Contact us

Data protection

Privacy policy (status: June 2025)

1. data protection at a glance

General information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to identify you personally. Detailed information can be found in the following privacy policy.

Data collection on this website

Responsible person:
Data processing on this website is carried out by the website operator. You can find the operator's contact details under "Controller".

Collection of your data:
On the one hand, your data is collected when you provide it to us (e.g. via the contact form).
Other data is collected automatically by our IT systems when you visit the website. This is technical data such as browser, operating system or time of access.

Purpose of the processing:
Some of the data is used for the provision and security of the website. Other data can be used to analyse user behaviour.

Your rights:
You have the right to receive information free of charge at any time about the origin, recipient and purpose of your stored data as well as the right to rectification, erasure, restriction of processing or data portability. You can also withdraw your consent or object to certain processing. You have the right to lodge a complaint with the competent data protection supervisory authority.

2. hosting

Provider:
Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4-6, 32339 Espelkamp
https://www.mittwald.de/datenschutz

Legal bases:

  • Art. 6 para. 1 lit. f GDPR (legitimate interest in stable website provision)

  • With consent: Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TTDSG

Order processing:
A DPA contract in accordance with Art. 28 GDPR has been concluded.

3 General notes and mandatory information

Responsible body:
VTO Elite Hospitality UG (limited liability)
Breitscheidstraße 59, Kelly-Birkin-Bag.com c/o
15827 Dahlewitz
E-Mail: info@vip-tickets-only.com
Phone: +49 (0) 69 1339 4598

SSL/TLS encryption:
This site uses SSL/TLS encryption to protect data transmission.

Data transfer to third countries:
Data transfers to the USA (e.g. Google, Meta/WhatsApp) take place on the basis of standard contractual clauses (SCC) and/or as part of certification in accordance with the EU-US Data Privacy Framework (DPF).
DPF participant list

4. data collection on this website

Cookies and consent management

We use cookies to make our website user-friendly, secure and effective.

  • Technically necessary cookies: Art. 6 para. 1 lit. f GDPR

  • Analysis/marketing cookies: Only with consent (Art. 6 para. 1 lit. a GDPR, § 25 TTDSG)

Cookie consent via Borlabs Cookie
Provider: Borlabs GmbH, Rübenkamp 32, 22305 Hamburg
What data does Borlabs store?

Contact form & communication

Contact us by form, e-mail or telephone:

  • Purpose: Processing your enquiry

  • Legal bases:

    • Art. 6 para. 1 lit. b GDPR (pre-contractual)

    • Art. 6 para. 1 lit. f GDPR (legitimate interest)

WhatsApp Business

Provider: WhatsApp Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland

Typeform

Provider: TYPEFORM S.L., Carrer Bac de Roda, 163, 08018 Barcelona, Spain

  • Purpose: Online forms

  • Legal basis: Art. 6 para. 1 lit. f GDPR / if applicable lit. a GDPR

  • AV contract concluded
    Data protection at Typeform

5. analysis tools & advertising

Google Tag Manager

Provider: Google Ireland Ltd, Dublin

Google Analytics 4

6. newsletter (via rapidmail)

Provider: rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg, Germany
Data security at rapidmail

  • Double opt-in procedure

  • AV contract concluded

  • Consent can be revoked at any time

  • Storage in blacklist when unsubscribing to avoid future mailings (Art. 6 para. 1 lit. f GDPR)

7. plugins & tools

Google Fonts (local hosting)

Google reCAPTCHA

Provider: Google Ireland Ltd.

8. your rights as a data subject

You have the right to at any time:

  • Information (Art. 15 GDPR)

  • Correction (Art. 16 GDPR)

  • Cancellation (Art. 17 GDPR)

  • Restriction of processing (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Contradiction (Art. 21 GDPR)

  • Revocation of your consent (Art. 7 para. 3 GDPR)

  • Complaint to the supervisory authority (Art. 77 GDPR)

9. changes to this privacy policy

This privacy policy is regularly updated to comply with legal requirements and technical developments.

Last update: June 2025

 

Privacy Policy

(Last updated: June 2025)

1. overview of data protection

General Information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data refers to any data by which you can be personally identified.

Data Collection on Our Website

Data is processed by the website operator. You can find their contact details below under "Controller".

How do we collect your data?
Some data is collected when you provide it to us (e.g., via a contact form).
Other data is collected automatically by our IT systems when you visit the site. This mainly includes technical data (e.g., browser type, operating system, time of access).

Why do we collect your data?

  • To ensure the technical availability of the website

  • For analysis and optimisation purposes

  • To respond to your inquiries and provide services

What rights do you have regarding your data?
You have the right to request information, correction, deletion, restriction of processing, data portability, and to object to processing.
You may also withdraw any consent previously given. In addition, you have the right to lodge a complaint with a supervisory authority.

2. hosting

Hosting Provider:
Mittwald CM Service GmbH & Co. KG
Königsberger Straße 4-6, 32339 Espelkamp, Germany
Privacy Policy

Processing is based on Art. 6(1)(f) GDPR (legitimate interest in reliable website provision).
A data processing agreement (DPA) has been concluded in accordance with Art. 28 GDPR.
If you have given consent, processing is also based on Art. 6(1)(a) GDPR and § 25(1) TTDSG.

3. controller information

Controller:
VTO Elite Hospitality UG (limited liability)
Breitscheidstraße 59, 15827 Blankenfelde-Mahlow, Germany
Email: info@vip-tickets-only.com
Phone: +49 (0) 69 1339 4598

4 Legal Basis and Storage Duration

Legal Bases for Processing

  • Art. 6(1)(a) GDPR - Consent

  • Art. 6(1)(b) GDPR - Performance of a contract

  • Art. 6(1)(c) GDPR - Legal obligation

  • Art. 6(1)(f) GDPR - Legitimate interests

  • § SECTION 25(1) TTDSG - Consent for use of cookies/trackers

Storage Period

Unless a specific retention period is mentioned, your data will be stored only as long as necessary for its purpose. After that, the data will be deleted unless statutory retention obligations apply.

5. data transfers to third countries

Data may be transferred to third countries (e.g. USA) when using certain service providers (e.g. Google, Meta, WhatsApp).
Such transfers are based on:

6. data collection on this website

Cookies

We use cookies to make our site functional and secure. Technically necessary cookies are based on Art. 6(1)(f) GDPR; all other cookies are used only with your consent (Art. 6(1)(a) GDPR, § 25(1) TTDSG).

Consent Management with Borlabs Cookie
Provider: Borlabs GmbH, Hamburg, Germany
Learn more

Contact Form and Communication

When you contact us by form, email, or phone, we process your data to respond to your inquiry.
Legal basis:

  • Art. 6(1)(b) GDPR (contractual obligation)

  • Art. 6(1)(f) GDPR (legitimate interest in communication)

WhatsApp Business

Provider: WhatsApp Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland

A data processing agreement (DPA) has been signed. Contact syncing is disabled.

Typeform

Provider: TYPEFORM S.L., Carrer Bac de Roda 163, 08018 Barcelona, Spain
Purpose: Collection of form responses

7. analytics and marketing tools

Google Tag Manager

Provider: Google Ireland Ltd, Gordon House, Dublin
Purpose: Managing scripts and tracking tools

Google Analytics 4

8. newsletter via rapidmail

Provider: rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg, Germany
Data protection

  • Double opt-in procedure

  • Consent-based (Art. 6(1)(a) GDPR)

  • DPA in place

  • Unsubscription possible at any time

  • Blacklisting after opt-out based on Art. 6(1)(f) GDPR (to prevent future mailings)

9. plugins and tools

Google reCAPTCHA

Used to prevent spam and abuse
Provider: Google Ireland Ltd.

Google Fonts (Local Hosting)

Fonts are hosted locally - no connection to Google servers is established.
Google Fonts FAQ

10. your data subject rights

You have the following rights under the GDPR:

  • Right of access (Art. 15)

  • Right to rectification (Art. 16)

  • Right to erasure (Art. 17)

  • Right to restriction of processing (Art. 18)

  • Right to data portability (Art. 20)

  • Right to object (Art. 21)

  • Right to withdraw consent (Art. 7(3))

  • Right to lodge a complaint with a supervisory authority (Art. 77)

Supervisory authority for Berlin (Germany):
Berlin Commissioner for Data Protection and Freedom of Information
https://www.datenschutz-berlin.de

11. right to object (Art. 21 GDPR)

You have the right to object to the processing of your personal data at any time for reasons arising from your particular situation, if the data is processed on the basis of Art. 6(1)(e) or (f) GDPR.
You also have the right to object to the processing of your data for direct marketing purposes.

12 Changes to This Privacy Policy

We reserve the right to update this privacy policy in accordance with legal or technical developments.


Last updated: June 2025

Register here and you will always be informed immediately when we have new tickets available.

  • Your data is encrypted via SSL

By submitting the form, you automatically agree to our Privacy policy to.

© 2025 VTO Elite Hospitality UG (limited liability)
All rights reserved.

+49 (0) 6234 305 271

Contact us
© 2025 VTO - All rights reserved.