Privacy Policy

How StartXSport LLC collects, uses and protects your personal information

Last updated: June 2026

This Privacy Policy explains how StartXSport LLC (“StartXSport”, “we”, “us” or “our”) processes personal data when you visit startxsport.com, enquire about or purchase tickets and VIP hospitality, or otherwise interact with our services. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data controller

The data controller responsible for your personal data is:

StartXSport LLC
1a, London Rd, St Albans AL1 1LE, United Kingdom
Email: [email protected]
Telephone: 01727 861 530

2. Data Protection Officer

For any questions relating to this Privacy Policy or our handling of your personal data, please contact our Data Protection Officer (DPO) at [email protected]. Please include “Data Protection” in the subject line so your enquiry can be routed promptly.

3. Personal data we collect

Depending on how you use our website and services, we may collect and process the following categories of personal data:

  • Identity and contact data — name, email address, telephone number, billing address and delivery address.
  • Booking and transaction data — event preferences, ticket or VIP box selections, order history, payment confirmation details (we do not store full card numbers on our servers).
  • Technical and usage data — IP address, browser type, device information, pages visited, referral source and interaction with our website.
  • Communication data — messages you send via contact forms, email, live chat or telephone, and our responses.
  • Marketing preferences — your choices regarding promotional communications, where applicable.

We do not intentionally collect special category data (such as health information) unless you voluntarily provide it and we have a lawful basis to process it.

4. How we collect personal data

We collect personal data when you:

  • Complete an enquiry or contact form on our website;
  • Place an order or request a quote for tickets or VIP hospitality;
  • Communicate with us by email, telephone or live chat;
  • Subscribe to updates or marketing (where you have opted in);
  • Browse our website, including through cookies and similar technologies (see our Cookie Policy).

5. Purposes and lawful bases for processing

We process your personal data only where permitted by law. The table below summarises our main purposes and lawful bases:

  • Processing and fulfilling bookings — performance of a contract or steps taken at your request prior to entering a contract.
  • Customer support and account management — performance of a contract and our legitimate interests in providing effective service.
  • Payment processing and fraud prevention — performance of a contract, compliance with legal obligations and legitimate interests in protecting our business and customers.
  • Website analytics and improvement — legitimate interests in understanding how our site is used, subject to your cookie preferences.
  • Marketing communications — your consent, or our legitimate interests where permitted (you may opt out at any time).
  • Legal and regulatory compliance — compliance with legal obligations, including tax and accounting requirements.

6. Sharing your personal data

We may share personal data with trusted third parties where necessary to deliver our services, including:

  • Licensed ticket suppliers, venues and hospitality partners to fulfil your booking;
  • Payment service providers to process transactions securely;
  • IT, hosting and email service providers who support our website and operations;
  • Professional advisers (such as accountants or legal advisers) where required;
  • Regulators, courts or law enforcement where we are legally obliged to do so.

We require third parties to process personal data only on our instructions and in compliance with applicable data protection law. We do not sell your personal data.

7. International transfers

Some of our service providers may process data outside the United Kingdom. Where this occurs, we ensure appropriate safeguards are in place, such as UK adequacy regulations, International Data Transfer Agreements or equivalent mechanisms approved under UK GDPR.

8. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including to satisfy legal, accounting or reporting requirements. Booking records are typically retained for up to seven years after the transaction date. Marketing data is retained until you withdraw consent or object to processing. Technical logs may be retained for a shorter period consistent with security and analytics needs.

9. Your rights under UK GDPR

Subject to certain conditions, you have the following rights in relation to your personal data:

  • Right of access — to obtain a copy of the personal data we hold about you.
  • Right to rectification — to request correction of inaccurate or incomplete data.
  • Right to erasure — to request deletion of your data in certain circumstances.
  • Right to restrict processing — to limit how we use your data in specific situations.
  • Right to data portability — to receive your data in a structured, commonly used format where processing is based on consent or contract.
  • Right to object — to object to processing based on legitimate interests or for direct marketing.
  • Rights related to automated decision-making — we do not use solely automated decision-making that produces legal or similarly significant effects.

To exercise any of these rights, contact our DPO at [email protected]. We will respond within one month, unless an extension is permitted. There is no fee unless your request is manifestly unfounded or excessive.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection: ico.org.uk.

10. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction. These include secure hosting, encrypted connections (HTTPS), access controls and staff training. No method of transmission over the internet is completely secure; we encourage you to use strong passwords and protect your account credentials.

11. Children

Our services are not directed at individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will take steps to delete it.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The “Last updated” date at the top of this page will indicate when revisions were made. We encourage you to review this page periodically.

13. Contact us

If you have questions about this Privacy Policy or our data practices, please contact:

Data Protection Officer — StartXSport LLC
1a, London Rd, St Albans AL1 1LE, United Kingdom
Email: [email protected]
Telephone: 01727 861 530