Last updated — 23 June 2026
1. Who We Are
EntryClubPass, S.L. (“EntryClubPass,” “we,” “us,” or “our”) operates the website https://entryclubpass.com/ (the “Service”). We are registered in Spain and comply with the EU General Data Protection Regulation (GDPR).
2. Personal Data We Collect
| Category | Examples | Purpose / Legal Basis* |
|---|---|---|
| Identity & Contact | First name, last name, email, phone | • Contract performance (processing your pass) • Legitimate interest (customer support) |
| Account Data | Login credentials, purchase history | Contract performance |
| Usage Data | IP address, browser type, pages visited, timestamp | Legitimate interest (analytics, fraud prevention) |
| Device Data | Mobile OS, unique device IDs | Legitimate interest |
| Cookies & Tracking | Session cookies, preference cookies, web beacons | Consent (where required) |
*Article 6 GDPR legal bases.
3. How We Collect Data
- Forms you complete at checkout or during account registration
- Automated tracking via cookies, pixels and similar technologies
- Direct customer-service interactions (email, WhatsApp)
4. Cookies & Similar Technologies
We use both Session and Persistent cookies to:
- Authenticate your account
- Remember preferences (language, cart)
- Analyse site traffic
- Deliver marketing offers (only with consent)
You can disable cookies in your browser; some features may then be unavailable.
See our full Cookie Policy for details.
5. How We Use Your Personal Data
- Provide and manage the Service (issue QR passes, process payments).
- Account administration (password resets, purchase history).
- Customer support (respond to emails, live chat).
- Marketing (newsletters, special offers) — opt-out anytime via the “unsubscribe” link.
- Analytics & security (detect fraud, improve UX).
- Legal obligations (tax, accounting, anti-money-laundering).
6. Sharing Your Data
We never sell your personal data. We share it only with:
- Service providers (Payment processors, email delivery, hosting, analytics) bound by contract.
- Business transfers (if EntryClubPass is acquired or merges; you will be notified).
- Authorities (only when legally required or to protect rights).
- With your consent (e.g., if you opt in to partner promotions).
7. International Transfers
Our servers are hosted in the EU. Some providers operate in the U.S. or other countries; where that happens, we rely on Standard Contractual Clauses or equivalent safeguards to protect your data.
8. Data Retention
- Account data: retained while your account is active + 5 years for tax/legal record-keeping.
- Marketing data: retained until you withdraw consent.
- Usage logs: stored up to 24 months for security analytics.
9. Your GDPR Rights
You can exercise these rights at any time:
- Access – get a copy of your data
- Rectification – correct inaccurate data
- Erasure – “right to be forgotten”
- Restriction – limit processing
- Portability – receive data in machine-readable format
- Objection – object to marketing or legitimate-interest processing
- Withdraw consent – without affecting prior lawful processing
- Lodge a complaint – with the Spanish Data Protection Authority (AEPD)
To exercise any right, email privacy@entryclubpass.com.
10. Security
We employ industry-standard measures: HTTPS encryption, firewall/IDS, least-privilege access. No method is 100 % secure, but we continuously improve safeguards.
11. Children
EntryClubPass is 18 +/21 + only. We do not knowingly collect data from anyone under 18. If you believe a minor has provided data, contact us and we will delete it promptly.
12. Third-Party Links
Our site may link to third-party pages (e.g., Google Maps). We have no control over their privacy practices; review their policies separately.
13. Changes to This Policy
We update this Policy from time to time. Significant changes will be announced via email (registered users) and a banner on our website. The “Last updated” date reflects the latest revision.
14. Contact
Questions? Data-access request?
Email privacy@entryclubpass.com .