General Data Protection Regulation (GDPR)
The GDPR came into effect on May 25th, 2018 - and evenito has all necessary processes in place to be GDPR compliant.
What is the GDPR?
The GDPR is the new European legislation meant to replace the 1995 Data Protection Directive.
This regulation, which can be read in full on the CNIL website, is the new Europe-wide law governing the use and handling of individuals’ personal data. It has three main objectives:
1. To standardise European data protection regulations.
2. To give citizens control over how their personal data is used.
3. To make sure that companies are aware of their responsibilities regarding personal data.
Does the GDPR apply to you?
If you (event organiser) collect or process the personal data of any European citizen (participant), regardless of the country in which your company is based, the GDPR will affect your business.
Rights coming with the GDPR
The GDPR gives new protection rights and assures better access to your personal data to all participants registering or interacting with evenito. As an evenito client, the GDPR will affect the usage of evenito and the data you (evenito client) will collect:
RIGHT TO RECTIFICATION
RIGHT TO BE FORGOTTEN
If a participant wishes to exercise their right to be forgotten, you can simply delete them from your lists in evenito. This will also erase all their personal data in this event. If a participant sends a valid request directly to us, we will inform you and remove their personal data from your account.
RIGHT TO PORTABILITY
Participants can contact us at any time to get their data.
RIGHT OF ACCESS
RIGHT TO OBJECT
Participants can unsubscribe at any time to any specific use of their information (invitation, participant list, etc. ). Which will however lead to the fact that certain services of evenito cannot be used by participants.
If a security breach that is likely to “result in a risk to the rights and freedom of individuals” occurs, we will both inform users/participants and authorities if necessary.