Latest blog posts


As an event organiser your ticketing system needs to be GDPR compliant, and you need to be aware that by accessing your customer information you will also be responsible and liable as a data controller.

1. UK data privacy law faced its biggest change in 20 years

Technological advances have massively increased the amount of personal data being generated and it is still rapidly increasing.

We generate data every time we book or shop online, tweet, use our favourite app or ‘like’ a photo on Instagram – which is why the law needed updating to better protect people in the 21st Century.

The result is the mutually agreed European General Data Protection Regulation (GDPR), which came into force on May 25 2018. It changed how businesses and public sector organisations handle the information of their customers.

2. GDPR is all about giving individuals more control on how their personal data is used

It gives individuals greater visibility and control over the personal data organisations hold – whether it’s something as simple as a name, or as complex and sensitive as medical information. This means people can have greater confidence that information about them is accurate, up-to-date and properly managed.

3. Individuals can choose who contacts them, and how

Since May 2018 organisations have to ask for consent to contact people about offers, products or services they think are of interest or useful. To comply with GDPR, these requests need to be really clear and straightforward. They get to choose who contacts them and how, for example by email, social media or phone.  When GDPR compliance launched it wasn’t compulsory to discard all existing consents and get fresh consents from users but organisations did need to have records of how and when they gained consent and what those individuals were told at the time.

4. They can also change their mind at any time

If an individual gives their permission for you to contact them, it doesn’t mean they can’t change their mind in the future. Under the new rules, it should be easier for them to update preferences on what they want to receive and how.  So keep your communications relevant, consider the frequency messages and always make it clear that they can withdraw their consent.  We offer a service to allow you to anonymise an individuals data if any customer asks you to remove them from your database, this will allow you to keep tickets valid, monitor full ticket sales etc.. yet still respect the privacy of individuals and remain on the right side of the law.

5. There will be better protection around data

GDPR also aims to make sure that all organisations holding personal data have the right processes in place to protect it. Organisations who put customer data at risk will face hefty penalties.

Your customers personal data is in safe hands with LIVE IT Group

  • We do: use personal data to help us provide a great customer service, which includes tailoring the information we share to help ensure that it’s relevant, useful and timely.
  • We do: respect privacy and work hard to ensure we meet strict regulatory requirements.
  • We don’t: sell personal data to third parties.

We’ll always go the extra mile to protect personal data and as part of this, we regularly review our privacy notice and please be aware that further changes relating to GDPR may be made to our Privacy Statement in the future as this new regulation evolves.

If you would like to get in touch to discuss your ticketing requirements please contact the team – support@liveit.io