If health-related information such as contact tracing data is collected for an event, Ticketmaster may share that information with government officials and says it is regularly deleted, though no specific retention period is stated.
This analysis describes what Ticketmaster's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy reserves the right to share attendee health and safety data, which may include names, contact details, seat locations, and entry and exit times, with government authorities, which represents a significant disclosure to state actors that consumers may not anticipate when purchasing tickets.
Interpretive note: The specific circumstances and jurisdictions under which government data sharing is required, and the exact retention and deletion timeline, are not defined in the policy with sufficient precision to assess full compliance posture.
Your name, contact details, seat location, and entry and exit times may be shared with local or national government officials in connection with health and safety compliance, and you have limited ability to prevent this sharing where it is required by applicable law.
How other platforms handle this
We may share your information with third-party advertising partners to provide you with targeted advertising. We also work with third-party analytics providers who help us understand how users interact with our Services. These third parties may use cookies, web beacons, and similar tracking technolo...
We process personal data you provide to Oura to enable third party integrations, services, features, and offerings. For example, with your permission, our Services may integrate with third-party services like Google Health Connect and Apple HealthKit, or those of our partners. Oura takes measures to...
Creators: when you subscribe to a Creator's publication, we provide them the information necessary (including your name and email address) to provide you their publication(s). Please note that Creators control their own publications; accordingly, when you interact with a Creator's publication in a w...
Monitoring
Ticketmaster has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Any information collected by us or our third-party partners in compliance with applicable health and safety requirements will only be used to contact attendees or shared with relevant local, government officials. This information is regularly deleted.— Excerpt from Ticketmaster's Ticketmaster Privacy Policy
REGULATORY LANDSCAPE: Government disclosure of personal data engages GDPR Article 6(1)(c) and Article 9(2)(i) for health data shared on public health grounds, as well as equivalent UK GDPR provisions. In the US, health-related government reporting requirements vary by state. The policy's reference to third-party partners who collect health information and direct users to those parties' own policies creates a gap in accountability that may engage FTC consumer protection standards. GOVERNANCE EXPOSURE: Medium. The provision is disclosed and grounded in legal obligation, which limits regulatory exposure from a transparency standpoint. However, the absence of specific retention timelines beyond the phrase 'regularly deleted' may not satisfy GDPR storage limitation principles or equivalent requirements in other jurisdictions. JURISDICTION FLAGS: EU and UK users have the strongest protections; any government data sharing must be grounded in a specific legal obligation, and the scope of such sharing should be proportionate. US users in states with public health reporting laws face similar dynamics but with fewer individual rights to challenge such sharing. The involvement of third-party event organizers who collect health data independently creates a separate accountability chain outside Ticketmaster's direct governance. CONTRACT AND VENDOR IMPLICATIONS: The policy explicitly disclaim responsibility for third-party event organizer health data collection by directing users to those parties' own policies. Compliance teams should assess whether contractual obligations on event organizers adequately constrain their health data collection and government sharing practices, particularly for events in the EU. COMPLIANCE CONSIDERATIONS: Legal teams should document the specific legal bases invoked for government data sharing in each market, define and publish retention periods for health and safety data rather than using the vague 'regularly deleted' standard, and assess whether the delegation of accountability to third-party event organizers for health data collection is consistent with GDPR controller obligations.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy reserves the right to share attendee health and safety data, which may include names, contact details, seat locations, and entry and exit times, with government authorities, which represents a significant disclosure to state actors that consumers may not anticipate when purchasing tickets.
Your name, contact details, seat location, and entry and exit times may be shared with local or national government officials in connection with health and safety compliance, and you have limited ability to prevent this sharing where it is required by applicable law.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Ticketmaster.