Privacy

PRIVACY POLICY

Applicable for tickets.birmingham26.com and the European Athletics Championships Birmingham 2026 Ticket Shop (EACB 2026).

The purpose of this Privacy Policy is to inform you of the processing of your personal data within the framework of tickets.birmingham26.com website and the Ticket Shop under the joint controllership and responsibility of EVENTIM UK Limited and EUROPEAN ATHLETICS CHAMPIONSHIPS VENTURES LLP (referred to below as “Joint Controllers”) and in reference to our marketing measures on our own websites as well the websites of third parties and on social networks in accordance with the UK General Data Protection Regulation (hereinafter "UK GDPR") and the Data Protection Act 2018.

1. Scope, controller and definitions

1.1. Scope of this Privacy Policy

This privacy policy relates to the processing of personal data when you:
- visit or use of the website www.tickets.birmingham26.com (“Website”); and
- visit or use the Ticket Shop for the European Athletics Championships Birmingham 2026 (“Ticket Shop”).
This includes the setting up of a customer account as well as our marketing activities in this context on our websites, third-party websites and social networks.
You can access, save and print the privacy policy at any time and free of charge on our websites.
This privacy policy only concerns the processing of personal data within the meaning of Section 1.3.
Other websites are not covered by this privacy policy and provide their own specific information on data protection.

1.2. Controllers for the processing of your personal data

Unless stated otherwise in this privacy policy, the following are joint controllers for the processing of your personal data:

EVENTIM UK Ltd.
1 Chamberlain Square Cs,
Birmingham, B3 3AX
Company No: 6804119
VAT No: GB 978 7709 41

And

EUROPEAN ATHLETICS CHAMPIONSHIPS VENTURES LLP
190 Great Dover Street
London, SE1 4YB
Company No: OC451782

Together referred to as “European Athletics Championships Birmingham 2026”, “EACB”, “EACB 2026”, “Joint Controllers”, “we”, “us” or “our”.

We have entered into a data sharing arrangement to ensure the lawful and secure sharing of your personal data, in compliance with applicable data protection laws. This arrangement determines our respective responsibilities for compliance with data protection law. For more information about this arrangement, please contact us. EVENTIM UK Ltd. is the single point of contact for any queries. You may contact us at:

EVENTIM UK Ltd.
PO Box 75668
London, WC1A 9QE
Email: dpo[at]eventim.co.uk

Irrespective of the single point of contact, you may exercise your rights under the UK GDPR in respect of and against each of the controllers, Eventim UK Ltd and the European Athletics Championships Ventures LLP.

1.3. Definitions

This privacy policy is based on the following legal terms found in data protection legislation that we have defined below to aid understanding:

The UK GDPR is the UK General Data Protection Regulation is the retained version of the General Data Protection Regulation (Regulation (EU) 2016/679) of the European Parliament as it forms part of the law of England and Wales.
Recipient means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with domestic law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing. Dependent on the payment method chosen for ticket purchases, the recipients of your personal data may be banks or the postal service providers by whom we send your tickets by post.
In accordance with Sec. 15 AktG [“Aktiengesetz”: German Stock Corporation Act], the EVENTIM Group comprises CTS EVENTIM AG & Co. KGaA and all its affiliated companies such as EVENTIM UK Limited. More information can be found at https://corporate.eventim.de/en/portfolio/ticketing
Joint controllers are two or more controllers that jointly determine the purposes and means of the processing of personal data.
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Personal data could be the name, contact details, pattern of use, or bank details.
Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by domestic law, the controller or the specific criteria for its nomination may be provided for by domestic law. The Controllers defined under Section 1.2 are responsible for the data processing described in this privacy policy.
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. Processing may involve, for example, the collection and use of your order data when tickets are sold.

2. How do we collect personal data about you?

We collect personal data about you from a variety of sources such as:

2.1. From you directly

When you contact us, visit EACB 2026, purchase from the Website and Ticket Shop.

2.2. Generated during your usage

Information we generate about you during your use of our Website or when you access links in marketing e-mails by using cookies. You can read more about how we use cookies in our cookie policy.

2.3. From third parties and public sources

From third parties and publicly-available sources such as social media, our third party service providers or other information in the public domain.

3. What personal data do we collect about you?

3.1. Categories of personal data

Personal and contact details such as: your name, your email address, billing address, postal address, phone number, mobile phone number and social media details.
Marketing preferences such as: whether you sign up to receive emails from us.
Communications between you and us such as: by phone, email, Website and social media.
Technical information collected from your device when you are visiting our Website, Ticket Shop or click on an email from us such as: IP address, your geo-location (by country, state and city), browser fingerprints, user agent, device type, browser type, operating system and other cookies – please see our cookies policy for more information.
Transaction information such as: orders placed by you which will include details, such as the value of orders, products purchased, and information about your visit to our Website, such as your items in your shopping cart, the pages you visit, how you arrived to our Website, how often you use our Website, all of which help us to understand your interests.
Event information: If you attend and/or purchase tickets to EACB 2026, we will also collect the following information as part of your participation and/or purchase: the events you attend, date, time, any feedback and any other information you voluntarily provide for the event purposes such as any dietary requirements and access requirements. This includes where you purchase tickets on someone’s behalf and/or forward or resell your tickets to someone else.
Other: any other information you voluntarily provide such as health data in relation to accessibility requirements and allergies, data that may be linked to your health such as dietary requirements.
Publicly available information and information from third parties: such as social media and third parties such as Google Analytics and Akamai Technologies.

4. Purposes, legal framework and data categories when processing your personal data

4.1. Your personal information may be used by us for the following purposes and lawful bases.

4.2. Please note if you fail to provide certain information when requested, we may not be able to perform the contract we have entered into with you (such as fulfilling your order), or we may be prevented from complying with our legal obligations (such as to ensure safety).

Purpose	Types of information we may use	Lawful basis
To process and facilitate your ticket purchases	• Personal and contact details • Communications • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	To comply with our contractual obligations to you and fulfil your order.
To communicate service messages with you about your account or ticket purchases	• Personal and contact details • Communications • Event information • Transaction information • Other information you decide to provide	To comply with our contractual obligations to you in informing you about your account, orders and the event such as relocation or cancellation, informing you about changes to our terms, this policy, providing you with updates about your orders, information about directions, parking, and any changes to our business.
To allow you to access your account, Ticket Shop and our Website	• Personal and contact details • Communications • Technical information • Event information • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	To comply with our contractual obligations to you to allow you to use your account, Ticket Shop and our Website. It is also in our legitimate interest to ensure that you have a smooth customer journey by way of your account, Ticket Shop and our Website.
To monitor your use of our Website	• Personal and contact details • Communications • Technical information • Event information • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	It is in our legitimate interests to understand your preferences and behaviours to deliver personalised and intuitive experience on our Website. We rely on your consent to deploy non-strictly necessary cookies such as functional cookies to help a video play. You have the right to withdraw your consent for this specific processing at any time without affecting the lawfulness of any processing undertaken prior to you withdrawing such consent.
To handle and respond to enquiries from you	• Personal and contact details • Marketing preferences • Technical information • Event information • Communications • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	Where your query is in relation to the ticket you have purchased or your attendance at an event, it is in compliance with our contractual obligations to you to respond to your query. Where your query is in relation to you exercising your legal rights, it is in compliance with our legal obligation to respond to your request and process your personal data accordingly.
To operate our business in an efficient, safe and lawful way and protect it from fraudulent or unlawful activity	• Personal and contact details • Marketing preferences • Event information • Technical information • Communications • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	It is in our legitimate interest to operate our business in an efficient, safe and lawful way and protect it from fraudulent or unlawful activity including for IT security. For example, to exercise our legal rights, detect, prevent and respond to: fraudulent activity and claims, such as creation of new accounts by banned users; intellectual property infringement claims; violations of law or our terms; and to prevent or detect counterfeits. This includes strictly necessary cookies such as security cookies to help detect fraudulent orders, threat detection and prevention. In some cases, we are under a legal obligation (whether by legislation, a regulatory authority or a court order). While we do not routinely process special categories of personal data such as ethnicity, religion or health data – where we do for this purpose, we do for the establishment, exercise or defence of legal claims.
To improve our business, Website, Ticket Shop, products or services	• Personal and contact details • Marketing preferences • Technical information • Communications • Event information • Transaction information • Publicly available information and information from third parties • Other information you decide to provide	It is in our legitimate interest to conduct research, analytics and measure performance in relation to the running of our business so that we can understand any issues and our customers’ shopping habits in order to improve our Website, services or products.
To carry-out business operations and comply with our legal obligations	• Personal and contact details • Marketing preferences • Technical information • Communication • Event information • Publicly available information and information from third parties • Other information you voluntarily provide	Compliance with legal obligations such as tax laws and health and safety laws as well as whistleblowing. It is also in our legitimate interest to execute internal audits and compliance measures.
To promote our products, services, events or other news about our business	• Personal and contact details • Marketing preferences • Technical information • Transaction information • Publicly available information • Other information you decide to provide	For postal marketing: it is in our legitimate interest to add you to our postal marketing list and send you postal marketing on the understanding that our products, services, events and other news may be of interest to you – this helps us grow our business. For digital marketing such as email and SMS: If you are in the UK, when you have previously shopped with us or interacted with us, it is in our legitimate interest to send you emails and SMS about our products, services, events or other news about our business which we believe may be of interest to you – provided we have given you a chance to opt out at the time of purchasing or interaction and in every communication from us thereafter. When you choose to sign up to receive emails and SMS from us such as by submitting your personal information to receive offers from us – it is on the basis of your consent to receive such emails and SMS. For advertising technologies: such as advertisements you may see on other websites such as social media: we rely on your consent to deploy non-strictly necessary cookies such as analytical and advertising cookies to deploy advertisements that are more personalised and relevant to you. You have the right to opt-out of receiving any of our marketing communications at any time without affecting the lawfulness of the processing before its opt-out.

5. How long will we keep your personal data

5.1. Your personal data is stored for as long as, and to the extent necessary, it is required to realize the purposes for which it is processed (Section 4) and as necessary in line with our retention criteria taking into consideration: legal obligations (such as in compliance with tax laws, health and safety laws and consumer protection laws), best industry practice, limitation periods and, our business needs.

5.2. As soon as your data is no longer needed for the purposes stated in Section 4, EVENTIM UK Ltd retains your personal data for the period in which you could exercise claims against the Joint Controllers defined in Section 1.2 and/or for the period in which Joint Controllers defined in Section 1.2 could establish claims against you (this is generally three years to seven years according to the statute of limitations, beginning at the end of the year in which the claim arises, e.g. the end of the year in which the ticket transaction took place).

6. Who we share your personal data with

We may disclose your personal data to other third parties such as:

6.1. Our partners and group companies

If you purchase tickets on the Website or Ticket Shop we process your personal data under the joint responsibility of our partners. We transmit your personal data on the basis of the agreement entered into with our partners (Art. 26 in conjunction with Art. 6 (1) Sentence 1 lit. b) UK GDPR) and based on Art. 6 (1) Sentence 1 lit. b) UK GDPR, to perform our contract with you. Reference is made to the privacy policy of our partners with regard to the processing of data by our partners that they perform at their own responsibility.
Your personal data is transmitted to other companies in the EVENTIM Group within the framework of a collaborative process relating to the provision, execution and management of the Ticket Shop. Such data transmission is performed on the basis of Art. 6 (1) Sentence 1 lit. f) UK GDPR to pursue the legitimate interest of EVENTIM UK Ltd. to execute your order and perform internal administrative activities efficiently and in a collaborative process as well as improve our products and services.

6.2. Our service providers

In addition, your personal data will be transmitted to IT service providers who provide the platforms, databases and tools for the products and services (e.g. the Ticket Shop) and generate analyses of user patterns in the Ticket Shop. Your personal data is transmitted on the basis of Art. 6 (1) Sentence 1 lit. b) UK GDPR for the purpose of performing the contract with you as well as on the basis of Art. 6 (1) Sentence 1 lit. f) UK GDPR to pursue the legitimate interests of the Joint Controllers to improve the products, as well as on the basis of Art. 6 (1) Sentence 1 lit. a) UK GDPR in those cases where you have provided us with your consent to process your personal data. You can revoke your consent at any time with future effect.
Various payment methods are offered to you when you purchase a ticket. Depending on the payment method you choose, your personal data will be transmitted to banks, payment service providers, financial service providers and credit card companies in order to settle the payment and, if necessary, reimburse the purchase price. Your personal data is transmitted on the basis of Art. 6 (1) Sentence 1 lit. b) UK GDPR in order to settle the ticket purchase and reimburse it in the case of cancellation.
If you fail to satisfy your payment obligations, collection procedures may be initiated. In this case, your personal data will be transmitted to the collection agency commissioned to carry out the collection procedure. Your personal data will be processed on the basis of Art. 6 (1) Sentence 1 lit. b) UK GDPR for the purpose of performing and settling the contract with you and on the basis of Art. 6 (1) Sentence 1 lit. f) UK GDPR to pursue the legitimate interest of the Joint Controllers to exercise legal claims, including the right of collection.

6.3. Other circumstances in which we share personal data

In the case of legal disputes, we transmit your data to the applicable court and, if you engage a lawyer, to the lawyer as well in order to conduct the litigation. We process your personal data on the basis of Art. 6 (1) Sentence 1 lit. c) UK GDPR to fulfil a legal obligation and on the basis of Art. 6 (1) Sentence 1 lit. f) UK GDPR to pursue the legitimate interests of the Joint Controllers to establish, exercise and/or defend their legal interests.
In the context of a transaction, we may share your personal data with potential partners, service providers, advisors, and other third parties in connection with the consideration, negotiation, or completion of a corporate transaction in which we are acquired by or merged with another company or we sell or transfer all or a portion of our assets or business.
Your personal data will be transmitted when there is a legal obligation to do so. Transmission is based on Art. 6 (1) Sentence 1 lit. c) UK GDPR (e.g. to the police authorities during a criminal investigation or to the data protection supervisory authorities).

7. International transfers of personal data

7.1. Personal data may be transferred to a country outside the European Economic Area (“EEA”) and UK such as the USA. This includes the service providers we use.

7.2. Such countries and jurisdictions may not be regarded as providing the same level of protection for personal data as the UK and EEA. As such, where any such transfer is made outside the EEA or UK we will always ensure that adequate safeguards are in place to protect your personal information and to make sure it is treated securely and in accordance with this privacy policy.

7.3. In these cases, we rely on approved data transfer mechanisms such as:

relying on derogations set out in data protection laws such as for the fulfilment of the contract with you
an adequacy decision
self-certification mechanisms such as the EU-US Data Privacy Framework and the UK extension to the EU-US Data Privacy Framework
standard contractual clauses such as the EU Standard Contractual Clauses, UK International Data Transfer Agreement and the UK Addendum to the EU Standard Contractual Clauses

7.4. If you are located in the UK or the EEA, you may contact us for a copy of the safeguards which we have put in place to protect your personal information and privacy rights in these circumstances.

8. Your rights

Be informed of how your personal data is being processed
Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing.
Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground.
Request the restriction of processing of your personal data. This enables you to ask us to suspend the processing of personal data about you, for example if you want us to establish its accuracy or the reason for processing it.
Request the transfer of your personal data to another party.
Withdraw your consent. In the limited circumstances where you may have provided your consent to the collection, processing and transfer of your personal data for a specific purpose, you have the right to withdraw your consent for that specific processing at any time without affecting the lawfulness of any processing undertaken prior to you withdrawing such consent.

EVENTIM UK Ltd. is the joint contact for any queries. Please address your request:

by email: dpo[at]eventim.co.uk
in writing to EVENTIM UK Ltd., Data privacy, PO Box 75668, London, WC1A 9QE

If you assert your rights towards us, we will process your personal data collected in this context to the extent needed to address your request. In this case your personal data are processed on the basis of a legal obligation.

You have the right to lodge a complaint with the relevant data protection authority in your country of work or residence if you are not satisfied with the way your request was handled or are concerned about our privacy practices. The UK data protection regulator is the Information Commission, see www.ico.org.uk. For the EU, a list of supervisory authorities and their contact details can be found here: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en

9. Miscellaneous

The provisions of this privacy policy (which can be accessed free of charge on this website) including the cookie information (which can be accessed free of charge on this website) apply in the version valid at the time of using the Ticket Shop.
We reserve the right to supplement and amend the contents of this privacy policy. The updated privacy policy applies from the date on which it is published on this website.
If your contact data are already on our files, you will be informed via email or by standard mail. You will be given the opportunity to view, print and store the amended privacy policy at no charge.

10. Contact details of the data protection officer

For EVENTIM UK Ltd.:
EVENTIM UK
PO Box 75668
London, WC1A 9QE
Email: dpo[at]eventim.co.uk

With regard to EUROPEAN ATHLETICS CHAMPIONSHIPS VENTURES LLP:
We refer to the privacy policy of our partner: https://www.european-athletics.com/home/competitions/european-athletics-championships/privacy-policy

11. Cookie Information

This cookie information provides more specific privacy policy about the use of cookies on Website and the Ticket Shop referred to here as “we” or “us“.

When using our websites, cookies are stored on your computer. Cookies are small text files that are assigned and stored on your hard disk by the browser you use. Cookies allow certain information to flow back to us. This information contains personal data. Cookies also enable the recognition of your browser. For instance, after leaving the website, the content of your shopping basket is reconstructed or events recently viewed are displayed again.

If you give your consent that we may store certain or all cookies on your computer, a corresponding consent ID is generated and stored. The basis on which we process this personal information is described above. If you would like to object to the data processing, please click on the Cookie Settings button (in the bottom-left corner of this page).

11.1. Types of cookies used

First-party cookies: We use first-party cookies, i.e. cookies placed by our server on our websites and which can only be accessed via our server.
Third-party cookies: Our websites also incorporate third-party cookies which are placed by servers of others and/or our websites or domains and that can be read by third parties. With these cookies, your browser can be tracked beyond our website, for instance so as to understand user behaviour.
Session cookies: Our websites incorporate session cookies which allow our site to remember your actions during a particular browser session. These expire each time you close your browser and do not remain on your device afterwards. We use them for the technical realisation of SSO logins.

11.2. Storage period of the cookies

Session cookies: Some of the cookies we use are session cookies, i.e. cookies which are only stored for the duration of your visit to our website.
Persistent cookies: We also use persistent cookies which stay saved on your browser after the session and are automatically deleted after a predefined expiry date.

11.3. Purposes of using cookies

Essential cookies: These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
Functionality cookies: These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you deactivate these cookies, then some of our services may not function properly.
Performance cookies: These cookies collect information about how you use our site, e.g. which pages you go to most often.
Marketing cookies: These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store personal information directly but are based on uniquely identifying your browser and internet device. If you deactivate these cookies, you will experience less targeted advertising.

11.4. Cookie settings by users

Via your browser settings you can limit or completely prevent the storage of (certain) cookies for all websites and delete any cookies that have already been saved. For more information about how to reject cookies using your internet browser settings please consult the “Help” section of your internet browser (or alternatively visit aboutcookies.org).

Our websites can in principle still be visited and used after restricting/deactivating cookies in the browser settings. However, please note that in particular the complete deactivation of cookies can limit the functionalities of our websites. You can prevent future collection of your data when visiting our websites by clicking on the Cookie Settings button (in the bottom-left corner of this page) and changing your settings there.

Last updated: July 2025