Privacy Policy

Last Updated: November 5, 2025

1. INTRODUCTION

Tikkets ("we," "our," or "us") provides an event management and ticketing platform accessible via our website (privacy@tikkets.io) and mobile application. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our services.

Important: Our mobile app is designed for event organizers and scanners to log in and manage events — not for account creation. All accounts must be created through our website at https://www.tikkets.io/.

2. INFORMATION WE COLLECT

2.1 Account Information (Website Only)

When you create an account on our website, we collect:

  • Email address and password
  • Full name
  • Business name (for organizers)
  • Phone number (optional)
  • Industry information (for organizers)
  • Profile picture (optional)

2.2 Authentication Data

  • Login tokens and session information
  • Refresh tokens
  • Scanner authentication keys (for event staff)
  • Two-factor authentication settings (if enabled)
  • Device information (for authentication)

2.3 Event & Transaction Data

  • Event details (title, description, location, venue, dates)
  • Ticket purchases and orders
  • Buyer information (name, email, phone number)
  • Payment information (processed securely by Flutterwave)
  • QR codes for ticket verification
  • Discount/coupon codes used

2.4 Check-In Data (Mobile App)

When scanners verify tickets at events:

  • Ticket scanning records
  • Check-in timestamps
  • Scanner names and device information
  • Check-in locations (if applicable)

2.5 Mobile App Permissions

Our mobile app may request the following permissions:

  • Camera: Required to scan QR codes on tickets
  • Notifications: To send important updates about events
  • Local Storage: To store authentication tokens securely on your device

We do NOT collect:

  • Physical addresses
  • GPS/precise location tracking
  • Contact lists
  • Photos from your device
  • Microphone access

2.6 Automatically Collected Information

  • Device type and operating system
  • App version and performance data
  • Error logs and crash reports

3. HOW WE USE YOUR INFORMATION

We use your information to:

  • Provide event management and ticketing services
  • Authenticate users and maintain secure access
  • Process ticket purchases through Flutterwave
  • Verify attendees at events via QR code scanning
  • Generate analytics for event organizers (ticket sales, attendance rates)
  • Send transactional emails (order confirmations, tickets, event updates)
  • Improve our services and user experience
  • Prevent fraud and ensure security
  • Comply with legal obligations

4. DATA SHARING & DISCLOSURE

We Share Data With:

Payment Processor:

  • Flutterwave: Processes all payments securely. We do not store full credit card numbers.

Event Organizers:

When you purchase tickets, the event organizer receives:

  • Your name and email address
  • Ticket details and order information
  • Check-in status

Scanners/Event Staff:

Authorized scanners can only access:

  • Ticket verification data (QR codes)
  • Attendee names for check-in purposes
  • Check-in status

Legal Requirements:

We may disclose information when required by law, court order, or legal process.

We Do NOT:

  • Sell your personal information to third parties
  • Share your data with advertisers
  • Use your data for marketing to third parties

5. USER ROLES & ACCESS LEVELS

Attendees:

  • Can view their own tickets and order history
  • Cannot create accounts via mobile app

Organizers:

  • Create accounts on our website
  • Access attendee lists, ticket sales, and analytics for their events
  • Can generate scanner keys for event staff
  • Mobile app: Track events, view attendees, manage check-ins

Scanners:

  • Log in using scanner keys provided by organizers
  • Mobile app: Scan tickets, verify attendees, record check-ins
  • Limited access to only assigned events

6. DATA RETENTION

  • Account Information: Retained while your account is active
  • Order & Ticket Data: Retained for 7 years for legal, tax, and financial purposes
  • Check-In Logs: Retained indefinitely for event records and analytics
  • Authentication Tokens: Automatically expire after defined periods (access tokens: 7 days; refresh tokens: 7 days; login link tokens: 7 days; scanner keys: set by organizer)
  • Inactive Accounts: May be deleted after 2 years of inactivity with prior notice

7. YOUR PRIVACY RIGHTS

You have the right to:

  • Access: Request a copy of your personal data
  • Correct: Update inaccurate or incomplete information via your account settings
  • Delete: Request deletion of your account (except data we must retain for legal/financial purposes)
  • Export: Request a portable copy of your data
  • Opt-Out: Unsubscribe from marketing emails (transactional emails cannot be disabled)
  • Withdraw Consent: Disable two-factor authentication or change login methods

To Exercise Your Rights: Email us at privacy@tikkets.io or manage settings in your account dashboard.

8. DATA SECURITY

We implement industry-standard security measures:

  • Encryption: All passwords are hashed using bcrypt
  • HTTPS/TLS: All data transmissions are encrypted
  • Secure Tokens: Authentication tokens are cryptographically secure
  • Access Controls: Role-based permissions limit data access
  • Regular Audits: We monitor for security vulnerabilities

Note: However, no system is 100% secure. We cannot guarantee absolute security.

9. CHILDREN'S PRIVACY

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a child, contact us immediately at privacy@tikkets.io.

12. COOKIES & TRACKING (Website Only)

Our website uses:

  • Essential Cookies: Required for login and basic functionality
  • Authentication Cookies: Keep you logged in

We do NOT use:

  • Advertising cookies
  • Third-party tracking cookies

You can manage cookie preferences in your browser settings.

13. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically. Material changes will be notified via:

  • Email notification to registered users
  • In-app notification (mobile app)
  • Prominent notice on our website

Continued use of our services after changes constitutes acceptance of the updated policy.

14. CONTACT US

For Privacy Inquiries:

For Data Protection Requests:

By using Tikkets, you acknowledge that you have read and understood this Privacy Policy.