Privacy Policy

General

Alþjóðleg kvikmyndahá Rvk ehf. (“RIFF”) provides a sales system for sales and administration of event tickets and related products (here after referred to as “the System” or “RIFF System”). Those who use the sales system are RIFF “Customers”. RIFF Customers are fully responsible for their events and RIFF is only the technical supplier of the system. All questions regarding the events and or the customers’ privacy policy are addressed directly to the respective Customer.

Collection of personal data

RIFF collects personal information in connection to the purchase of tickets for events or products where a Customer uses the RIFF system and when you contact us via e-mail or facebook.

Usage of personal data

RIFF stores personal data on behalf of the Customer and processes it in accordance with applicable legislation. This means that RIFF protects the personal data stored in the system and that you always have the right to contact RIFF for information about which of your personal data is stored. The policy explains how RIFF processes your personal information when you use the sales system via riff.is or the Customer’s own website.
Different Customers are responsible for different events, which means that Different Customers are responsible for your personal information depending on which event tickets and products you buy.

RIFF processes the personal information you provide in connection with the use of the system or contact us, the information may be name, e-mail address, telephone number, address details, date of birth, social security number, card details or other information that you provide in connection to buying the ticket or other communication with RIFF.

Who is responsible for your personal data?

Alþjóðleg kvikmyndahá Rvk ehf. (kt. 6807042870, Laugavegi 116, 105 Reykjavík) is a personal data assistant and is responsible on behalf of the Customer (the data controller) for the processing of personal data and that it is done in accordance with current legislation.

Why does RIFF process personal data?

Your personal data is processed by RIFF in order to be able to:

  • fulfill our obligations to you as agreed, for ex. for you to be able to collect your tickets, for you to be able to get your tickets back if you for some reason can’t find them and more.
  • fulfill our obligations to our Customers in accordance with agreements
  • manage card and app payments
  • improve the purchasing process and other services
  • maintain good customer contact in communication between you and RIFF
    manage repayments of purchases

Who has access to your personal data?

Personal data is processed by RIFF staff members and by personal data assistants of RIFF Customers. As long as there is no legal obligation to disclose personal data, they will not be disclosed to third parties. RIFF never discloses or sells personal data for marketing purposes to third parties. Everyone who has access to the data is obliged to only process the data in accordance to the GDPR law nr. 90/2018.

How long is the personal data stored?

RIFF stores your personal data for as long as it is required to fulfill the obligations that exist in each case.

Security

RIFF takes appropriate technical and organizational measures to protect the personal data being processed. The measures provide a level of security that is consistent with the applicable data protection legislation and is appropriate taking into account:

  • the technical possibilities that exist.
    what it would cost to implement the measures.
  • the specific risks associated with the processing of personal data.
  • how sensitive the personal data is.

Update of the privacy policy

RIFF updates this privacy policy on an ongoing basis and the current version is always available on riff.is.

Contact

Alþjóðleg kvikmyndahá Rvk ehf.
Laugavegi 116, 105 Reykjavík
riff@riff.is
This privacy policy applies from July 21st 2020.

 

SIGN-UP FOR OUR NEWSLETTER