Privacy Policy for tedxdartmouth.com
We maintain an unwavering dedication to protecting and preserving all personal data provided by our website visitors and service users, implementing robust and comprehensive security measures throughout our services and operations.
This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data. In this role, we are responsible for ensuring the proper handling, processing, and protection of all personal data submitted through our website.
We may process usage data, which comprehensively includes access timestamps, page views, browser type, operating system, IP address, device information, click patterns, and navigation paths. This information is collected through server logs, cookies, and website analytics tools and may include session duration, bounce rates, and user interaction patterns. The source of this data is our analytics software and server monitoring systems. We process this information for several important purposes, including improving website performance, analyzing user behavior, optimizing content delivery, and enhancing security measures, which enables us to provide a better user experience, detect potential security threats, and optimize our service delivery. The legal basis for this processing is our legitimate interests in monitoring and improving our website and services.
We may process account data, which comprehensively includes email addresses, usernames, password hashes, account preferences, registration dates, and account status. This information is collected through registration forms, account updates, and user preferences settings and may include communication preferences, notification settings, and account security choices. The source of this data is direct user input during account creation and management. We process this information for maintaining user accounts, providing secure access, managing communications, and personalizing user experiences, which enables us to authenticate users, protect account security, and deliver personalized content. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract.
We may process profile data, which comprehensively includes names, biographical information, professional affiliations, interests, and profile pictures. This information is collected through profile creation forms, profile updates, and linked social media accounts and may include areas of expertise, speaking experience, and event participation history. The source of this data is direct user input and authorized third-party connections. We process this information for facilitating user connections, event participation, speaker submissions, and community engagement, which enables us to match users with relevant opportunities, showcase expertise, and build community relationships. The legal basis for this processing is our legitimate interests in operating and improving our platform services.
Your Rights:
Right to Access: You have the right to obtain confirmation about whether we process your personal data and request access to that data. This includes the ability to receive a copy of your personal data, verify the lawfulness of processing, and understand how your data is being used. To exercise this right, you can submit a formal request through our designated data protection contact channels, specifying the information you wish to access. We will respond within 30 days and may require government-issued identification, proof of address, and account verification to confirm your identity.
Right to Rectification: You have the right to request correction of inaccurate personal data or complete any incomplete personal data we hold about you. This includes the ability to update profile information, correct account details, and modify contact information. To exercise this right, you can access your account settings or contact our support team with specific correction requests. We will process your request within 15 days and may require account verification, supporting documentation, and specific details about the information to be corrected.
Right to Erasure: You have the right to request the deletion of your personal data under certain circumstances, such as when the data is no longer necessary for its original purpose. This includes the ability to delete your account, remove profile information, and withdraw processing consent. To exercise this right, you can submit a deletion request through our privacy portal or contact our data protection officer. We will respond within 30 days and may require password confirmation, written request verification, and specific data identification.
Right to Restrict Processing: You have the right to limit how we use your personal data when you have legitimate grounds to do so. This includes the ability to limit data processing, suspend account activities, and control data usage. To exercise this right, you can submit a processing restriction request through our designated channels, specifying the data and processing activities you wish to restrict. We will respond within 15 days and may require account ownership verification, specific processing details, and reason justification.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used format and transmit this data to another controller. This includes the ability to export your data, transfer account information, and receive data copies. To exercise this right, you can request a data export through our user dashboard or contact our support team. We will respond within 30 days and may require identity verification, format specifications, and transfer destination details.Data Processing and Security Measures
At tedxdartmouth.com, we carefully process and protect various types of personal data to provide our services effectively and securely.
We process Service Data which includes login credentials, account preferences, and platform interaction records. This processing involves automated collection and analysis, enabling us to provide personalized user experiences and maintain service quality. For example, this includes tracking event registrations, speaker preferences, and viewing history. The legal basis for this processing is legitimate interest and contractual necessity, specifically to deliver our TEDx event services and maintain platform functionality.
We process Technical Data which includes device information, IP addresses, browser types, and system logs. This processing involves automated collection and analysis of usage patterns, enabling us to optimize website performance and ensure security. For example, this includes monitoring traffic patterns during live streaming events and managing server loads. The legal basis for this processing is legitimate interest, specifically to maintain technical stability and prevent unauthorized access.
We process Communication Data which includes email correspondence, form submissions, and customer support interactions. This processing involves storing and analyzing communication records, enabling us to provide effective support and maintain service quality. For example, this includes tracking speaker applications and volunteer communications. The legal basis for this processing is legitimate interest and consent, specifically to maintain clear communication channels with our community.
We process Transaction Data which includes payment records, ticket purchases, and merchandise orders. This processing involves secure payment processing and order fulfillment, enabling us to manage event attendance and product distribution. For example, this includes processing event ticket sales and maintaining purchase histories. The legal basis for this processing is contractual necessity and legal obligation, specifically to fulfill purchase agreements and comply with financial regulations.
We process Preference Data which includes notification settings, content preferences, and customization choices. This processing involves storing and applying user preferences, enabling us to provide personalized experiences. For example, this includes managing email subscription preferences and event reminder settings. The legal basis for this processing is consent and legitimate interest, specifically to respect user choices while optimizing service delivery.
Security Measures
Our comprehensive encryption protocols ensure end-to-end protection of your data, incorporating industry-standard algorithms and regular security updates to maintain data integrity. This includes regular security assessments and penetration testing by qualified professionals.
We implement multi-layered security infrastructure, including advanced firewalls and intrusion detection systems that continuously monitor for and prevent unauthorized access attempts. This infrastructure undergoes regular updates and enhancements.
Access to personal data is strictly controlled through role-based permissions, multi-factor authentication, and detailed access logs. We maintain comprehensive audit trails of all data access and modifications.
Our continuous monitoring systems provide real-time threat detection and automated response protocols, ensuring immediate action against potential security threats.
We maintain comprehensive backup procedures with encrypted offsite storage and regular recovery testing, ensuring data availability and integrity.
All staff undergo regular security awareness training and must comply with detailed data protection protocols, including specific training for handling sensitive data.
International Data Transfers
We may transfer your personal data to countries outside your jurisdiction. These transfers are protected by appropriate safeguards, including Standard Contractual Clauses, Privacy Shield certifications, and Binding Corporate Rules. Each international transfer is conducted under strict protocols that ensure:
– Adequate data protection standards
– Compliant processing procedures
– Enforceable data subject rights
– Effective legal remedies
International transfers are protected by ISO 27001 standards, GDPR requirements, and CCPA guidelines, ensuring compliance with global privacy regulations. We implement additional measures including:
– Regular compliance audits
– Data protection impact assessments
– Documented transfer mechanisms
– Continuous monitoring procedures
Regarding international transfers, you maintain specific rights including:
– Right to information about transfers
– Right to object to transfers
– Right to withdraw consent
– Right to data protection guarantees
Data Retention
We maintain specific retention periods for different data categories:
Account Information: Retained for the duration of active account plus 24 months after closure for legal compliance and service improvement
Usage Data: Retained for 12 months for analysis and service optimization
Transaction Records: Retained for 7 years to comply with financial regulations
Communication History: Retained for 36 months to maintain service continuity
Technical Logs: Retained for 6 months for security and performance analysis
These retention periods are determined by:
– Legal requirements
– Business purposes
– Technical necessities
– User preferences
Special circumstances affecting retention:
– Legal obligations
– Dispute resolution
– Security investigationsCookie Policy for tedxdartmouth.com
Essential cookies serve fundamental functions for our website’s basic operations. These cookies process authentication data, session information, and security tokens to maintain site functionality and protect user access. In our context, these cookies enable secure user login, maintain session stability during event registrations, and ensure seamless navigation through our TEDx content platforms.
Functional cookies enhance your experience by storing preferences and customization choices. These cookies process user-selected settings and interface preferences to deliver a personalized browsing experience. For example, they remember your preferred viewing settings for TEDx talks, presentation language preferences, and content filtering choices.
Analytics cookies help us understand how visitors interact with our platform. These cookies collect anonymous usage data about page views, feature engagement, and navigation patterns to improve our content delivery. Specifically, they track which TEDx talks receive the most engagement, how users navigate between different event pages, and which features are most valuable to our community.
Performance cookies assess and optimize our website’s technical operation. These cookies monitor loading times, server response rates, and system performance metrics to ensure optimal content delivery. They help us identify and resolve technical issues quickly, ensuring smooth playback of video content and responsive page loading.
Cookie Management
You can manage your cookie preferences through your browser settings at any time. Our website provides a cookie consent tool upon first visit, allowing granular control over non-essential cookies. You can modify these choices through our privacy preferences center accessible via the footer menu.
GDPR Compliance
For our European visitors, we maintain strict data protection standards. We collect only necessary information with clear purpose limitations and implement appropriate security measures. All data processing activities are documented and transparent, with user consent required for non-essential cookies.
CCPA Compliance
California residents are entitled to specific privacy rights regarding their personal information. We provide mechanisms to request data access, deletion, and opt-out of data sharing. These rights are exercised without discrimination, and we respond to verified requests within the statutory period.
COPPA Compliance
We take special precautions regarding users under 13 years of age. Our platform implements age verification processes and requires parental consent for young users. We limit data collection to essential information only and provide parents with access and control over their child’s data.
Updates and Changes
We regularly review and update our privacy practices to maintain compliance with evolving regulations. Users are notified of significant changes, and renewed consent is obtained when required. All updates are documented and communicated clearly to our users.
Contact Information
For privacy-related inquiries:
– Primary Contact: [email protected]
– Response Time: Within 48 hours
– Verification Required: For data-related requests
– Available Support: Privacy concerns, data requests, rights exercise
This policy was created specifically for tedxdartmouth.com and covers all associated services within the TEDx events industry.