Privacy Policy
1. Introduction
At TEDxDartmouth, accessible via tedxdartmouth.com, we are firmly committed to respecting and protecting your privacy. We recognize the importance of safeguarding personal data and are dedicated to adhering to the highest standards of data protection, privacy, and transparency. This Privacy Policy is intended to inform you about how we collect, process, store, and safeguard your personal information in connection with your use of our website and related services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through tedxdartmouth.com and related services provided by TEDxDartmouth. TEDxDartmouth acts as the data controller, which means we determine the purposes and means of processing your personal data in accordance with applicable data protection legislation, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
3. Categories of Data Processed
In the course of providing access to tedxdartmouth.com and its services, we may collect and process the following categories of personal data:
a) Usage Data: Includes details about how you use our website such as browser type, IP address, device identifiers, domain names, access times, and pages viewed. This helps us understand usage patterns and improve website performance.
b) Account Data: If you create an account or register for an event, we may collect your name, email address, phone number, mailing address, and account login credentials.
c) Profile Data: Includes your preferences, communication choices, purchase history, and behavior on our platform, including interaction with tickets, events, or forms.
d) Communication Data: Includes records of communications between you and TEDxDartmouth, such as emails, support inquiries, and correspondence regarding events or services.
e) Technical Data: Includes data about your device and system configurations such as operating system, device type, hardware specifications, and browser plugins.
f) Transaction Data: Includes details of purchases made through tedxdartmouth.com, payment method information, billing address, and delivery details related to merchandise or event tickets.
g) Preference Data: Includes your marketing and communication preferences, subscriptions to newsletters, event interests, or product choices.
4. Legal Bases for Processing
We process your personal data under the following legal bases:
– Consent: When you have given clear consent for us to process your data for a specific purpose, such as subscribing to a newsletter.
– Contractual Necessity: When processing is necessary for the performance of a contract or to take steps at your request prior to entering into a contract.
– Legitimate Interests: Where processing is necessary to support our legitimate business interests, which are not overridden by your data protection rights. This includes fraud prevention, platform security, and service improvement.
– Legal Obligation: When processing is necessary for compliance with a legal obligation.
5. Your Rights
Under applicable data protection laws, you have the following rights in relation to your personal data:
– Right of Access: You have the right to request access to your personal data and to receive information about how it is processed.
– Right to Rectification: You can request that we correct or update inaccurate or incomplete data.
– Right to Erasure: Also known as the “right to be forgotten,” you may request the deletion of your personal information, subject to applicable retention laws.
– Right to Restrict Processing: You may request that we limit the processing of personal data where the accuracy of the data is contested or processing is unlawful.
– Right to Data Portability: You have a right to obtain and reuse your data for your own purposes across different services in a structured, commonly used, machine-readable format.
– Right to Object: You may object to processing conducted on the ground of legitimate interests or for direct marketing purposes.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement robust administrative, technical, and physical security measures to protect your personal data against unauthorized access, loss, misuse, alteration, or destruction. These measures include:
– Encryption of data in transit and at rest.
– Secure access controls, role-based permissions, and authentication protocols.
– Regular data backups, system monitoring, and penetration testing.
– Employee training on data protection and confidentiality obligations.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other regions with comprehensive data protection laws, we ensure that appropriate safeguards are in place, such as the use of standard contractual clauses approved by the European Commission. We are committed to ensuring your data is afforded a level of protection that complies with applicable privacy laws irrespective of location.
8. Data Retention
We retain your personal data only for as long as is necessary to fulfill the purposes for which it was collected, including satisfying any legal, regulatory, or accounting requirements. Retention periods vary by data category:
– Usage Data: 12 months.
– Account and Profile Data: Active account duration plus 24 months.
– Communication Data: 36 months post-interaction.
– Technical Data: 12 months.
– Transaction Data: 7 years, based on financial compliance obligations.
– Preference Data: Until the user withdraws consent or unsubscribes.
At the end of the applicable retention period, personal data is securely deleted or anonymized.
9. Cookie Policy
TEDxDartmouth uses cookies and similar technologies to enhance your experience on tedxdartmouth.com. Cookies help us analyze traffic, remember user preferences, and deliver relevant content.
Types of cookies used include:
– Essential Cookies: Required for site functionality and security.
– Functional Cookies: Help customize content to user preferences.
– Analytical Cookies: Gather aggregate data to improve site performance.
– Performance Cookies: Enhance loading times and user interface dynamics.
10. Cookie Management and Compliance
You can manage your cookie preferences at any time by adjusting browser settings to refuse some or all cookies. Additionally, we display a cookie consent banner to ensure compliance with GDPR and CCPA requirements, enabling users to make informed choices about the use of cookies. Opt-out options for third-party cookies (e.g., Google Analytics) are available through their respective platforms.
11. Special Protections for Children under 13
TEDxDartmouth does not knowingly collect or solicit personal data from children under the age of 13. If we become aware that personal data from a child under 13 has been collected without verifiable parental consent, we will delete that data promptly. Parents or guardians who believe their child has submitted personal information may contact us at [email protected].
12. Policy Updates & User Notifications
We may amend or update this Privacy Policy from time to time to reflect changes in law, regulatory guidance, or service offerings. Where appropriate, we will notify users by posting a prominent notice on tedxdartmouth.com or by contacting you directly via email when material changes occur. Continued use of our website following any updates constitutes your acceptance of the revised policy.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact:
TEDxDartmouth
Email: [email protected]
Website: https://www.tedxdartmouth.com
We are committed to GDPR and CCPA compliance and protecting your rights. Please reach out to us if you have any privacy concerns or wish to exercise your data protection rights.