brand logo
Login
brand logo

Legal

Privacy Policy

Effective Date: 07.04.2025

At AfterMidnight ("we," "our," or "us"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy outlines how we collect, use, store, disclose, and safeguard your information when you access our website (aftermidnight.bg), mobile application and when you subscribe to our membership services.

We process your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. Our goal is to ensure transparency and security while providing you with a seamless and personalised nightlife experience.

By using our website and services, you acknowledge that you have read and understood this Privacy Policy. If you have any questions or concerns, please contact us directly (see Contact Us below).

1. Who We Are

We are Midnight Entertainment Ltd (Company Number: 208214129; Registered Address: Georgi Obretenov 4, Poduyane, Sofia, Bulgaria), a legally registered company in Bulgaria, operating in full compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. Our mission is to enhance the nightlife experience by providing users with seamless access to exclusive offers, nightlife events, clubs, and bars in Sofia and beyond.

Through our website (aftermidnight.bg) and mobile application, we offer subscription-based memberships that grant users free or priority entry, as well as other gifts and bonuses, to a curated selection of nightlife venues. In addition to membership services, we provide up-to-date information on events, special promotions, and exclusive VIP experiences to ensure our users enjoy the best of Sofia's nightlife.

We are committed to protecting your personal data while delivering a premium, hassle-free nightlife experience. For any questions regarding our services or data protection policies, you can contact directly (see Contact Us below).

2. Data We Collect

We collect and process various types of personal data to provide and enhance our services. Below is a breakdown of the categories of data we may collect:

a. Information You Provide Directly

When you register, subscribe, or interact with our services, you may be asked to provide the following personal details:

  • Full Name (if applicable): May be used for identification and customer support; not generally required or store by us.
  • Username: Chosen by you during account registration; used for identification within our platform and personalisation of your experience.
  • Email Address: Required for account verification, communication, and sending service-related updates.
  • Phone Number (if applicable): May be used for identity verification or customer support; not generally required or stored by us.
  • Billing and Payment Information: This includes credit/debit card details, billing address, and transaction history. Payment data is processed securely through third-party payment providers, and we do not store your full payment details.
  • Date of Birth: Required to confirm age eligibility, as our service is intended for users above a certain age.
  • Gender: Used to tailor the in-app experience more appropriately.
  • Address (if applicable): May be collected for billing verification, fraud prevention, or when required by payment processors.

b. Information Collected Automatically

When you visit or interact with our website and services, we automatically collect certain technical and usage data, including:

  • IP Address: Logged to help detect and prevent fraudulent activity, ensure website security, and analyse site usage patterns.
  • Device Information: Includes browser type, version, and operating system to optimize website functionality and user experience.
  • Usage Data: Tracks your activity on our website, such as pages visited, time spent on different sections, and interactions (e.g., clicks, scrolls, or preferences set).
  • Cookies and Tracking Technologies: We use cookies and similar tracking technologies to enhance user experience, remember preferences, and analyse traffic. You can manage cookie settings through your browser.

c. Sensitive Personal Data

We do not intentionally collect sensitive personal data, such as racial or ethnic origin, political opinions, religious beliefs, health information, or biometric data. However, in rare cases where such data is required by law or provided voluntarily (e.g., for accessibility accommodations), we will process it only with your explicit consent and ensure it is handled securely.

If you have any questions about how we handle your personal data, you can contact us directly (see Contact Us below).

3. How We Use Your Data

We collect and process your personal data to provide you with a seamless and personalised experience. Specifically, we use your data for the following purposes:

  • Providing and Managing Our Services:
    • To process and manage your nightclub membership subscription and ensure you receive the associated benefits, such as free or priority entry to partner venues.
    • To verify your identity and ensure compliance with membership eligibility criteria.
  • Customer Support and Communication:
    • To respond to your inquiries, provide technical assistance, and resolve any issues related to your account or membership.
    • To notify you of important updates, including changes to our terms, services, or policies.
  • Marketing, Promotions, and Personalisation:
    • To send you promotional content, event invitations, and special offers related to our nightlife services, subject to your preferences and consent.
    • To personalise your experience based on your interests and interactions with our platform.
  • Legal and Regulatory Compliance:
    • To verify age eligibility and ensure compliance with applicable laws and regulations.
    • To fulfil any legal obligations, such as fraud prevention, tax requirements, or responding to lawful requests from authorities.
  • Website Performance and Security Enhancements:
    • To analyse website traffic, user interactions, and usage trends to improve functionality and user experience.
    • To detect, prevent, and mitigate security threats, fraudulent activities, and unauthorized access.

Third-Party Account Credentials and Information Sharing

If you choose to register or log in using a third-party account (e.g., Facebook, Google, or other platforms), you acknowledge and agree that:

  • We may receive limited account information from the third-party provider, such as your name, email address, profile picture, and public profile details, depending on the permissions granted.
  • Any content or information from your third-party account that you explicitly authorize to be shared will be transmitted to our platform and will be processed in accordance with this Privacy Policy.
  • You may manage or revoke third-party access by adjusting your settings in your third-party account or within our platform, where applicable.

Providing third-party account credentials is optional, but certain features may require authentication via external accounts.

4. Legal Bases for Processing

We process your personal data under the following legal bases, as required by the General Data Protection Regulation (GDPR):

  • Contractual Necessity:
    • Processing your data is essential to fulfil our contract with you by managing your subscription and providing membership benefits. Without this data, we would be unable to offer our services.
  • Consent:
    • We rely on your explicit consent to process your data for marketing communications and any optional data collection that is not strictly necessary for service provision.
    • You can withdraw your consent at any time without affecting the legality of processing before withdrawal.
  • Legal Obligation:
    • We process your data to comply with applicable laws, such as verifying your age for access to nightlife venues or responding to legal requests from authorities.
  • Legitimate Interests:
    • We process certain data to improve our services, protect our business, and ensure a secure user experience, provided that these interests do not override your fundamental rights and freedoms.
    • Examples include fraud prevention, website analytics, and security monitoring.

5. How We Share Your Data

We respect your privacy and do not sell, rent, or trade your personal data. However, we may share your information under the following circumstances:

  • Service Providers and Business Partners:
    • We work with trusted third-party service providers who assist in delivering our services, including:
      • Payment processors to securely handle transactions.
      • Marketing and communication platforms/partners to send newsletters, promotional content, and service-related updates.
      • IT and technical support providers to ensure website security, hosting, and maintenance.
      • Other Business Partners (such as clubs, bars and event organisers) to promote their events and/or products through our mobile application.
    • These providers are obligated to protect your data and use it only for the intended purpose.
  • Legal and Regulatory Compliance:
    • We may disclose your information to law enforcement agencies, regulators, or other legal authorities if required by law or in response to:
      • A legal request, subpoena, or court order.
      • Fraud prevention efforts to protect our platform and users from unauthorized activities.
      • Enforcement of our Terms of Service and policies.
  • Business Transfers and Corporate Transactions:
    • If AfterMidnight.bg undergoes a merger, acquisition, sale of assets, or corporate restructuring, your personal data may be transferred as part of the transaction. We will ensure that the acquiring entity respects your privacy rights in accordance with this Privacy Policy.

6. International Data Transfers

As part of our operations, we may transfer and process your personal data outside the European Economic Area (EEA). When such transfers occur, we take necessary steps to ensure your data remains secure and is processed in compliance with the General Data Protection Regulation (GDPR).

We protect your data during international transfers through the following mechanisms:

  • Standard Contractual Clauses (SCCs):

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, in accordance with applicable legal, regulatory, and operational requirements.

Retention Criteria

The length of time we retain personal data depends on the following factors:

  • The nature of the data and the purpose for which it was collected.
  • Legal, regulatory, and contractual obligations requiring data retention.
  • Business needs, such as record-keeping, fraud prevention, and security purposes.

Retention Periods

  • Account Information: Retained as long as your account remains active. If you close your account, we delete or anonymise your data within a reasonable timeframe, unless required by law.
  • Transaction and Payment Data: Retained for tax, accounting, and fraud prevention purposes for a legally mandated period.
  • Communication and Support Requests: Retained as long as necessary to address inquiries, comply with legal obligations, and improve our services.

8. Your Rights

Under the General Data Protection Regulation (GDPR), you have several rights regarding your personal data. These rights allow you to control how your information is collected, stored, and processed.

Your Rights Under GDPR:

  • Right to Access: You can request confirmation of whether we process your personal data and receive a copy of the information we hold about you.
  • Right to Rectification: If your personal data is inaccurate or incomplete, you can request that we correct or update it.
  • Right to Erasure ("Right to be Forgotten"): You may request that we delete your personal data, subject to certain legal and contractual obligations.
  • Right to Restriction of Processing: You can request that we temporarily or permanently stop processing your data in specific circumstances, such as while verifying accuracy or handling an objection request.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and request its transfer to another service provider where technically feasible.
  • Right to Object: You can object to the processing of your personal data when it is based on our legitimate interests or used for direct marketing purposes. If you object to direct marketing, we will stop processing your data for that purpose.
  • Right to Withdraw Consent: Where we rely on your consent for processing, you may withdraw it at any time. This does not affect the lawfulness of processing conducted before your withdrawal.

How to Exercise Your Rights

To exercise any of your rights or to obtain more information about how we handle your data, please contact us at directly (see Contact Us below). We will respond to your request in accordance with GDPR requirements, typically within one month. If we are unable to fulfil your request due to legal obligations, we will provide an explanation.

If you believe your rights have been violated, you also have the right to lodge a complaint with your local data protection authority.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and improve our services. These technologies help us:

  • Enhance Website Functionality: Enable essential features such as account login, language preferences, and shopping cart functionality.
  • Analyse User Behaviour: Collect data on website traffic, user interactions, and browsing patterns to optimize performance and usability.
  • Deliver Personalized Content and Advertisements: Provide relevant content, tailored recommendations, and targeted ads based on your browsing history and preferences.

Types of Cookies We Use

  • Essential Cookies: Required for website functionality and cannot be disabled.
  • Performance and Analytics Cookies: Help us understand how visitors use our site and improve performance.
  • Functional Cookies: Remember user preferences and settings.
  • Targeting and Advertising Cookies: Used to display personalised ads and track ad performance.

Managing Your Cookie Preferences

You can control and manage cookies in the following ways:

  • Browser Settings: Most browsers allow you to refuse, accept, or delete cookies through their settings. You can find more details in your browser's help section.
  • Cookie Banner: When you first visit our website, you may be able to set your cookie preferences through the cookie banner.
  • Privacy Settings: Some parts of our website may provide a settings page where you can manage tracking preferences.

You can manage your cookie preferences through your browser settings and with the help of our Cookie Policy, where you can find more details about how we use these technologies.

10. Data Security

We are committed to protecting your personal data and have implemented robust technical and organisational measures to safeguard it from unauthorised access, loss, or misuse. Our security practices include:

  • Data Encryption: We encrypt data both in transit and at rest to ensure its confidentiality.
  • Secure Servers: Your information is stored on protected servers with restricted access.

11. Third-Party Links

Our website may contain links to third-party websites, services, or applications that are not operated or controlled by us. These links are provided for your convenience, but we do not endorse or take responsibility for their content, security, or privacy practices.

What You Should Know:

  • When you click on a third-party link, you will be redirected to their website, which operates under its own privacy policy and terms of service.
  • We do not control how third parties collect, use, or share your personal data.
  • Your interactions with third-party websites are at your own risk, and we encourage you to review their privacy policies before sharing any personal information.

If you have any concerns about a linked website, please contact us directly and we will investigate if necessary.

12. Children's Privacy

Our website and services are not intended for individuals under the age of 18, and we do not knowingly collect or process personal data from minors.

Important Guidelines:

  • If you are under 18, please do not attempt to register for an account, make purchases, or submit any personal information to us, including your name, address, phone number, or email.
  • No one under the age of 18 is permitted to provide personal data on our website or mobile application.

Actions We Take:

  • If we become aware that we have inadvertently collected personal data from an individual under 18 without verified parental consent, we will take immediate steps to delete such information.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technological advancements.

How We Notify You of Changes:

  • Any updates will be posted on this page with a revised “Effective Date."
  • In the case of significant changes affecting how we process your personal data, we may notify you through additional means, such as email or a prominent notice on our website.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after any updates constitutes acceptance of the revised policy. If you do not agree with the changes, you may discontinue using our services or contact us with any concerns.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we process your personal data, please reach out to us using the contact details below:

We are committed to addressing your inquiries promptly and ensuring that your privacy rights are respected.

Thank you for trusting us with your personal data - your privacy and security are our top priorities.

Cookie Notice
We use cookies to ensure that we give you the best experience on our website.
Cookies