As of August 18, 2023
Wicket is a software company that has developed a unique cloud-based authentication management and registration platform (“Platform”) that enables a variety of authentication services on behalf of our clients, which include hosts or organizers of events as well as employers that own and operate various facilities (our “Clients”). Through our Platform, we provide you with a variety of facial authentication services (“Facial Authentication Services”) on behalf of our Clients, which uses your own face to seamlessly interact through a venue or facility. For instance, using our Facial Authentication Services, we can provide you with fast access for admissions to venues or facilities, VIP suite credentialing, touchless purchasing of food, beverages, and merchandise, verification of age and/or payment information (on behalf of third party point-of-sale devices), safe pairing of your tickets, mobile wallets, identification, and more. In addition, employees and staff of our Clients, can enroll for secure, touchless access to physical or virtual spaces.
Please note that enrolling and registering in our Facial Authentication Services is entirely optional. If You are invited to, register for, check into, or receive information regarding a Client event through a Wicket Site or in connection with our Facial Authentication Services, You will be considered an “Event Attendee” and we will provide any Personal Information You submit through our Site or in connection with your use of our Facial Authentication Services to the Client of the event (but we do not provide any of your Personal Information to any other third parties). Wicket does not control the Client’s venue or management process. We are not responsible for any decisions or actions taken by the Client with respect to your information (or by any third-party with whom the Client may share your information). Client is responsible for managing your information appropriately if and when they receive it. Please read the applicable privacy policies of the Client of an event or that operates a facility before submitting Personal Information.
With separate products, Wicket also enables the gathering of anonymized and aggregated data insights (“Density and Audience”) for use by our Clients to facilitate facility and event management. For example, Density and Audience can provide crowd density measurements, line management, wait-times to resources such as food vendors, merchandising or retail areas, and people counting for attribution in large, sponsored spaces. Using our vision analytics technology, Density and Audience can recognize demographic identifiers to allow our Clients to understand who engages with their digital and static assets. These products recognize features of people in general, and not features specific to an individual and do not record or store recorded footage. The Density product recognizes and counts the number of persons in a frame as it looks for features of a person, such as a head, arms, and feet. The Audience product recognizes the number of persons in a space, the number of associated faces that glance in a specific direction and also age and gender demographic counts based on general facial measurements.
Please note that our Density and Audience products meet the most stringent current privacy standards as these only capture anonymous data points and present them as aggregated data and analysis, and we do not record and store associated images or video footage. This means that personally identifiable information is not captured, possessed, recorded, used, stored, or retained. Density and Audience data collected cannot be used to identify an individual. Density and Audience data we collect may be used by our Clients and by Wicket for internal business purposes only (and is not shared with any other third parties). For example, a Client may use this information to track the number of fans congregating at a concession stand during events or understand the number of fans in a section of their concourse 30 minutes before the event start time throughout the course of a season.
Our Site and Services and its contents are intended for adults 18 years of age and are not intended for individuals under 16 years of age. We do not knowingly collect any Personal Information from individuals under 16 years of age, in compliance with the General Data Protection Regulation (GDPR). We therefore are also compliant with the Children’s Online Privacy Protection Act (COPPA), which addresses the collection of personal data of children under 13.
Individuals under the age of 16 may not use or provide any information to or through our Site and Services. If we discover that we have any information from an individual under 16, we will delete it. If You believe we might have any information from or about a child under 16, please contact us immediately at:
Our Facial Authentication Services verify the identity of an individual who has already provided consent to be in the system via Wicket’s opt-in procedure. Using our facial authentication technology, we analyze certain data points from your uploaded photo to create a 3D numeric representation of your face (called an “Embedding”) that is stored on our encrypted cloud servers and edge devices. The stored data cannot be reverse engineered or used to create an image of your face.
The following approach is generally used when deploying our Facial Authentication Services for our Clients:
Please note that when You submit a photo (selfie), we store it as a source image only on our secure cloud servers (unless You send us an email to opt-out as detailed below). We then create the Embedding of your photo, which is stored on our cloud servers and on one or more edge devices at a Client’s venue or facility. Accordingly, when You enter a venue or facility, an edge device will take measurements of your face to create an embedding which is then compared to Embeddings of all registered users at that Client. If a match is found and You have necessary permissions to proceed, You will be given appropriate access.
We do not store your source photo on any of our edge devices, but do store your embedding on the edge device, which is not usable to recreate a photo or rendering of your face. As such, anyone who inappropriately accesses an edge device will not have access to your photo, only the Embedding (i.e., the 3D mathematical representation of your photo), which cannot be recognizable as anything except a de-identified series of numbers. In addition, we take every reasonable step to limit the collection of your Personal Information to what is reasonably necessary to provide our Facial Authentication Services.
As noted above, Wicket has separate products that gather anonymized Density and Audience Data from smart cameras, measuring general usage, density, and activity data.
We do not share your photo, face data, Embedding, or any Density and Audience Data collected by our edge devices with any third parties.
We collect information from and about you, including:
As You navigate through our Website (www.wicketsoft.com), we may collect certain information about you, your actions and patterns, and other-related information via automated technologies, such as cookies and web beacons.
Such information may include details of your visits to our Website, including, without limitation, traffic data, communications data, and information about your computer or mobile device.
The technologies we use for this automatic data collection may include:
The information we collect automatically is used to help us improve our Website and continue to deliver an improved experience.
We may disclose information that we collect about You or that You provide us, including Personal Information, to the following third-parties and in the following circumstances:
We strive to provide You with choices regarding the Personal Information You provide to us. Please note that You can always choose not to provide information, even though that means You might not be able to access or use our Site and Services. In addition, we have created mechanisms to provide You with the following control over your Personal Information as detailed below.
Wicket is dedicated to safeguarding the personal data of our customers and employees. In accordance with this commitment, we comply with the principles of the GDPR when collecting, utilizing, and handling personal data. This includes:
To exercise any of these rights or to inquire about these rights, please email us at email@example.com.
If You are an EU or UK citizen you may submit a Subject Access Request (SAR) to firstname.lastname@example.org or use the following contact information.
If You are an EU/UK citizen and You believe we are violating your rights, You can file a complaint with your local supervisory authority. If You are a resident of the United Kingdom, You can lodge a complaint with the UK Information Commissioner’s Office:
We may store data or other information that we collect about you, including Personal Information, in our databases and servers maintained by us, our affiliates, agents or service providers (sub-processors). If You access or use our Website and Platform services outside of the United States, information that we collect about You may be transferred to servers inside the United States, which may involve the transfer of information out of countries located in the European Economic Area (EEA) and other parts of the world unless otherwise prohibited by applicable law or agreed by Wicket and you. All transfers of data from the EEA to the US are governed by GDPR-compliant signed DPAs. By allowing Wicket to collect information about you, You consent to such transfer and processing of such information without restriction. We may also store some information locally on your computer or other devices. For example, we may store information as local cache so that You can open the Site and view its content faster.
We understand that the security of your Personal Information is important. We have implemented reasonable technical and physical measures designed to secure your Personal Information from accidental loss and from unauthorized access, use, alteration, and disclosure. All information You provide to us is stored on our secure servers behind firewalls at rest and in transit. The safety and security of your information also depends on you. Where we have given You (or where You have chosen) a password for access and use of certain parts of our Site and Services, You are responsible for keeping this password confidential. We ask You not to share your password with anyone.
All Personal Information collected will be protected from disclosure using a reasonable and appropriate standard of care recognized within the industry and to the same degree as Wicket’s confidential and sensitive information.
Unfortunately, the transmission of information via the internet is not completely secure; however, we implement additional generally accepted industry standards to protect your Personal Information; however, we cannot guarantee the security of your Personal Information transmitted to our website. Any transmission of Personal Information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures.
To exercise any of these CCPA rights you may call us at (800) 390-9009 or email: email@example.com. The email subject line and/or the content of your request should refer to the phrase “Your California Privacy Rights,” and include your name and email address. Please allow 30 days to receive a response to your inquiry. Requests sent via written mail or facsimile will not be accepted.
Please note, the CCPA may limit Your rights by, for example, prohibiting us from providing certain sensitive information in response to an access request and limiting the circumstances in which we must comply with a deletion request. If we deny your request, we will communicate our decision to You.
675 Massachusetts Avenue
Cambridge, MA 02139
Email address: firstname.lastname@example.org