Privacy Policy

1. Introduction

Tech Summit ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, register for our events, or interact with our services.

This policy is designed to comply with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable European data protection laws.

Data Controller: Tech Summit
Contact Email: privacy@techsummit.com
Address: [Company Address, City, Country]

2. What Information We Collect

We collect and process the following categories of personal data:

2.1 Information You Provide Directly

• Registration Information: Name, email address, job title, company name, phone number, and professional information when you register for events or create an account.
• Payment Information: Billing details and payment card information (processed securely through third-party payment processors).
• Communication Data: Information you provide when you contact us, subscribe to newsletters, or participate in surveys.
• Event Participation: Badge scans, session attendance, networking preferences, and interaction data during events.
• User-Generated Content: Photos, comments, questions, or other content you submit during events or via our platforms.

2.2 Information We Collect Automatically

• Technical Data: IP address, browser type, device information, operating system, and referring URLs.
• Usage Data: Pages visited, time spent on pages, clickstream data, and interaction with website features.
• Cookies and Tracking: Data collected through cookies, pixels, and similar technologies (see Section 7).

2.3 Information from Third Parties

• Professional information from publicly available sources (LinkedIn, company websites).
• Data from our partners, exhibitors, and sponsors when you interact with them at our events.

3. Legal Basis for Processing Your Data

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you explicitly agree to receive marketing communications or participate in specific activities.
• Contract Performance: To fulfill our obligations when you register for events or purchase tickets.
• Legitimate Interests: To operate and improve our events, ensure security, prevent fraud, and conduct analytics (where your interests do not override our legitimate interests).
• Legal Obligations: To comply with legal requirements such as tax, accounting, and regulatory obligations.

4. How We Use Your Information

We use your personal data for the following purposes:

• Event Management: To process registrations, issue tickets, manage attendance, and provide event-related services.
• Communication: To send confirmations, updates, reminders, and important information about events you registered for.
• Marketing: To send newsletters, promotional materials, and information about upcoming events (only with your consent or legitimate interest).
• Networking: To facilitate connections between attendees, exhibitors, and speakers through our event platforms.
• Improvement: To analyze usage patterns, improve our services, and develop new features.
• Security: To protect our website, events, and users from fraud, abuse, and security threats.
• Legal Compliance: To comply with legal obligations and resolve disputes.

5. How We Share Your Information

We may share your personal data with the following categories of recipients:

5.1 Service Providers

We share data with trusted third-party service providers who assist us in:

• Payment processing (e.g., Stripe, PayPal)
• Email marketing and communication (e.g., Mailchimp, SendGrid)
• Event management platforms and registration systems
• Website hosting and IT infrastructure
• Analytics and performance monitoring (e.g., Google Analytics)
• Customer support services

5.2 Event Partners

With your consent or as part of your event participation:

• Exhibitors and Sponsors: When you visit their booths, scan badges, or express interest in their services.
• Speakers: When you interact with them during sessions or networking.
• Other Attendees: Through attendee lists or networking features (where you opt-in).

5.3 Legal Requirements

We may disclose your information to:

• Law enforcement, regulatory authorities, or courts when required by law
• Protect our rights, property, or safety, or that of our users
• Enforce our terms and conditions

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity.

6. International Data Transfers

Tech Summit operates across multiple European countries. Some of our service providers may be located outside the European Economic Area (EEA).

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions confirming the recipient country provides adequate protection
• Binding Corporate Rules for multinational organizations
• Your explicit consent for specific transfers

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze usage, and deliver personalized content.

7.1 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for website functionality and security.
• Performance Cookies: Help us understand how visitors use our website (e.g., Google Analytics).
• Functional Cookies: Remember your preferences and personalize your experience.
• Marketing Cookies: Track your activity to deliver relevant advertisements (requires consent).

7.2 Managing Cookies

You can control cookies through:

• Our cookie consent banner when you first visit our website
• Your browser settings (note: disabling cookies may affect functionality)
• Opt-out tools for specific services (e.g., Google Analytics opt-out)

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law.

• Event Data: Typically retained for 2-3 years after the event for historical records and future event planning.
• Marketing Communications: Until you withdraw consent or unsubscribe.
• Payment Records: Retained for 7 years to comply with tax and accounting regulations.
• Account Data: Retained until you request deletion or your account becomes inactive for 5 years.

After the retention period, we securely delete or anonymize your data.

9. Your Rights Under GDPR

As a data subject in the European Union, you have the following rights:

• Right to Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure ("Right to be Forgotten"): Request deletion of your data under certain circumstances.
• Right to Restriction: Request that we limit the processing of your data.
• Right to Data Portability: Receive your data in a structured, commonly used format and transmit it to another controller.
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Withdraw consent at any time (without affecting the lawfulness of processing before withdrawal).
• Right to Lodge a Complaint: File a complaint with your local Data Protection Authority if you believe we violated your rights.

To exercise your rights, contact us at: privacy@techsummit.com

We will respond to your request within one month (extendable by two months for complex requests).

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration, including:

• Encryption of data in transit (SSL/TLS) and at rest
• Regular security assessments and vulnerability testing
• Access controls and authentication mechanisms
• Employee training on data protection and security
• Incident response and breach notification procedures

While we strive to protect your data, no system is completely secure. If we become aware of a data breach that poses a risk to your rights, we will notify you and the relevant authorities as required by GDPR.

11. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16 without parental consent. If you believe we have collected data from a child, please contact us immediately at privacy@techsummit.com.

12. Third-Party Links and Services

Our website and event platforms may contain links to third-party websites, services, or applications. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal data.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending an email notification to registered users
• Displaying a prominent notice on our website

We encourage you to review this policy periodically.

14. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

15. Supervisory Authority

If you are located in the European Union and believe we have not addressed your concerns, you have the right to lodge a complaint with your local Data Protection Authority:

• Germany: Bundesbeauftragter für den Datenschutz und die Informationsfreiheit (BfDI) - www.bfdi.bund.de
• Austria: Österreichische Datenschutzbehörde - www.dsb.gv.at
• Hungary: Nemzeti Adatvédelmi és Információszabadság Hatóság - www.naih.hu
• Spain: Agencia Española de Protección de Datos - www.aepd.es

A complete list of EU Data Protection Authorities can be found at: https://edpb.europa.eu/about-edpb/board/members_en