Combitiq Logo

Privacy Policy

Last updated: January 2026

This Privacy Policy explains how Combitiq B.V. (“Combitiq”, “we”, “us”) processes your personal data when you use our website and booking platform.

Combitiq acts as an independent data controller for data required to facilitate bookings, payments, ticket delivery and customer support.

← Back to programs

1. Who we are

Combitiq B.V. is a Dutch private limited liability company.

Contact: info@combitiq.com.

2. What personal data we process

Depending on how you use the platform, we may process the following categories of personal data:

  • Contact and account data: name, email address, phone number (if provided).
  • Booking and ticket data: selected Experience, date/time slot, quantities, ticket references, status (e.g., redeemed/checked-in if connected).
  • Payment and transaction data: payment method, transaction identifiers, status, fraud-prevention signals. Note: card details are typically processed by payment providers, not Combitiq.
  • Communication data: support requests, email correspondence, chat/message content (if applicable).
  • Technical data: IP address, device/browser information, log data, cookies/similar technologies (depending on your settings).

3. Why we use your data

We process personal data for the following purposes:

  • To fulfil and manage your booking: process orders, send confirmations and deliver tickets.
  • To process payments, chargebacks and refunds.
  • Customer support and communication about your booking (e.g., changes, cancellations, practical information).
  • Fraud prevention and platform security.
  • Compliance with legal obligations (e.g., tax/accounting retention requirements).
  • Improving our services and platform performance (e.g., debugging, high-level analytics).
  • Marketing communications (only where permitted and in line with your preferences/settings).

4. Legal bases for processing

We only process personal data when we have a valid legal basis, including:

  • Performance of a contract: to enable your booking, payment and ticket delivery.
  • Legal obligation: e.g., statutory retention and accounting obligations.
  • Legitimate interests: platform security, fraud prevention, service improvement.
  • Consent: e.g., certain cookies or marketing where required.

5. Who we share data with

We only share personal data where necessary to provide services, to comply with legal obligations, or with your consent.

Categories of recipients may include:

  • Suppliers (Experience providers): to fulfil your booking and enable admission.
  • Payment providers and financial partners: to process transactions, refunds and fraud checks.
  • IT and hosting providers: to operate and secure the platform.
  • Customer support tooling (if used): to handle support requests.
  • Authorities: where we are legally required to do so.

6. International transfers (outside the EU/EEA)

We aim to process data within the EU/EEA. If a service provider is located outside the EU/EEA, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) or rely on an adequacy decision.

7. Data retention

We do not keep personal data longer than necessary for the purposes described, unless a longer retention period is required by law.

  • Booking and transaction data: typically retained as needed for administration, dispute handling and legal retention requirements.
  • Support correspondence: retained as needed to handle requests and for quality purposes.
  • Technical logs: limited and proportionate for security purposes.

8. Cookies and similar technologies

We may use cookies and similar technologies for functionality, security and (where permitted) analytics/marketing.

Where legally required we ask for consent. You can adjust cookie preferences in your browser and/or via our cookie settings (if available).

In addition, Suppliers may implement their own tracking (such as pixels/tags); see the section ‘Supplier tracking’.

9. Supplier tracking (pixels / tags)

Certain Suppliers may use tracking technologies through the Combitiq platform (for example via an embedded booking flow, iFrame, script or similar integration), such as Google Tag Manager, advertising pixels or analytics tags (“Supplier Tags”).

Where Supplier Tags are used, the relevant Supplier is responsible for (i) ensuring a valid legal basis, (ii) informing visitors, (iii) obtaining valid consent where required (for example via a cookie banner), and (iv) aligning its own privacy and cookie policies with such processing.

Combitiq does not control the content of Supplier Tags and is not responsible for the settings, purposes or data processing carried out by the Supplier via these technologies. Questions regarding Supplier Tags should be directed to the relevant Supplier.

If Combitiq technically facilitates Supplier Tags, this is done solely as a technical service provider/processor on the Supplier’s instructions, unless explicitly agreed otherwise.

10. Your rights

Under the GDPR you have several rights, including:

  • Access to your personal data.
  • Rectification of inaccurate data.
  • Erasure (where applicable).
  • Restriction of processing.
  • Objection to processing based on legitimate interests.
  • Data portability for data you provided to us.
  • Withdrawal of consent (where processing is based on consent).

11. Complaints

If you have a complaint about how we process personal data, contact us at info@combitiq.com.

You also have the right to lodge a complaint with the competent supervisory authority (in the Netherlands: the Dutch Data Protection Authority).

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The most recent version will be published on this page.

Contact & company details

Contact: info@combitiq.com

Entity: Combitiq B.V.

Registered office (not a visiting address): Rietschoot 19, 1511WB Oostzaan

KvK number: 97926752

VAT number: NL868291572B01