Evento Inc. ("Evento," "we," "us," or "our") operates the Evento platform, which includes our website at evento.com and related mobile applications. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.
By accessing or using Evento, you agree to the terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.
1. Information We Collect
1.1 Information You Provide
We collect information you directly provide when using Evento:
- Account Information: When you create an account, we collect your email address, full name, and password. If you sign up via Google, we receive your name, email, and profile picture from Google.
- Profile Information: Any additional information you add to your profile, such as a bio, avatar, or location preferences.
- Event Registration Data: When you register for events, we collect your name, contact details, and any additional information required by the event organizer.
- Event Creation Data: If you create events, we collect event details including titles, descriptions, dates, locations, images, and pricing information.
- Communications: When you contact us for support or feedback, we retain those communications.
1.2 Information Collected Automatically
When you use Evento, we automatically collect certain information:
- Device Information: Browser type, operating system, device type (mobile, tablet, desktop), and screen resolution.
- Log Data: IP address, access times, pages viewed, referring URL, and actions taken on the platform.
- Location Information: General geographic location (city/country level) derived from your IP address. We do not collect precise GPS location.
- Usage Analytics: With your consent, we collect data about how you interact with our platform, including page views, click patterns, and feature usage.
1.3 Information from Third Parties
We may receive information from third parties:
- Authentication Providers: If you sign in with Google, we receive basic profile information as permitted by your Google account settings.
- Event Partners: Event organizers may share attendee lists or registration information with us for events hosted on our platform.
2. How We Use Your Information
We use the information we collect for the following purposes:
2.1 Providing Our Services
- Creating and managing your user account
- Processing event registrations and generating tickets
- Sending confirmation emails and event reminders
- Enabling event organizers to manage their events and attendees
- Facilitating check-in at events using ticket codes
2.2 Improving and Personalizing Evento
- Analyzing usage patterns to improve our features and user experience
- Recommending events based on your interests and past activity
- Customizing content based on your location preferences
- Conducting research and analytics to enhance our platform
2.3 Communications
- Sending transactional emails (registration confirmations, ticket codes, event updates)
- Notifying you of changes to events you've registered for
- Responding to your inquiries and support requests
- Sending important service announcements and security alerts
2.4 Safety and Security
- Detecting and preventing fraud, abuse, and security incidents
- Enforcing our Terms of Service and community guidelines
- Protecting the rights, property, and safety of our users
- Complying with legal obligations and responding to lawful requests
3. Cookies and Tracking Technologies
We use cookies and similar technologies to collect information and improve your experience. You can control cookie preferences through our cookie consent banner.
3.1 Types of Cookies We Use
| Category | Purpose | Required |
|---|---|---|
| Essential | Authentication, security, and basic functionality | Yes |
| Analytics | Understanding how users interact with our platform (via Google Analytics) | No |
| Preferences | Remembering your settings and preferences | No |
3.2 Managing Cookies
You can modify your cookie preferences at any time by clicking "Cookie Settings" in the footer of our website. You can also configure your browser to block cookies, though this may affect functionality.
4. How We Share Your Information
We do not sell your personal information. We share your information only in the following circumstances:
4.1 With Event Organizers
When you register for an event, we share your registration information (name, email, ticket code) with the event organizer so they can manage attendance and communicate with you about the event.
4.2 Service Providers
We work with trusted third-party service providers who assist us in operating our platform:
- Supabase: Database hosting and authentication services
- Vercel: Website hosting and content delivery
- Resend: Email delivery services
- Google Analytics: Usage analytics (with your consent)
- Cloudflare: Security and performance services
4.3 Legal Requirements
We may disclose your information if required by law, court order, or governmental request, or if we believe disclosure is necessary to protect our rights, prevent fraud, or ensure user safety.
4.4 Business Transfers
If Evento is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
5. Data Retention
We retain your information for as long as necessary to fulfill the purposes outlined in this policy:
- Account Data: Retained until you delete your account, plus 30 days for backup purposes
- Event Registration Data: Retained for 2 years after the event date for record-keeping
- Analytics Data: Retained for 26 months, then automatically deleted
- Server Logs: Retained for 90 days for security and debugging purposes
- Support Communications: Retained for 3 years for quality assurance
6. Data Security
We implement industry-standard security measures to protect your personal information:
- Encryption: All data transmitted between your browser and our servers is encrypted using TLS 1.3
- Secure Storage: Personal data is stored in encrypted databases with restricted access
- Authentication: We use secure password hashing (bcrypt) and support OAuth 2.0
- Access Controls: Employee access to user data is limited and logged
- Security Monitoring: We continuously monitor for security threats and vulnerabilities
While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.
7. Your Rights and Choices
Depending on your location, you may have the following rights regarding your personal data:
7.1 Access and Portability
You can request a copy of your personal data in a structured, commonly used format. Access your data anytime through your account dashboard.
7.2 Correction
You can update or correct your account information directly in your profile settings, or contact us to correct any inaccurate data.
7.3 Deletion
You can request deletion of your account and associated data. Some information may be retained for legal compliance or legitimate business purposes.
7.4 Opt-Out
You can opt out of:
- Analytics cookies via our cookie consent settings
- Marketing emails via the unsubscribe link in any email
- Data processing for certain purposes by contacting us
7.5 For EU/EEA Residents (GDPR)
If you are in the European Union or European Economic Area, you have additional rights under GDPR, including the right to object to processing, restrict processing, and lodge a complaint with your local data protection authority.
7.6 For California Residents (CCPA)
California residents have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information (note: we do not sell personal information).
8. Children's Privacy
Evento is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us immediately.
9. International Data Transfers
Evento operates globally, and your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws. When we transfer data internationally, we implement appropriate safeguards such as standard contractual clauses to ensure your data remains protected.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website and updating the "Effective Date" at the top. For significant changes, we may also send you an email notification. Your continued use of Evento after any changes indicates your acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:
Evento Inc.
Email: privacy@evento.com
For data protection inquiries in the EU, you may also contact our Data Protection Officer atdpo@evento.com