Einloggen
Teilnehmer Veranstalter

GDPR compliance

GDPR Compliance Policy


At Eventifya, we are committed to protecting the privacy and personal data of our users in accordance with the General Data Protection Regulation (GDPR). This GDPR Compliance Policy explains how we collect, process, and protect personal data of individuals located in the European Economic Area (EEA).



1. Data Controller


Eventifya is the data controller responsible for the processing of personal data collected through our website (https://eventifya.com/) and services.



2. Lawful Basis for Processing Personal Data


We process personal data based on the following lawful grounds under GDPR:



  • Consent: When users provide explicit consent (e.g., subscribing to newsletters or accepting cookies).

  • Contractual Necessity: When processing is required to fulfill a contract (e.g., event ticket purchases and registrations).

  • Legal Obligation: When we are required by law to collect and process data.

  • Legitimate Interests: When processing is necessary for security, fraud prevention, or service improvements.



3. Data We Collect


We collect the following types of personal data:



  • Identity Data: Name, email, phone number, and account details.

  • Transaction Data: Payment details, ticket purchases, and event registrations.

  • Technical Data: IP addresses, cookies, and website usage statistics.

  • Communication Data: Emails, inquiries, and feedback provided by users.



4. How We Use Personal Data


We use personal data to:



  • Provide and manage our services.

  • Process event registrations and payments.

  • Communicate with users about events, updates, and support inquiries.

  • Improve security and fraud prevention.

  • Ensure compliance with legal and regulatory obligations.



5. Data Subject Rights


Under GDPR, individuals have the following rights:



  • Right to Access: Request a copy of the personal data we hold about you.

  • Right to Rectification: Request corrections to inaccurate or incomplete data.

  • Right to Erasure: Request deletion of your data under certain conditions.

  • Right to Restrict Processing: Request limited processing of your data.

  • Right to Data Portability: Receive your data in a structured, machine-readable format.

  • Right to Object: Object to data processing based on legitimate interests.

  • Right to Withdraw Consent: Withdraw previously given consent at any time.


To exercise these rights, please contact us at [Support Email].



6. Data Security


We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, loss, or destruction.



7. Data Retention


We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations.



8. International Data Transfers


If we transfer personal data outside the EEA, we ensure that adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) or other lawful mechanisms.



9. Third-Party Processors


We may share personal data with trusted third-party service providers for payment processing, analytics, and customer support. All third parties are contractually required to protect personal data.



10. Changes to This Policy


We may update this GDPR Compliance Policy from time to time. Users will be notified of significant changes.



11. Contact and Complaints


If you have questions about this policy or wish to file a complaint regarding data protection, please contact us at [Support Email]. You also have the right to file a complaint with your local data protection authority.



By using Eventifya, you acknowledge and agree to the terms of this GDPR Compliance Policy.