ticketscript security guide

Your privacy

Your privacy is important and we take the utmost care in ensuring that your private data remains private. You can read our full privacy policy here.

The connection to all ticketscript sites are encrypted and authenticated using a strong protocol (TLS 1.2), a strong key exchange (ECDHE_RSA), and a strong cipher (AES_128_GCM).

Payment processing you can rely on

ticketscript uses Europe’s biggest payment processing provider, Adyen, to handle all of our transactions. Adyen is fully PCI compliant. You can read more about Adyen’s certification here. ticketscript does not store any credit card details. Further to this ticketscript is also independently tested by Trust Guard to ensure PCI – ASV compliance.

Our organisation

ticketscript is a responsible employer and we take our staff very seriously. All employees are subject to a consistent recruitment process, including references, education and personnel checks. All employees are required to provide written acknowledgement of their roles and responsibilities regarding user data and privacy.

Incident response

The security of our platform is something that is fundamental to our business. ticketscript has 24 hour monitoring and alerts set up to maintain the security of our platform. If a breach is ever detected we have a process in place to report, rectify, and close any breach.

At ticketscript we operate a policy of responsible disclosure.

Our hosting

ticketscript uses Amazon Web Services, Sentia, and Denit to power our hosting. As international providers they all adhere to the highest security standards. You can read more about AWS security here, Sentia here, and Denit here.

Research & publication

Discovered a vulnerability? Let us know first! As vigilant as we are, some things are sometimes missed. Please contact security@ticketscript.com or call +31 (0)20 528 90 68 to report any findings.