Back

Day Zero Tulum 2027

Privacy Policy

Last updated: May 2026

This Privacy Policy explains how Ingresse Ingressos Para Eventos Espana, S.L., a company organised under the laws of Spain, with registered office at Poeta Joan Maragall, 3, 1 I, 28020 Madrid, Spain and tax number (NIF) B70460081, registered at the Mercantile Registry of Madrid under sheet M-702869 ("Ingresse", "we", "us"), processes your personal data when you purchase tickets for Day Zero Tulum (the "Event") through the Ingresse platform.

1Who is responsible for your data

Ingresse is the controller of the personal data processed through the platform for its own purposes. Ingresse and the organiser of the Event, Constellations Management Ltd (the "Organizer"), each act as independent controllers in respect of the personal data each of them processes for its own purposes. This Policy covers Ingresse's processing; the Organizer's processing is governed by the Organizer's own terms and privacy information.

2Legal framework

We process your personal data in accordance with the UK GDPR, the EU General Data Protection Regulation (GDPR) and the Spanish Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD). Depending on your country of residence, you may also have additional rights under your local data-protection law, which we will honour to the extent they apply to you.

3What data we collect

We collect the following categories of personal data:

  • Identification data - name, e-mail, phone, and identity-document data where required for admission.
  • Transaction data - ticket category, purchase date, payment method and amount.
  • Marketing data - your consent records and communication preferences.
  • Access-control data - ticket scans and venue check-in.

4Why we process it, and on what legal basis

We process your data for the following purposes:

  • To operate the platform and complete your purchase - performance of our contract with you (Art. 6(1)(b) GDPR).
  • To process payments - performance of our contract with you.
  • To prevent fraud and keep the platform secure - our legitimate interests (Art. 6(1)(f) GDPR).
  • To provide customer support - performance of our contract with you and our legitimate interests.
  • Access control at the Event - performance of our contract with you.
  • To send you marketing about Day Zero, only if you opt in - your consent (Art. 6(1)(a) GDPR). You can withdraw your consent at any time, without affecting prior processing.

5Who we share your data with

We share your personal data with:

  • the Organizer (Constellations Management Ltd), as an independent controller - to deliver the Event and manage admission and, if you have opted in, to send you Day Zero marketing. The user transaction database is provided to the Organizer at the close of the Event.
  • Adyen N.V., as payment processor - to process your payment.
  • service providers acting as processors on our behalf - such as hosting, support and anti-fraud providers, under written data-processing terms.
  • authorities or third parties where required by law - or to establish, exercise or defend legal claims.

6International transfers

Where we transfer your personal data outside the United Kingdom or the European Economic Area, we rely on an adequacy decision or on appropriate safeguards (such as the relevant standard contractual clauses), so that your data remains protected.

7How long we keep it

We keep your personal data for as long as necessary to fulfil the purposes described above and to comply with our legal, accounting and tax obligations, and for the periods required to establish or defend legal claims. Marketing data is kept until you withdraw your consent or object.

8Your rights

You have the right to access, rectify, erase, restrict and port your personal data, to object to certain processing, and to withdraw any consent you have given. You also have the right not to be subject to a decision based solely on automated processing that produces legal or similarly significant effects on you, and to request human review of any such decision - including, where applicable, automated fraud checks applied to your purchase. To exercise these rights, contact us at [email protected]. You also have the right to lodge a complaint with a supervisory authority - in Spain, the Agencia Espanola de Proteccion de Datos (AEPD); in the United Kingdom, the Information Commissioner's Office (ICO); or the data-protection authority of your country of residence.

9Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss or misuse, and we require our processors to do the same.

10Cookies

The Ingresse platform uses cookies and similar technologies. Some are strictly necessary for the platform to function and to complete your purchase; others help us understand how the platform is used, prevent fraud, and - where you allow it - measure and improve our communications. You can manage non-essential cookies through the cookie controls made available on the platform and through your browser settings. Disabling certain cookies may affect how parts of the platform work.

11Changes to this Policy

We may update this Policy from time to time. The version applicable to your purchase is the one in force when you place your order; material changes will be notified through the platform.

Contact

For any question about this Policy or about how we handle your data, contact our Data Protection Officer at [email protected].