GDPR Privacy Policy
EU-U.S. and Swiss-U.S. Privacy Policy for Eventene, LLC

Effective Date: September 1, 2020

GDPR, stands for “General Data Protection Regulation," and establishes a new framework for handling and protecting the personal data of EU-based residents since May 2018. It provides the citizens of the EU greater control over their personal data and assures them that their information is protected.

This Policy serves as an EU-U.S. and Swiss-U.S. Privacy Policy that governs our information-handling practices as applicable to residents in the United Kingdom ("UK"), European Union (“EU”), European Economic Area (“EEA”), and Switzerland (collectively, the “Data Subjects”) that are visiting our website, www.eventene.com, and the other websites under the eventene.com domain (collectively, the “Sites”), or are customers who use our SaaS product, event websites, online registration forms, Eventene Mobile Apps, and related services (together with the Sites, the “Service”).

The following words have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

For the purposes of this Policy:

  • Company (referred to as either "the Company", "Eventene", "We", "Us" or "Our" in this Policy) refers to Eventene LLC, 2500 Broadway, Suite F-125, Santa Monica, CA, 90404, USA
  • Sites refers to Eventene, accessible from www.eventene.com, and the other websites under the eventene.com domain, and the Eventene Mobile Apps
  • You means the individual accessing or using the Sites, or a company, or any legal entity on behalf of which such individual is accessing or using the Website, as applicable.

This Policy explains how we collect, use, disclose, and protect Data Subjects’ information as part of the Service in accordance with data-protection laws in the UK, EU, EEA, and Switzerland (collectively the “Data Protection Laws”). Any discussion of your use of the Service in this Policy is meant to include your visits and other interactions with the Sites and Services, whether or not you are a user of Eventene's SaaS product.

Capitalized terms that are not defined in this Policy have the meaning given them in our Terms of Use or Privacy Policy.

By accessing and using the Service, you signify your acceptance to the terms of this Policy. If you do not agree with or you are not comfortable with any aspect of this Policy, our Privacy Policy or the Terms of Use, you should immediately discontinue access or use of our Services. In the event of a conflict between the Privacy Policy and this Policy, this Policy supersedes the Privacy Policy.

Our Relationship to You

In order for you to understand Eventene's data protection obligations and your rights to your Personal Information under this Policy, it is important that you identify which relationship(s) you have with Eventene.

  • User: refers to an individual providing personal data to us via our website, mobile app, or other services, products or platforms, such as by signing up for an event or clicking a link in an email invitation to learn more or to sign up. Eventene is in a “data controller” relationship with Users.
  • Customer: refers to a specific type of User that uses our Service to create and manage events. Eventene is in a “data processor” relationship with Customers.
  • Participant: refers to a specific type of User who participates in event(s) organized by our Customers. Eventene is in a “data processor” relationship with Participants.

Hereinafter we may refer to Customers and Users collectively as “you.”

Notice

Eventene provides notice to you through posted privacy policies and may provide additional "just-in-time" disclosures about the data collection, use, and sharing practices of specific Services. The Privacy Policy generally describes our privacy practices, while this Policy is specific to Users and Customers located in the UK, EU, EEA, and Switzerland while using our Services. This Policy describes how we process Personal Information from the UK, EU, EEA, and Switzerland in accordance with applicable data protection laws.

Collection of Personal Information

As described in the Privacy Policy, Eventene collects various types of Personal Information about you while you are using the Services. Information that is anonymized or aggregated is not “Personal Information.”

In general, we collect the following types of Personal Information:

  • Registration data: full name, email address, and optional social media account information (e.g., if logging in through your Google, Facebook, Microsoft, or Apple account).
  • Profile data: name, profile image
  • Financial data: bank account information, payment card information, transaction history, and/or company billing information.
  • Transaction data: information about the transactions you make on our Services, such as the names of Participants, the events that you create, when events occur, and/or timestamps of certain actions.
  • Online identifiers: geolocation/tracking details, browser fingerprint, OS, browser name and version, and/or IP addresses.
  • Interaction data: survey responses, attending status, support tickets, authentication data, security questions, user ID, and other data collected via cookies and similar technologies. Please read our Cookies Policy for more information.

Purposes of Processing

Under the Data Protection Laws, we are required to notify you about our purposes of processing your Personal Information, as well as the legal basis for such processing.

Unless otherwise permitted by law, we may process your Personal Information:

  • If you consent to the processing
  • To satisfy our legal obligations
  • If it is necessary to carry out our obligations arising from any contracts we entered with you or to take steps at your request prior to entering into a contract with you
  • In the public interest
  • In your vital interests
  • For our legitimate interests, such as to protect our property, rights, or the safety of Eventene, our customers, or others
Purpose of Processing
To ensure network and information security

We process your Personal Information to:

  • Enhance the security of our Services
  • Combat spam or other malware or security risks
  • Monitor and verify identity or service access
  • To comply with applicable security laws and regulations

Without processing your Personal Information, we may not be able to ensure the security of our Services.

Legal basis: Processing is necessary for compliance with a legal obligation.

To enforce Eventene's terms and agreements

We have Terms of Use and other policies that define how you can use our Services. To ensure that you and others are using our Services in accordance with such terms and policies, we may process your Personal Information to:

  • Investigate, prevent and mitigate any potentially prohibited or illicit activities
  • Enforce our agreements with third parties, and/or
  • Collect fees based on your use of our Services

We collect information about your account usage and monitor your interactions with our Services. We may use any of your Personal Information collected on our Services for these purposes. The consequences of not processing your Personal Information for such purposes is the termination of your account, as we cannot perform our Services in accordance with our terms.

Processing is necessary for the performance of a contract to which the Data Subject is party or to take steps at the request of the Data Subject prior to entering into a contract.

To provide our Services

We process your Personal Information to provide the Services. For example, when an organizer wants to publish an event, we may display contact information listed in Personal Information of the organizer. We cannot provide you with Services without such information.

Processing is necessary for the performance of a contract to which the Data Subject is party or to take steps at the request of the Data Subject prior to entering into a contract.

To provide Service communications

We may reach out to you to send you administrative or account-related information to keep you in the loop about our Services, alert you of relevant security issues or updates, or provide other transaction-related information to you. While we generally use your registration data for this purpose, we may send personalized Service communications to you based on other Personal Information, such as interaction, payment, or transaction data. Without such communication, you may miss out on important developments relating to your account that may affect how you can use our Services.

Processing is necessary for the performance of a contract to which the Data Subject is party or to take steps at the request of the Data Subject prior to entering into a contract.

To ensure quality control

We process your Personal Information for quality control and staff training to make sure we continue to provide you with accurate information. Without our quality-control measures, you may experience issues while using the Services. For example, you may not be able to track responses from your event invitations in a timely fashion, or you may encounter interruptions on our Services.

Processing is necessary for the performance of a contract to which the Data Subject is party or to take steps at the request of the Data Subject prior to entering into a contract.

To provide customer service

When you contact our customer service channel, we process your Personal Information to respond to your questions, disputes, feedback, or issues with our Services. We may process your Personal Information in response to another customer’s request, as relevant. Without processing your Personal Information for such purposes, we cannot respond to your requests.

Processing is necessary for the performance of a contract to which the Data Subject is party or to take steps at the request of the Data Subject prior to entering into a contract.

To enhance your experience on our Services

We process your Personal Information to provide a personalized experience on our Services and to implement your feedback or the preferences you request. For example, you may share parts of your social media account information with us for authentication. Without such processing of your Personal Information, we may not be able to ensure your continued enjoyment of part or all our Services.

Processing is necessary for the purposes of the legitimate interests pursued by Eventene.

For research and development purposes

We process your Personal Information to better understand you and the way you use and interact with our Services. For example, interaction data can provide helpful insights that assist us with measuring, customizing, or improving current Services. In addition, such information can help us develop new Services for your enjoyment. Without such processing, we cannot ensure your continued enjoyment of our Services.

Processing is necessary for the purposes of the legitimate interests pursued by Eventene.

To facilitate acquisitions, mergers, or other business transactions

We may process any of your Personal Information as is necessary in the context of acquisitions, mergers, or other business transactions. We will try to notify you in advance if we intend to process your Personal Information for this purpose. You will have the option of terminating your account if you do not wish to have your Personal Information processed for such purposes.

Processing is necessary for the purposes of the legitimate interests pursued by Eventene.

To engage in marketing activities

We may send you marketing communications from time to time. Such marketing communications may contain information about our events, partner events, or promotional offers. We may use your interaction and/or transaction data to provide you with targeted marketing communications. You can opt out of our marketing communications at any time and free of charge.

Processing is necessary for the purposes of the legitimate interests pursued by Eventene.

We will only use your Personal Information for the purposes above or for compatible purposes.

If we wish to share your Personal Information with third parties that are not described in this Policy or the Privacy Policy, we may request your permission as required by Data Protection Law. You may opt out of having your Personal Information shared with third parties, or from allowing us to use your Personal Information for any purpose that is incompatible with the purposes for which we originally collected it or subsequently obtained your authorization. However, if you limit the way we use your Personal Information, certain features or Services may not be available to you.

Third Party Sources of Information

We only collect Personal Information about you from third parties that you voluntarily choose to connect with our Services. For example, you can share Personal Information with us when you access our Site or Service through a third-party connection, or when you log in or connect an application to Eventene. We process this information for the purposes of performance of our contracts with you.

Third Party Recipients

Eventene conducts the majority of data processing activities required to provide you with the Services. However, we do engage third-party service providers to assist with supporting our Services, including vendors in the following areas:

  • Credit card or payment processors
  • Cloud storage providers
  • Messaging providers
  • Customer support tools
  • Product development tools
  • IT and security service providers, and
  • Marketing or analytics tools

Each service provider is vetted and bound by contractual obligations that are equivalent to the provision of this Policy or more stringent. See the “Accountability for Onward Transfers” section below for more information about our agreements with third parties.

Retention

We are committed to keeping your Personal Information secure on our Services. We limit our storage of your Personal Information to the amount of time necessary to fulfil the purposes for which we collected the Personal Information, including for the purposes of satisfying any legal, accounting, or reporting obligations, or to resolve disputes. Although retention laws and requirements vary by jurisdiction, we have some standard retention periods for parts of your Personal Information which are described below:  

  • Contact information collected for marketing purposes, such as your name and email address, is retained on an ongoing basis until you unsubscribe from our marketing communications. Thereafter we will add your contact information to our suppression list indefinitely to respect your unsubscribe request.
  • Browser interaction data, such as cookies and trackers, is kept for a period of up to one year from expiry of the cookie or date of collection.
  • Product analytics data is kept for up to 5 years, and automatically deleted on an ongoing basis.

If you have questions about retention periods that apply to any other data, please contact us at privacy@eventene.com

International Transfers

Eventene uses approved data transfer mechanisms to transfer your Personal Information in and out of the United States and other jurisdictions. We rely on European Commission–approved Standard Contractual Clauses as a legal mechanism where required for any data transfers from the U.S. to a country outside the UK, EU, EEA, or Switzerland to the extent that any such transfers occur.

In relation to transfers of Personal Information to the U.S., Eventene receives Personal Information pursuant to Standard Contractual Clauses and other data transfer mechanisms.

This GDPR Privacy Policy and the Eventene Privacy Policy describe Eventene's privacy practices. In the event there is a conflict between the terms in the Privacy Policy and this Policy, this Policy shall govern for any conflicts related to UK, EU, EEA, or Swiss data subjects.

Accountability for Onward Transfer

Eventene complies with the principles of onward transfers of Personal Information from the UK, EU, EEA, and Switzerland, according to provisions outlined in the GDPR. Eventene contractually obligates third-party agents or service providers to provide the same level of protection as required under the Data Protection Laws. In addition, we limit and specify the purpose(s) for processing your Personal Information consistent with any notice provided to you and your consent.

Upon request by the United States Department of Commerce, Eventene will provide a summary or representative copy of the relevant privacy provisions of its agreement with a third-party agent.

In certain situations, Eventene may be required to disclose your Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements, to comply with a judicial proceeding or court order, or as otherwise required by law.

Security

We are committed to protecting the security of your Personal Information by using reasonable and appropriate physical, electronic, and administrative safeguards. Please refer to the Privacy Policy for more detailed information about our security safeguards.

Your Rights

You have the rights to your Personal Information that are described below. You can exercise your rights by contacting us at privacy@eventene.com so that we may consider your request under applicable law. When we receive an individual rights request via email, we may take steps to verify your identity before complying with the request to protect your privacy and security.

  • Right to withdraw consent. When we rely on your consent for processing of your Personal Information, you have the right to withdraw your consent at any time. However, the withdrawal of your consent will not affect the lawfulness of Eventene's processing based on consent before your withdrawal.
  • Right of access to and rectification of your Personal Information. You have a right to request a copy of your Personal Information stored with Eventene. We will provide a copy to you without undue delay subject to some fee associated with gathering of the information (as permitted by law). We may limit or deny your request if providing you with a copy could adversely affects the rights and freedoms of others. You may also request us to correct or update any inaccurate Personal Information stored by us.
  • Right to erasure (or, “The right to be forgotten”). You have the right to request erasure of your Personal Information that: (a) is no longer necessary in relation to the purposes for which it was collected or otherwise processed; (b) was collected in relation to processing that you previously consented to, but no longer consent to; or (c) was collected in relation to processing activities to which you object, and there are no overriding legitimate grounds for our processing. Your right to erasure is subject to limitations by relevant Data Protection Laws.
  • Right to data portability. If we process your Personal Information based on a contract with you or based on your consent, or the processing is carried out by automated means, you may request to receive your Personal Information in a structured, commonly used, and machine-readable format, and to have us transfer your Personal Information directly to another data controller, where technically feasible, unless exercise of this right adversely affects the rights and freedoms of others.
  • Right to restriction of processing. You have the right to restrict our processing of your Personal Information where one of the following applies:

    (a) You contest the accuracy of your Personal Information that we processed. In such instances, we will restrict processing during the period necessary for us to verify the accuracy of your Personal Information.
    (b) The processing is unlawful and you oppose the erasure of your Personal Information and request the restriction of its use instead.
    (c) We no longer need your Personal Information for the purposes of the processing, but it is required by you to establish, exercise, or defend legal claims.
    (d) You have objected to processing, pending the verification of whether the legitimate grounds of Eventene's processing override your rights.

    Restricted Personal Information shall only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest. We will inform you if the restriction is lifted.
  • Notification of erasure, rectification, and restriction. We will communicate any rectification or erasure of your Personal Information or restriction of processing to each recipient to whom your Personal Information has been disclosed, unless this proves impossible or involves disproportionate effort. We will inform you about those recipients if you request this information. If we have made your Personal Information public and we are required to erase the Personal Information, we will, taking account of available technology and the cost of implementation, take reasonable steps, including technical measures, to inform other parties that are processing your Personal Information that you have requested the erasure of any links to, or copy or replication of your Personal Information.
  • Right to object to processing. Where the processing of your Personal Information is based on consent, contract, or legitimate interests, you may restrict or object, at any time, to the processing of your Personal Information as permitted by applicable law. We can continue to process your Personal Information if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.
  • Automated individual decision-making, including profiling. You have the right not to be subject to a decision based solely on automated processing of your Personal Information, including profiling, which produces legal or similarly significant effects on you. There may be exceptions or limitations to this right as defined under relevant Data Protection Laws.

Limitations to your Rights

Your rights to your Personal Information are not without limits. Access may be denied when:

  • Denial of access is required or authorized by law
  • Granting access would have a negative impact on other's privacy
  • Doing so protects our rights and properties, or
  • Where the request is frivolous or vexatious

Recourse, Enforcement, & Liability

We will investigate and work expeditiously to resolve any complaints or disputes in accordance with this Policy. If you have an inquiry or complaint regarding our privacy policies or practices, please contact us first at privacy@eventene.com.

You have also a right to lodge a complaint with a competent supervisory authority.

Children's Data

We recognize that some Data Protection Laws vary based on the age of consent. Depending on the jurisdiction, the age of consent can be between 13 to 16 years old. We do not knowingly request to collect Personal Information from any Data Subject under the age of consent as defined by the jurisdiction in which the Data Subject resides. If we are aware of or suspect that a Data Subject is under the age of consent, we will require the Data Subject to terminate their account. We will also take steps to delete the information as soon as possible. Please notify us if you know of any individuals under the age of consent using our Services.

Changes to this Policy

We may change this Policy at any time and the changes will apply to any Personal Information we already hold and to any new Personal Information collected after the change occurs. If we make any material changes to this Policy, we will endeavor to notify you by email or by posting a prominent notice on the Services prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices. Your continued use of our Services after the effective date of this Policy constitutes an acceptance of the amended terms. You may refer to the “Last Updated” date of this Policy to determine if the Policy has changed since the date of your last visit.

Contact Us

If you have any questions regarding this Policy or about the privacy practices of Eventene, please contact us by email at privacy@eventene.com, or at:

Eventene, LLC
2500 Broadway, Ste F-125
Santa Monica, CA 90404
USA