Privacy Policy
1. Introduction
Welcome to Eventira. We value your privacy and are committed to protecting your personal data. This Privacy Policy describes how we collect, use, process, and share your information across our website and mobile applications (the "Service").
Important: Your data is stored in Amsterdam (EEA) using secure, GDPR-compliant infrastructure. We comply with GDPR (EU), DPDPA 2023 (India), and applicable data protection laws.
2. Information We Collect
We collect information to provide better services to all our users. This includes:
- Profile Information: Your name, email address, profile picture, and account preferences.
- Event Data: Events you attend, sessions you bookmark, registration details.
- User-Generated Content: Posts, comments, messages, and files you upload to the platform.
- Usage Data: Information about how you interact with our Service, including log data and device information.
- Device Information: Device type, OS version, app version, and crash reports (via Firebase Crashlytics).
- Transaction Data: If you make purchases, we collect records of those transactions.
- Analytics: Usage patterns tracked via Google Firebase and Ably for real-time messaging.
3. How We Use Your Information
We use the data we collect to:
- Provide, maintain, and improve our Service.
- Personalize your experience and event interactions.
- Communicate with you regarding updates or support requests.
- Enable real-time messaging via Ably between attendees.
- Ensure the security and integrity of our platform.
- Comply with legal obligations (GDPR, DPDPA 2023, India laws).
- Fix bugs and improve app performance via Firebase Crashlytics.
4. Data Sharing and Disclosure
We do not sell your personal data. We may share information with:
- Service Providers: DigitalOcean (hosting, Amsterdam-based), Google Firebase (analytics/crash reporting), Ably (real-time messaging), and other vendors who help us provide the Service.
- Legal Requirements: If required by law, court order, or to protect the rights and safety of Eventira and its users.
- Event Organizers: When you register for an event, certain profile details (email, name) are shared with the event organizer.
- Other Attendees: Your profile information and messages you intentionally send are visible to other event participants.
5. Data Retention and Security
We retain your information as long as your account is active. Post-deletion, we follow a strict purge cycle:
- Account Data: Deleted 30 days after account deletion.
- Messages: Deleted 30 days after both parties delete accounts.
- Analytics Data: Kept for 14 months in Firebase, then auto-deleted.
- Crash Logs: Kept for 90 days, then deleted.
- Financial Records: Kept for 7 years for statutory compliance.
We use industry-standard encryption (HTTPS/TLS), secure authentication, and regular security audits to protect your data from unauthorized access.
6. Your Rights and Choices
You have the right to access, correct, or delete your personal data:
- GDPR Rights (EU/EEA): Access, correction, deletion ("Right to be Forgotten"), data portability, restriction, objection, withdraw consent.
- DPDPA 2023 Rights (India): Similar rights under the Digital Personal Data Protection Act 2023.
- Account Deletion: You can delete your account at any time in app settings.
- Data Portability: You may request a copy of your personal data in a structured format.
- Marketing Preferences: You can opt out of promotional communications via settings.
To exercise your rights: Email privacy@eventira.com with your request. We respond within 30 days (GDPR/DPDPA requirement).
7. Contact Us
Data Controller: Apoorva Agwan (Chief Executive Officer), Eventira Software Pvt. Ltd., Thane, Maharashtra, India (CIN: U62090MH2025PTC461233).
Privacy Inquiries & GDPR/DPDPA Requests:
- Email: privacy@eventira.com
- Response Time: Within 30 days (legal requirement)
Legal Inquiries:
- Email: legal@eventira.com
General Support:
- Email: support@eventira.com
Report Harmful Content:
- Email: report@eventira.com
See also our Terms of Service, Security page, and GDPR & DPA page for more information.
8. Updates to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy here and updating the "Last Updated" date. Your continued use of the Service after changes constitutes your acceptance.
9. Key Points Summary
- ✓ Data stored in Amsterdam (DigitalOcean)
- ✓ GDPR and DPDPA 2023 compliant
- ✓ We don't sell your data
- ✓ 30-day data deletion after account removal
- ✓ You have rights to access, delete, and export your data
- ✓ Multiple contact options for privacy requests