Does your website use third-party services? Get GDPR compliant in minutes.

Convious

What does Convious do?

Convious is a Dutch e commerce and engagement platform built for attractions, museums, zoos and live venues. It powers dynamic pricing of tickets, basket recovery, marketing automation and visitor analytics from a single conversion oriented checkout. Convious is headquartered in Amsterdam and hosts data in the European Union, which makes it a privacy friendly option, although third party integrations (Meta Pixel, Google Ads) added by the operator still require consent and a documented transfer chain.

What is Convious

Convious is an e commerce and engagement platform built in Amsterdam for attractions: theme parks, museums, zoos and aquariums, escape rooms and live venues. It combines a conversion oriented checkout, AI driven dynamic ticket pricing, marketing automation, abandoned basket recovery, on site widgets and visitor analytics. Convious targets the European leisure industry and keeps its operations and data in the European Union.

What data does Convious collect

Convious processes visitor profile data (name, email, phone, address, age category), purchase data (tickets, season passes, gift vouchers, products), behavioural data on the checkout funnel, device data (IP, user agent, referrer), UTM parameters, and dynamic pricing signals such as time of day, weather, capacity. Conversion data may be forwarded to third party marketing tags configured by the operator.

GDPR and ePrivacy implications

Convious acts as a processor for the venue, while marketing automation features may make it a joint controller. Strictly necessary cookies for the basket and checkout are exempt from consent under Art. 5(3) ePrivacy. Marketing automation, behavioural analytics and third party advertising pixels require prior consent. The dynamic pricing engine should be configured to avoid prohibited discrimination criteria.

Get GDPR compliant in 10 minutes

Free plan available · No credit card required

Try FlowConsent free

Consent requirements

Integrate a Consent Management Platform that blocks Convious analytics and marketing cookies until consent is granted. The Convious widget can be configured to read the consent state from the CMP and only fire non essential tags afterwards. Maintain a granular consent log to demonstrate compliance with EDPB Guidelines 05/2020.

Data transfers outside the EU

Convious itself stores data in the European Union and does not initiate transfers outside the EU. Operators who enable third party integrations (Meta Pixel, Google Ads) must rely on the EU US Data Privacy Framework for those vendors and document a Transfer Impact Assessment specific to each.

Practical compliance steps

Sign the Convious DPA, document Convious in your Article 30 register with EU only data residency, audit each third party integration enabled in your dashboard, configure granular consent for analytics and marketing, define retention rules for tickets and personal data, and provide a clear privacy notice covering both the venue and the Convious platform.

GDPR consent category

Marketing

Websites using Convious must obtain user consent under GDPR regulations.

Legal basisConsent (Art. 6(1)(a) GDPR) is required for the marketing analytics and dynamic pricing personalisation cookies. Performance of a contract (Art. 6(1)(b)) applies once a ticket is purchased. The strictly necessary checkout cookies are exempt under Art. 5(3) ePrivacy.

Risk levelmedium

Applicable regulationsGDPR, ePrivacy Directive, TDDDG, LSSI CE, Dutch Implementation Act GDPR (UAVG), Schrems II (for third party integrations)

DPIA considerations

A DPIA is appropriate when Convious is used for large scale dynamic pricing combined with behavioural profiling, when biometric or age verification flows are added at the venue entrance, or when third party advertising pixels are integrated with the checkout.

Sample consent text

We use Convious, a Dutch ticketing and engagement platform, to manage your ticket purchases, personalise our offers and measure visitor behaviour. Convious stores your personal data inside the European Union. Optional advertising cookies are loaded only after your consent.

Technical details

Tracking methodClient side JavaScript snippet on attraction and venue websites, dynamic pricing engine for ticket purchases, third party cookies for visitor identification, basket abandonment tracking, integration with Google Analytics 4, Meta Pixel and email automations.

Server locationNetherlands (Amsterdam). Convious B.V. is headquartered in the Netherlands and hosts data within the European Union on AWS EU regions.

Third-party domains contacted

convious.comcdn.convious.comapi.convious.com

Cookies placed

Name	Type	Duration	Purpose
cv_cart	Strictly Necessary	30 days	Persists the visitor basket and ticket selection during checkout.
cv_visitor	Marketing	1 year	Convious visitor identifier used for dynamic pricing personalisation and basket recovery.
cv_analytics	Analytics	13 months	Stores the analytics identifier for the Convious visitor journey dashboard.
cv_consent	Strictly Necessary	12 months	Stores the visitor consent decision for Convious widgets and downstream integrations.

Convious places tracking cookies for advertising — comply with GDPR using FlowConsent.

Get started free Scan your site

Frequently asked questions

Which cookies does Convious set?

Convious sets a strictly necessary cart cookie during checkout, a visitor identifier for dynamic pricing personalisation, an analytics cookie for the journey dashboard, and a consent cookie that stores the visitor decision. The cart and consent cookies are exempt from consent, while the visitor and analytics cookies require prior consent.

Is consent required to deploy Convious on a European website?

Strictly necessary cookies for the basket are exempt. Marketing and analytics cookies, as well as integrations with Meta Pixel or Google Ads added by the operator, require prior consent under Art. 5(3) ePrivacy.

What is the legal basis for processing data through Convious?

Performance of a contract (Art. 6(1)(b) GDPR) for ticket purchase and delivery. Legitimate interest (Art. 6(1)(f)) for security and fraud prevention. Consent (Art. 6(1)(a)) for dynamic pricing personalisation, marketing automation and third party advertising tags.

Does Convious transfer data outside the European Union?

No. Convious itself stores data in the European Union on AWS EU regions. Third party integrations enabled by the operator (Meta Pixel, Google Ads) involve their own transfers and must be assessed separately.

Is a DPIA required when integrating Convious?

A DPIA is recommended when dynamic pricing is combined with behavioural profiling, when biometric or age verification flows are added at the venue entrance, or when significant third party advertising integrations are enabled.

How do I implement Convious in a GDPR compliant way?

Sign the Convious DPA, configure the platform to keep data in the EU, integrate a CMP that gates analytics and marketing cookies, audit each third party integration, document Convious in your Article 30 register and update your privacy notice.

Are there European alternatives to Convious?

Yes. Tiqets (Netherlands), Smeetz (Switzerland with EU data residency), Vivaticket (Italy), Weezevent (France) and Skiddle (United Kingdom) offer similar ticketing and engagement features for attractions and venues with EU data residency.

How do I update my cookie policy after enabling Convious?

List each Convious cookie with name, purpose, duration and provider. Explicitly mention that Convious B.V. is established in the Netherlands and that data stays in the EU. List the third party integrations enabled in your dashboard and re trigger the consent banner.

Get compliant — Try FlowConsent free

Free plan · 10-min setup