Skip to content
Mutua Madrid Open
ATP 1000WTA 1000
EN
Compra tus entradas

POLÍTICA DE PRIVACIDAD

1. Who we are

The entity responsible for processing your personal data is Madrid Trophy Promotion S.L.U. (hereinafter, "MTP" or the "Controller"), with registered office at Camino de Perales s/n, 28041 Madrid (Spain), VAT number B62702204.

MTP is the organizer of the Mutua Madrid Open tennis tournament and is committed to protecting the privacy and personal data of all users of this website (the "Website") and purchasers of tickets and services related to the tournament.

For any questions regarding this Privacy Policy, you may contact our Data Protection Officer at: RGPD@mutua-madrid-open.com

2. What data we collect

We may collect and process the following categories of personal data:

  • Identity data: first name, last name, date of birth, nationality, ID/passport number.
  • Contact data: email address, telephone number, postal address.
  • Transaction data: details of tickets and products purchased, payment method, transaction history.
  • Technical data: IP address, browser type and version, device information, operating system, time zone, cookie data.
  • Usage data: information about how you use our Website, including pages visited, time spent, and navigation paths.
  • Marketing and communications data: your preferences for receiving marketing communications and your communication preferences.

3. How we use your data

We use your personal data for the following purposes and legal bases:

3.1 Performance of a contract

  • Processing ticket purchases and managing your orders.
  • Providing access to the tournament premises and related services.
  • Communicating with you about your purchases and bookings.
  • Managing registrations for the Mutua Madrid Open newsletter.

3.2 Legitimate interest

  • Improving and optimizing our Website and services.
  • Analysing user behaviour to enhance the user experience.
  • Ensuring the security of our systems and preventing fraud.
  • Sending you information about events similar to those you have attended.

3.3 Consent

  • Sending promotional and marketing communications about the Mutua Madrid Open and related events.
  • Placing non-essential cookies on your device (see our Cookies Policy).
  • Sharing your data with selected commercial partners for marketing purposes.

3.4 Legal obligation

  • Compliance with tax and accounting obligations.
  • Responding to requests from public authorities and law enforcement.

4. Data sharing

We may share your personal data with the following categories of recipients:

  • Service providers: companies that provide services on our behalf, such as payment processors, IT service providers, and marketing platforms. These providers act as data processors and only process your data in accordance with our instructions.
  • Tournament partners and sponsors: where you have given your consent, we may share your data with our commercial partners for marketing purposes.
  • Sports governing bodies: the ATP, WTA, and ITF, as required for tournament organization and compliance with sporting regulations.
  • Public authorities: where required by law or in response to lawful requests.

We do not sell your personal data to third parties. Any international transfers of data outside the European Economic Area (EEA) will be carried out with appropriate safeguards in place, such as Standard Contractual Clauses approved by the European Commission.

5. Data retention

We will retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including:

  • Transaction data: for the duration of our commercial relationship and a further period of 5 years thereafter, in accordance with applicable tax and accounting legislation.
  • Marketing data: until you withdraw your consent or object to the processing, and for a maximum of 3 years from your last interaction with us.
  • Technical and usage data: for a maximum of 13 months from the date of collection.

After the applicable retention period, your data will be securely deleted or anonymized.

6. Data security

We have implemented appropriate technical and organisational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include, among others:

  • Encryption of data in transit and at rest.
  • Access controls and authentication mechanisms.
  • Regular security assessments and vulnerability testing.
  • Staff training on data protection and information security.
  • Incident response procedures for potential data breaches.

7. Your rights (GDPR)

Under the General Data Protection Regulation (GDPR) and applicable Spanish data protection legislation (LOPDGDD), you have the following rights regarding your personal data:

  • Right of access: you have the right to obtain confirmation of whether we are processing your personal data and, if so, to access such data.
  • Right to rectification: you have the right to request the correction of inaccurate personal data or the completion of incomplete data.
  • Right to erasure ("right to be forgotten"): you have the right to request the deletion of your personal data in certain circumstances.
  • Right to restriction of processing: you have the right to request the limitation of the processing of your personal data in certain circumstances.
  • Right to data portability: you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
  • Right to object: you have the right to object to the processing of your personal data based on legitimate interest or for direct marketing purposes.
  • Right to withdraw consent: where processing is based on your consent, you have the right to withdraw such consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please send a request to RGPD@mutua-madrid-open.com, including a copy of your identity document (DNI, passport, or equivalent). We will respond to your request within one month.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos — AEPD) at www.aepd.es.

8. Changes to this privacy policy

We may update this Privacy Policy from time to time to reflect changes in our processing activities, legal requirements, or for other operational reasons. We will notify you of any material changes by posting the updated policy on this page and, where appropriate, by email.

Last updated: March 2026

MUTUAMADRIDOPEN