Tixsy Privacy Policy

1. Introduction

This Privacy Policy explains how Apexia Group Limited trading as Tixsy ("Tixsy", "we", "us", or "our") collects, uses, and protects personal data relating to event organisers ("Organisers") and individuals who purchase tickets or attend events ("Customers" or "Attendees") through the Tixsy platform.

Tixsy is committed to protecting personal data and complying with the UK GDPR, EU GDPR, and the Data Protection Act 2018.

2. Data Roles (Controller vs Processor)

• You (the Organiser) are the Data Controller of Customer/Attendee personal data. You decide why and how that data is processed.
• Tixsy acts as a Data Processor for Customer/Attendee data, processing it only on your behalf and in accordance with your instructions.
• Tixsy is the Data Controller for personal data relating to Organiser accounts, billing, and platform usage.

3. Information We Collect

3.1 Organiser Data (Tixsy is Controller)

We collect and process personal data necessary to create, manage, and support Organiser accounts, including:

• Name, email address, and contact details
• Business information (where applicable)
• Billing and invoicing information for Tixsy fees
• Login credentials (stored securely)
• Platform usage data such as IP address, login timestamps, and feature usage

3.2 Customer / Attendee Data (Organiser is Controller)

When Customers purchase tickets through Tixsy, we process the following data on behalf of the Organiser:

• Name and contact details (such as email address)
• Order and ticket information (ticket type, quantity, price, event date)
• Attendance and check-in status
• Payment status and transaction references

Tixsy does not store full payment card details. All card payments are processed securely by third-party payment providers such as Stripe or PayPal.

4. How We Use Personal Data

• To Provide the Service: Creating and managing events, processing ticket sales, sending transactional emails, and enabling attendee check-in.
• Platform Operations & Security: Monitoring usage, preventing fraud, and maintaining platform reliability and security.
• Service Improvement: Analysing anonymised and aggregated data to improve performance, usability, and features.
• Legal & Compliance: Meeting legal, regulatory, and accounting obligations.

Tixsy does not market to, sell data about, or independently communicate with Customers. All Customer communications are sent on behalf of the Organiser.

5. Data Sharing

We only share personal data where necessary to operate the service, including with:

• Payment processors (e.g. Stripe, PayPal)
• Infrastructure and hosting providers
• Email delivery and notification services

All third parties are required to process data securely and in compliance with data protection laws.

6. Data Security

We implement appropriate technical and organisational measures to protect personal data, including encryption, access controls, and secure infrastructure. While we take security seriously, no system can be guaranteed to be completely secure.

7. Data Retention

Organiser data is retained for as long as an account remains active or as required for legal and operational purposes. Customer data is retained in accordance with the Organiser’s instructions and applicable legal requirements.

8. Your Rights

Under data protection law, individuals may have rights including access, rectification, erasure, restriction, and data portability. Requests relating to Customer data should be directed to the relevant Organiser.

9. Contact Us

If you have questions about this Privacy Policy or how we handle personal data, please contact:

Apexia Group Limited (Tixsy)
Email: support@tixsy.com