Privacy Policy

See how we handle your data and keep it safe at Shikaticko.

Privacy Policy

How we collect, use, and protect your information.

Last updated: 7/7/2025

1. Introduction

GrooveHQSolution Limited (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use the Service, in compliance with the Data Protection Act 2019 (“DPA”) and its associated Regulations 2021.

2. Data Controller

GrooveHQSolution Limited acts as the Data Controller, responsible for determining the purpose and means of processing personal data on ShikaTicko.

3. Special Categories of Data

We do not intentionally collect data revealing racial or ethnic origin, political opinions, religious beliefs, or health status. If you volunteer such data (e.g., dietary requirements implying religious observance), you explicitly consent to its limited use for Event logistics only.

4. Information We Collect

We may collect and process the following categories of Personal Data:

  • Identity and Contact Data: Name, email address, telephone number, postal address, date of birth, national ID/passport details
  • Financial and Transaction Data: Payment confirmation details, transaction history, ticket purchase records
  • Profile and Event Data: Username, password, Event preferences, attendance history, feedback
  • Technical and Usage Data: IP address, browser type, device information, location data, cookies
  • Marketing and Communications Data: Your preferences for receiving marketing communications
  • Media Content: Photos, videos, or audio recordings containing identifiable individuals

5. Legal Basis for Processing

We process your Personal Data where we have a lawful basis including:

  • Performance of a Contract (e.g., processing your ticket purchase)
  • Your Consent (e.g., for marketing communications)
  • Legitimate Interests (e.g., improving our Service, fraud prevention)
  • Legal Obligation (e.g., tax reporting requirements)

6. How We Use Your Data

We use your Personal Data to:

  • Create and manage your account, facilitate ticket purchases
  • Process transactions and send confirmations
  • Provide customer support and communicate service updates
  • Personalize your experience and improve our Service
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal and tax obligations
  • Send marketing communications (where consented)

7. Profiling & Automated Decision-Making

We may profile Attendees for fraud scoring. Such profiling does not produce legal effects significantly affecting you unless it flags a transaction for manual review. You may request human review of any automated decision.

8. Data Sharing and Third-Party Disclosures

We may share your data with:

  • Event Organizers (necessary information to manage Events)
  • Payment Processors (licensed third parties)
  • Professional Advisers (lawyers, auditors, insurers)
  • Regulatory Authorities (when required by law)
  • Service Providers (under DPA-compliant contracts)

We do not sell, trade, rent, or commercially license your Personal Data to third parties for their independent marketing purposes.

9. Data Security

We have implemented appropriate technical and organizational security measures designed to protect your Personal Data against accidental loss, unauthorized access, alteration, or disclosure. These include encryption, firewalls, access controls, and regular security audits.

10. Data Retention

We will only retain your Personal Data for as long as necessary to fulfill the purposes we collected it for, including for satisfying any legal, accounting, or reporting requirements.

11. Your Rights

Under the DPA, you have the right to:

  • Access: Receive a copy of your Personal Data
  • Rectify: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Object/Restrict: Object to processing based on legitimate interests
  • Portability: Receive your data in a structured, machine-readable format
  • Withdraw Consent: At any time, where processing is based on consent

To exercise these rights, please contact us at info@shikaticko.co.ke

12. Cookies

We use cookies and similar tracking technologies to distinguish you from other users, enhance user experience, analyse site traffic, and personalise content. You can manage preferences via browser settings.

13. Transfer of Data Outside Kenya

If data must be transferred outside Kenya, it will be done under adequate safeguards, contractual clauses, or your explicit consent in compliance with Section 48 of the Data Protection Act, 2019.

14. Changes to This Privacy Policy

We may update this policy from time to time. The updated version will be posted on www.shikaticko.co.ke with an updated "Effective Date." Material changes will be communicated at least 30 days before they take effect.

15. Contact Us

For any questions about this Privacy Policy or our privacy practices:

GrooveHQSolution Limited
Eastern Avenue, P.O. Box 194-30100,
Eldoret, Kenya
Email: info@shikaticko.co.ke