Tech Milap Logo
TechMilap
Back to Home

GDPR Compliance

Last updated: April 20, 2025

1. Introduction

At TechEventPlanner, we are committed to protecting the privacy and security of your personal data. This GDPR Compliance Statement explains how we comply with the General Data Protection Regulation (GDPR) when processing personal data of individuals in the European Economic Area (EEA).

2. Data Controller

TechEventPlanner acts as a data controller for the personal data we collect and process. As a data controller, we determine the purposes and means of processing personal data.

Our contact details are:

TechEventPlanner
123 Tech Street
San Francisco, CA 94105
Email: privacy@techeventplanner.com

3. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR Compliance Statement and our privacy practices. If you have any questions about this statement or how we handle your personal data, please contact our DPO at:

Email: dpo@techeventplanner.com
Address: 123 Tech Street, San Francisco, CA 94105

4. Lawful Basis for Processing

Under the GDPR, we must have a lawful basis for processing your personal data. We process personal data on the following lawful bases:

4.1 Consent

We process certain personal data based on your explicit consent, such as when you opt-in to receive marketing communications or when you provide special categories of personal data.

4.2 Contractual Necessity

We process personal data that is necessary for the performance of a contract to which you are a party, such as when you register for an event or create an account on our platform.

4.3 Legitimate Interests

We process personal data based on our legitimate interests, such as improving our services, preventing fraud, and ensuring the security of our platform. We always balance our interests against your rights and freedoms.

4.4 Legal Obligation

We process personal data to comply with legal obligations to which we are subject, such as tax laws, accounting requirements, and other regulatory obligations.

5. Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data.
  • Right to Erasure: You have the right to request that we delete your personal data in certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to request that we transfer your personal data to another organization or directly to you.
  • Right to Object: You have the right to object to the processing of your personal data in certain circumstances.
  • Rights Related to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing.

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section below.

6. Data Security

We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data
  • Regular testing and evaluation of technical and organizational measures
  • Regular backups of personal data
  • Staff training on data protection and security
  • Access controls and authentication procedures

7. International Transfers

We may transfer your personal data to countries outside the EEA. When we do so, we ensure that appropriate safeguards are in place to protect your personal data, such as:

  • Standard contractual clauses approved by the European Commission
  • Binding corporate rules
  • Adequacy decisions by the European Commission

8. Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority without undue delay and, where feasible, not later than 72 hours after becoming aware of the breach, unless the breach is unlikely to result in a risk to your rights and freedoms.

We will also notify you without undue delay if the breach is likely to result in a high risk to your rights and freedoms.

9. Data Protection Impact Assessment

We conduct Data Protection Impact Assessments (DPIAs) for processing operations that are likely to result in a high risk to the rights and freedoms of individuals, particularly when using new technologies.

10. Contact Us

If you have any questions about our GDPR compliance or how we handle your personal data, please contact us at:

Email: privacy@techeventplanner.com
Address: 123 Tech Street, San Francisco, CA 94105