Privacy Policy
Last Updated: May 2026
1. Introduction
1.1 MetaTicket LLC ("MetaTicket," "we," "us," or "our"), a Georgia limited liability company, is committed to protecting the privacy of users of our platform (metaticket.org), mobile application, and related services (collectively, the "Platform").
1.2 This Privacy Policy describes how we collect, use, disclose, store, and protect your personal information when you interact with our Platform, including our use of blockchain technology and Non-Fungible Token ("NFT") ticketing.
1.3 By using the Platform, you consent to the practices described in this Privacy Policy.
2. Information We Collect
2.1 Information You Provide Directly
| Category | Examples |
|---|---|
| Account Information | Name, email address, phone number, date of birth, username, password |
| Payment Information | Credit/debit card details, billing address (processed by third-party processors) |
| Identity Verification | Government-issued ID, proof of address (for KYC/AML compliance) |
| Digital Wallet Information | Public wallet address (we do not collect private keys) |
| Communications | Customer support inquiries, feedback, survey responses |
| Event Preferences | Saved events, search history, notification preferences |
2.2 Information Collected Automatically
| Category | Examples |
|---|---|
| Device Information | Device type, operating system, browser type, unique identifiers |
| Usage Data | Pages viewed, features used, clickstream data, session duration |
| Location Data | Approximate location from IP address; precise location only with consent |
| Log Data | IP addresses, access timestamps, referring URLs, error logs |
| Cookies and Tracking | Cookies, web beacons, pixels, and similar technologies |
2.4 Blockchain-Specific Data
Blockchain Data Transparency Notice
When you interact with NFT Tickets on the blockchain, certain information becomes part of the public, immutable blockchain record including wallet addresses, transaction history, Smart Contract interactions, and token metadata.
We employ a hybrid data architecture to protect your privacy:
- Off-Chain (Private): Personally identifiable information is stored in encrypted, access-controlled databases;
- On-Chain (Public): Only pseudonymous wallet addresses, transaction hashes, and non-identifying token metadata are recorded.
We will never record your name, email address, phone number, or other directly identifying information on the blockchain.
3. How We Use Your Information
| Purpose | Legal Basis (GDPR) |
|---|---|
| Providing Platform Services | Performance of contract |
| Account Management | Performance of contract |
| Payment Processing | Performance of contract; Legitimate interest |
| Customer Support | Performance of contract; Legitimate interest |
| Platform Improvement | Legitimate interest |
| Security and Fraud Prevention | Legitimate interest; Legal obligation |
| Legal and Regulatory Compliance | Legal obligation |
| Marketing and Communications | Consent |
4. How We Share Your Information
We may share your information with event organizers, payment processors, identity verification providers, cloud infrastructure providers, analytics providers, and legal authorities — each for specific purposes outlined in this Policy.
We do not sell your personal information to third parties for their marketing purposes.
5. Data Retention
| Data Category | Retention Period |
|---|---|
| Account information | Duration of account + 3 years |
| Transaction records | 7 years (tax/legal compliance) |
| Payment card data | Not stored; handled by processors |
| KYC/AML documentation | 5 years after account closure |
| Customer support records | 3 years |
| Usage/analytics data | 2 years (anonymized thereafter) |
| Blockchain data | Permanent (inherent to blockchain) |
| Marketing preferences | Until consent is withdrawn |
6. Your Privacy Rights
6.1 California Residents (CCPA/CPRA)
You have the right to know, delete, correct, opt-out of sale/sharing, and limit use of sensitive personal information. Email [email protected] with subject "CCPA Request."
6.2 EEA/UK/Switzerland Residents (GDPR)
You have rights of access, rectification, erasure, restriction, data portability, objection, and withdrawal of consent. Blockchain data is immutable — upon erasure request, we delete all off-chain data, severing the link between your identity and on-chain activity. Email [email protected] with subject "GDPR Request."
6.3 Georgia Residents
MetaTicket complies with the Georgia Fair Business Practices Act (O.C.G.A. § 10-1-390 et seq.). Contact [email protected].
7. Data Security
We implement encryption (TLS 1.2+ in transit, AES-256 at rest), access controls, regular security assessments, Smart Contract audits, multi-factor authentication, and incident response procedures.
Data Breach Notification. We will notify affected individuals per the Georgia Personal Identity Protection Act (O.C.G.A. § 10-1-912) and GDPR's 72-hour requirement where applicable.
8. Cookies and Tracking Technologies
| Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Authentication, security, basic functionality | Session / 1 year |
| Functional Cookies | Preferences, language, display settings | 1 year |
| Analytics Cookies | Usage statistics, Platform performance | 2 years |
| Marketing Cookies | Targeted advertising (only with consent) | 1 year |
The Platform respects browser "Do Not Track" signals where technically feasible.
9. International Data Transfers
For EEA/UK/Swiss transfers, we use Standard Contractual Clauses (SCCs), the EU-U.S. Data Privacy Framework, and explicit consent where needed.
10. Children's Privacy
The Platform is not intended for individuals under 18. If you believe a minor has provided us with personal information, contact [email protected].
11. Changes to This Privacy Policy
Material changes will be communicated at least thirty (30) days before taking effect.
12. Contact Us
MetaTicket LLC — Privacy Team
Atlanta, Georgia
Email: [email protected]
Data Protection Officer (GDPR inquiries):
Email: [email protected]
This Privacy Policy does not constitute legal advice. MetaTicket recommends that Users consult with qualified legal counsel regarding their privacy rights.