websites


Our website contains links to third-party sites (e.g., partner overview). Their privacy policies may differ from ours.

11. Disclosure of Data to Third Parties


We generally do not share personal data outside Electric Love GmbH & Co KG unless one of the following applies:
  1. With your consent (revocable at any time).
  2. Processing by other parties: trusted processors under contract and appropriate safeguards.
  3. Legal reasons: where required to (a) comply with laws or orders, (b) enforce terms, (c) detect/ prevent fraud, security or technical issues, (d) protect rights, property or safety of Electric Love GmbH & Co KG, users or the public.

Recipients of Data


Depending on the processing activities described in sections 2-10, data may be disclosed to the following recipients (processors unless otherwise stated):
  • Amazon Web Services (hosting in the EU, Luxembourg)
  • See Tickets GmbH (ticket purchasing)
  • Global Event Technologies GmbH & Co KG (payment & access)
  • CM.com Netherlands B.V. (internal data preparation)
  • TruckLock – mobile lockers
  • Google Ireland Ltd. (YouTube interface – consent)
  • Google LLC (analytics/advertising, USA, EU-U.S. Data Privacy Framework)
  • Meta Platforms Inc (analytics/advertising, USA, EU-U.S. Data Privacy Framework)
  • Snap Inc (analytics/advertising, USA, EU-U.S. Data Privacy Framework)
  • TikTok Technology (Ireland) and TikTok Information Technologies UK Ltd (analytics/advertising)
  • Teads Deutschland GmbH (analytics/advertising)
  • Outbrain Inc (analytics/advertising, USA, EU-U.S. Data Privacy Framework)
  • Lawyers, authorities, courts (legitimate interest in legal matters)
  • Banks (contractual transfers)

12. Storage Period


We process personal data only as long as necessary for contractual fulfilment or due to statutory obligations.
  • Contracts: for the duration of contract execution.
  • Accounting records: seven years (§ 212 Austrian Commercial Code, § 132 Austrian Federal Fiscal Code).
  • Newsletter: until consent is withdrawn.
  • Enquiries: for the duration of correspondence.
  • Log data (website security): as long as needed to detect unauthorised access.
  • Web-analytics data: up to one year from collection or until consent withdrawal.
  • Legal claims: up to 30 years, depending on limitation periods and proceedings.
  • Exercise of data-subject rights: three years from last contact.
  • Proceedings: for the duration plus up to 30 years after final conclusion.

13. Data Security


We work hard to protect Electric Love GmbH & Co KG and our customers from unauthorised access, alteration, disclosure or destruction of data by:
  • encrypting many of our services with SSL/TLS;
  • reviewing our data collection, storage and processing practices, including physical security;
  • restricting access to personal data to employees and contractors who need to know the data to process it for us and who are subject to strict confidentiality obligations and disciplinary/legal consequences for breaches.

14. Data-Subject Rights


Under data-protection law you have extensive rights regarding your data, exercisable via email (info@electriclove.at) or post:
  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to object where processing is based on legitimate interest (Art. 21 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)

15. Right of Withdrawal


You may withdraw any consent you have given to the processing of your data at any time with effect for the future. Processing up to the time of withdrawal remains lawful. Contact: info@electriclove.at.

16. Right to Lodge a Complaint


You have the right to lodge a complaint with the Austrian Data Protection Authority or any other supervisory authority in the EU, particularly at your place of residence or work.

17. Use of the Website by Minors


If you are 14 years old or younger, please obtain consent from your parents/guardians before providing data via our website. Without this consent, providing data is prohibited. If you nevertheless send us data, we will stop processing it as soon as we become aware.

18. Changes to this Privacy Policy


This privacy policy may change from time to time. All changes will be published on this page.