Your privacy is very important to us. We have a few fundamental principles:
The Information We Collect
We only collect information if we have reason to do so - for example, to provide our services, to communicate with you, or to improve our services. We collect this information from three sources:
Information you provide to us
Here are some examples of how we use the information you provide to us:
Basic account information: We ask for basic information from you in order to set up your account. For example, we require individuals who sign up for an Attendd.io account to provide an email address and password as well as a name. You are under no obligation to provide us with your real name.
Public profile information: Upon the creation of your account, we ask you for a display name which is used to identify you to other users with whom you have a direct connection while using the service. We also utilise the Gravatar service to provide a default avatar. The only information which is required for this to function is your email address. This data is provided as a hashed value of your email address. You have the option to provide us with your own avatar or to pick one of the default avatars provided. Should you choose this option, the Gravatar service will no longer be used for your account (until such time that you remove your selected avatar and return to the default setting).
Payment information: This section will be updated accordingly upon the release of a premium service. At the present time, this section is not applicable to the services offered by Attendd.
Communication with us: You may also provide us with information when you send support requests or enquiries. When you communicate with us via form or email, we store a copy of those communications.
Information we collect automatically
We try to limit the amount of information we collect automatically, but there is a bare minimum which is necessary to allow our service to function effectively. We collect some information that web browsers, mobile devices, and servers typically make available, including the browser type, unique device identifiers, language preferences and date and time of access. We do not use this information for any other purpose than to provide our service and gain a general understanding of how users are using the service.
Information you provide to us through use of the service
We also collect information you provide to us when you create, join, or participate in an event. This includes:
If you choose to invite people to join your event, we also require that you provide us with basic details of others who are yet to register with the service. Given that these persons have not explicitly agreed to us using the data, we treat this data differently. A name and either an email address or phone number is required in order to send out an invitation. All data associated with an invitation are deleted at the earliest possible opportunity, either upon acceptance or denial of the invitation by the invited person, or upon cancellation of the invitation by the person who created it, or by cancellation of the event itself.
How and Why We Use Information
To provide our services: For example, to set up and maintain your account, to setup and maintain an event within your account, to allow you to interact with an event created by another user, provide customer service and verify user information.
To protect our service, our users, and the public: For example, by detecting security incidents; detecting and protecting against malicious, deceptive, fraudulent, or illegal activity; fighting spam; complying with our legal obligations; and protecting the rights and property of Attendd and others, which may result in us, for example, declining a transaction or terminating services.
To fix problems with our service: For example, by monitoring, debugging, repairing, and preventing issues.
To customise the user experience: For example, to personalize your experience by serving you relevant notifications in line with your use of the service.
To communicate with you For example, by emailing you to ask for your feedback, share tips for getting the most out of our products, or keep you up to date on Attendd. These communications will be rare, and you can opt out of such communications at any time. We will always send you important communications relating to your account.
Legal Bases for Collecting and Using Information
A note here for those in the European Union about our legal grounds for processing information about you under EU data protection laws, which is that our use of your information is based on the grounds that: (1) The use is necessary in order to fulfill our commitments to you under the applicable terms of service or other agreements with you or is necessary to administer your account — for example, in order to enable access to our website on your device; or (2) The use is necessary for compliance with a legal obligation; or (3) The use is necessary in order to protect your vital interests or those of another person; or (4) We have a legitimate interest in using your information — for example, to provide and update our Services; to improve our Services so that we can offer you an even better user experience; to safeguard our Services; to communicate with you; to measure, gauge, and improve the effectiveness of our advertising; and to understand our user retention and attrition; to monitor and prevent any problems with our Services; and to personalize your experience; or (5) You have given us your consent.
We share information about you in limited circumstances, and with appropriate safeguards on your privacy. For example:
Persons you have invited to an event:: If you invite someone to an event you have created who is not already a registered user of Attendd, we must share a certain amount of your information with that person. This information will only consist of information which you have provided to us at one time, either during account registration, profile completion, or event creation, for example your name, a personal message from you to the person being invited, and the details of the event to which that person is being invited.
Third-party vendors: We may share information about you with third-party vendors who need the information in order to provide their services to us. This includes vendors that help us provide our service to you, for example Amazon Web Services for transactional emails. In the future this may also include payment providers that process your credit and debit card information for purchases you make through using our service.
Legal and regulatory requirements: We may disclose information about you in response to a subpoena, court order, or other governmental request.
To protect rights, property, and others: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of Attendd, third parties, or the public at large.
De-identified information: We may share information that has been de-identified, so that it can no longer reasonably be used to identify you. For example, we may share a hashed version of your email address to facilitate our avatar service.
We do not sell our users' data and this will never change. We aren't a data broker, we don't sell your personal information to data brokers, and we don't sell your information to other companies that want to spam you with marketing emails.
How Long We Keep Information
We generally discard information about you when it’s no longer needed for the purposes for which we collect and use it. However, we believe that it is important to place trust in our users as they have placed trust in us by using our service. Therefore when you request to delete your account or delete an event you created, these deletions will be executed immediately. While this removes the option for users to change their mind after deletion, we believe it is the correct thing to do. The only exception to this is data which is stored on our backups. This data will remain until it is purged (no later than 30 days after creation), but will never be accessed unless absolutely necessary. As stated previously, delete means delete at Attendd.
While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so. We monitor our Services for potential vulnerabilities and attacks.
If you are located in certain parts of the world, including countries that fall under the scope of the European General Data Protection Regulation (aka the “GDPR”), you may have certain rights regarding your personal information, like the right to request access to or deletion of your data.
European General Data Protection Regulation (GDPR)
If you are located in a country that falls under the scope of the GDPR, data protection laws give you certain rights with respect to your personal data, subject to any exemptions provided by the law, including the rights to:
You also have the right to make a complaint to a government supervisory authority.
Contacting Us About These Rights
You can usually access, correct, or delete your personal data using your account settings and tools that we offer, but if you aren’t able to or you’d like to contact us about one of the other rights, please see the “How to Reach Us” section further down. When you contact us about one of your rights under this section, we’ll need to verify that you are the right person before we disclose or delete anything. For example, if you are a user, we will need you to contact us from the email address associated with your account. You can also designate an authorized agent to make a request on your behalf by giving us written authorization. We may still require you to verify your identity with us.
How to Reach Us