top of page
469508345_582593711193030_9147634315699597224_n_edited.jpg

GDPR Privacy and Data Protection Policy

1. Introduction

At Vanity Club, we are committed to protecting your privacy and safeguarding your personal data. This policy outlines how we collect, use, and protect your personal information in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. By interacting with Vanity Club (e.g., purchasing tickets, registering for events, or using our services), you consent to the collection and processing of your personal data as outlined in this policy.

2. Data Controller

Vanity Club, located at 11, rue du Brill L-3898 Foetz, is the data controller for the purposes of GDPR compliance. You can contact us for any questions or concerns about your personal data.

3. Personal Data We Collect​

We collect the following types of personal data :

  • Basic Identification Information : Name, address, email address, phone number.

  • Payment Information : Credit card details or bank account information (via secure payment processing systems).

  • Event-related Information : Ticket purchases, event reservations, and preferences related to specific events.

  • Marketing and Communications : Subscription to newsletters or promotional offers.

  • Membership Details : Membership application, registration, and status.

 

4. Purpose of Data Collection

We collect your personal data for the following purposes :

  • Event Management : To process your event registrations, ticket purchases, and reservations.

  • Customer Support : To respond to your inquiries, requests, and provide customer service.

  • Marketing Communications : To send you promotional materials, event updates, and exclusive offers  (you can opt-out of marketing communications at any time).

  • Legal and Compliance Requirements : To comply with legal obligations, including tax reporting and financial transactions.

 

5. Legal Basis for Data Processing

We process your personal data based on the following legal grounds :

  • Consent : You have given your explicit consent for us to process your personal data for specific purposes (e.g., subscribing to our newsletter).

  • Contractual Necessity : The processing is necessary for the performance of a contract (e.g., processing ticket purchases or event reservations).

  • Legal Obligation : We may need to process your data to comply with legal obligations (e.g., tax reporting or financial transactions).

 

6. Data Retention

Your personal data will be stored only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Once your personal data is no longer needed, it will be securely deleted or anonymized.

 

7. Sharing Your Data

We will not share, sell, or rent your personal data to third parties unless required for the provision of services or by law. This may include :

  • Third-Party Service Providers : To assist with payment processing, event management, or marketing services (e.g., email marketing providers). These service providers are bound by confidentiality agreements and only process data on our behalf.

  • Legal Authorities : If required by law, we may disclose your personal data to law enforcement or other government authorities.

 

8. Your Rights Under GDPR

As a data subject, you have the following rights under GDPR :

  • Right to Access : You may request a copy of the personal data we hold about you.

  • Right to Rectification : You may request that we correct any inaccuracies in your personal data.

  • Right to Erasure : You may request that we delete your personal data, subject to certain conditions.

  • Right to Restriction of Processing: You may request that we restrict the processing of your personal data under specific circumstances.

  • Right to Data Portability : You may request that we provide your personal data in a structured, commonly used format.

  • Right to Object : You have the right to object to our processing of your personal data in certain situations.

  • Right to Withdraw Consent : You may withdraw your consent for us to process your personal data at any time, where processing is based on consent.

 

To exercise any of these rights, please contact us.

 

9. Data Security

We take the security of your personal data seriously and have implemented appropriate technical and organizational measures to protect it from unauthorized access, alteration, disclosure, or destruction. This includes encryption, secure payment methods, and regular security audits.

10. International Transfers

In some cases, your personal data may be transferred outside the European Economic Area (EEA). If this occurs, we will ensure that appropriate safeguards are in place to protect your data, in accordance with GDPR requirements.

11. Changes to This Policy

Vanity Club may update this Privacy Policy from time to time. Any changes will be communicated to you via email or other appropriate channels. Please review this policy periodically to stay informed about how we are protecting your personal data.

12. Contact Us

If you have any questions or concerns about how we process your personal data, or if you wish to exercise any of your rights under GDPR, please contact us at :

Vanity Club
11, rue du Brill L-3898 Foetz
info@vanityluxembourg.lu

bottom of page