Staged Right Events Global Privacy Policy
Introduction
Staged Right Events, Inc. (“SRE” or “We”, “us”), respect your privacy and we are committed to protecting your privacy through our compliance with this policy.
This policy describes our practices in connection with information that we collect through our hotel request software Platform (collectively our “Platform”) as well as SRE’s privacy practices in relation to the use of event websites and external marketing activities.
This policy also describes your data protection rights, including a right to object to some of SRE’s processing. The Policy does not apply to information collected by any third party, including through any third-party application or content that links to or is accessible from our Platform or websites.
This policy applies to the following classification of individuals that with our Platform.
This includes our Customers’ current and prospective clients, attendees, sponsors, exhibitors, marketing partners, or other business contacts.
Our Platform is flexible and allows our Clients to collect a variety of personal data from and about their attendees, including name, organization, title, postal address, e-mail address, telephone number, fax number, social media account ID, credit or debit card number and other information including but not limited to dietary preferences, interests, opinions, activities, age, gender, education and occupation.
SRE’s use of personal information collected through our Platform shall be limited to the purpose of providing the service for which our Customers have engaged our Platform.
If you do not agree with our policies and practices, you may choose not to use our Platform.
How do our Customers collect personal data?
When Customers voluntarily and explicitly enter personal data into our Platforms.
How do Client(s) and Hotel(s) use personal data?
If a Customer chooses to use our Platform, any information provided in connection with that interaction will be transferred to, and under the control of, the Client(s) and Hotel(s).
The Client(s) and Hotel(s) act as data controllers towards the Customers, under the European Economic Area (“EEA”) data protection laws. Therefore, SRE cannot and does not take responsibility for the privacy practices of the Client(s) and Hotel(s).
The information practices of our Client(s) and Hotel(s) are governed by their privacy policies. We encourage Customers to review their privacy policies to understand their practices and procedures.
Does SRE use personal data collected by our Customers?
SRE does not use personal data of our Customers for any purpose other than to provide services that our Client(s) have contracted us to provide through our Platform, as noted below, or as required by law.
We process personal data in the following manner:
To disclose to our subsidiaries and affiliates for the purpose of providing services to our Client(s) and their Customers.
SRE does not share, sell or trade any information with any third parties for promotional purposes.
To deliver the Platform that our Client(s) has contracted us to provide. Some examples include:
If a Customer uses our Platform to request a room reservation for an event, we will use their provided e-mail address to send them information and announcements relating to that event.
If a Customer uses one of our Platforms to pay for event registration fees or other products and services using their credit cards, we will pass the credit card information to payment card processors to validate the payment information and complete the transactions.
As we believe to be necessary or appropriate: (a) under applicable law, including laws outside your country of residence; (b) to respond to requests from public and government authorities including public and government authorities outside your country of residence; and (c) to protect against or identify fraudulent transactions.
For other purposes when Customers provide explicit consent.
What is the legal basis for SRE to process personal data from the EEA?
For individuals that are from the European Economic Area (EEA), our legal basis for collecting and using their personal information will be our legitimate interest where the processing is in our, or a third party’s, legitimate interests and not overridden by the individual’s data protection interests, or fundamental rights and freedoms. These interests are to provide individuals with access to the Platform and features of the Platform; to send them information they have requested; to ensure the security of our Platform by trying to prevent unauthorized or malicious activities; or, to enforce compliance with our terms of use, contracts and other policies. In some EEA countries, we are relying on consent as a legal basis for using data for marketing purposes.
How long does SRE store personal data collected by our Customers?
Where we process personal data for legitimate business interests described in the section “Does SRE use personal data collected by our Customers”, unless otherwise provided in our contract with our Client, we process the data until 180 days after the termination of the contract, at which time we remove it from our production environment. Within 18 months, we remove the data from our backup media.
How do you access, correct or delete your information?
In various countries, including countries in the EEA, upon their request, Customers have the right to their personal data and, if necessary, have it amended, deleted or restricted. Customers can also ask for some types of personal data to be delivered to them, or another organization they nominate, in a structured and machine-readable format.
Where we process your personal data on the basis of your consent, you have the right to withdraw your consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. Customers also have the right to complain to a supervisory authority for data protection in the country where they live, or where they work – although we hope that we can assist with any queries or concerns you have about our use of your personal data.
SRE processes Customers data under the direction of our Client(s) and has no direct control or ownership of the personal data we process. Client(s) and the hotel(s) are responsible for complying with any regulations or laws requiring notice, disclosure or obtaining consent prior to transferring the data to SRE for processing purposes. Any Customer that seeks to access, correct or delete data, should direct their query to the Client(s). If the Client(s) requests SRE to remove the personal data of a Customer to comply with data protection regulations, SRE will process this request within 14 days.
We will not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect. In such instances, we will inform the Client(s) about the legal obligations that prevent us from fulfilling the request.
Does SRE process information of children under the age of 13?
Our Platform is not intended for children under 13 years of age. We do not directly solicit or collect personal data from children under 13. If you are under 13, do not (i) use or provide any information on these Platforms or on or through any of its features, (ii) register to use any of our Platforms, (iii) make any purchases through our Platforms, (iv) use any of the interactive or public comment features of our platform or provide any information about yourself to us, including your name, address, telephone number, e-mail address or any screen name or user name you will use.
How does SRE secure the data it processes?
We use a variety of organizational, technical and administrative measures to protect personal data within our organization. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify us of the problem by contacting us as soon as possible.
How does SRE publicize changes to its Privacy Policy?
We will update this Privacy Policy to reflect changes to our information practices. If we make any material changes we will notify you by means of a notice on this website thirty (30) days prior to the changes becoming effective. However, any changes to the Privacy Policy are effective immediately upon publication for Customers and Client(s). We encourage you to periodically review this page for the latest information on our privacy practices.
Last Updated May 2018