This type of service allows interaction with social networks or other external platforms directly from the pages of this Website.
The interaction and information obtained through this Website are always subject to the User’s privacy settings for each social network.
This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.
It is recommended to log out from the respective services in order to make sure that the processed data on this Website isn’t being connected back to the User’s profile.
Facebook Like button and social widgets (Facebook, Inc.)
The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc.
Personal Data processed:
Cookies; Usage Data.
Place of processing:
Privacy Shield participant.
AddToAny (AddToAny LLC)
AddToAny is a service provided by AddToAny LLC, which displays a widget that allows interaction with social networks and external platforms as well as sharing the contents of this Website.
Depending on the configuration, this service can display widgets belonging to third parties such as the managers of social networks where interactions are shared. In this case, also the third parties that provide the widget will be informed of interactions and Usage Data on the pages where this service is installed.
Personal Data processed:
Cookies; Usage Data.
Place of processing:
Eventbrite Data Shield Policy
Last Updated: March 11, 2019
EU-US and Swiss-US Privacy Shield Framework
We, Eventbrite, Inc. are committed to protecting your privacy. This Notice sets out the privacy principals we follow with respect to transfers of personal data from the European Economic Area ("EEA"), the United Kingdom (UK) and Switzerland to the United States, including personal data we receive from individuals residing in the EEA, the UK or Switzerland who visit our web and mobile sites or apps and/or who use any of our services or otherwise interact with us ("you").
We adhere to the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework (together the “Privacy Shield”) as set forth by the European Commission and the US Department of Commerce regarding the collection, use and retention of personal data from EEA member countries, the UK and Switzerland. Eventbrite, Inc. has certified that it adheres to and will abide by the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability.
For purposes of enforcing compliance with the Privacy Shield, Eventbrite, Inc. is subject to the investigatory and enforcement authority of the US Federal Trade Commission.
For more information about the Privacy Shield, see the US Department of Commerce’s Privacy Shield website located at: https://www.privacyshield.gov. To review our certification on the Privacy Shield list, see the US Department of Commerce’s Privacy Shield self-certification list located at: https://www.privacyshield.gov/list.
Types of personal data we collect and use
Data transfers to third parties
Agents, consultants and service providers: We may share your personal data with our contractors and service providers who process personal data on behalf of Eventbrite to perform certain business-related functions. These companies include our marketing agencies, database service providers, backup and disaster recovery service providers, email service providers and others. When we engage another company to perform such functions, we may provide them with information, including personal data, in connection with their performance of such functions.
If we have received your personal data in the United States and subsequently transfer that information to a third party agent or service provider for processing, we remain responsible for ensuring that such third party agent or service provider processes your personal data to the standard required by our Privacy Shield commitments.
Eventbrite Group Companies: We may also share your personal data with our parent companies, subsidiaries and/or affiliates for purposes consistent with this Notice.
Business Partners: We also provide information to our channel partners, such as distributors and resellers, to fulfill product and information requests, and to provide customers and prospective customers with information about Eventbrite and its products and services.
Business Transfers: As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, personal data may be part of the transferred assets.
Disclosures for National Security or Law Enforcement: Under certain circumstances, we may be required to disclose your personal data in response to valid requests by public authorities, including to meet national security or law enforcement requirements.
Organizers: When you purchase tickets to, register for or donate to an event or related fundraising page on or through our services, we provide the personal data entered on the applicable event or related fundraising page to the Organizers of such event and related fundraising page.
Facebook and Other Third Party Connections: You can connect your Eventbrite account to your accounts on third party services like Facebook, in which case we may collect, use, disclose, transfer and store/retain information relating to your account with such third party services in accordance with this Notice.
Legal Requirements: We may disclose your personal data if required to do so by law in order to (for example) respond to a subpoena or request from law enforcement, a court or a government agency, or in the good faith belief that such action is necessary to (a) comply with a legal obligation, (b) protect or defend our rights, interests or property or that of third parties, (c) prevent or investigate possible wrongdoing in connection with the Services, (d) act in urgent circumstances to protect the personal safety of Users of the Services or the public, or (e) protect against legal liability.
We try to minimize disclosures of personal data as reasonably practical because we are mindful of our responsibility and potential liability in cases of onward transfers to third parties.
We maintain reasonable and appropriate security measures to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction in accordance with the Privacy Shield.
You may have the right to access personal data that we hold about you and request that we correct, amend, delete it if it is inaccurate or processed in violation of Privacy Shield. These access rights may not apply in some cases, including where providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than the individual requesting access. If you would like to request access to, or a correction, amendment, or deletion of your personal data, you can submit a written request to the contact information provided below. We may request specific information from you to confirm your identity. In some circumstances we may charge a reasonable fee for access to your information.
You may choose to change personal data or cancel an account by contacting Eventbrite Support. You can also unsubscribe from our marketing communications by following the instructions or unsubscribe mechanism in the e-mail message, or by updating your email preferences located with such subject’s Account Settings.
Questions or complaints
You can direct any questions or complaints about the use or disclosure of your personal data to us at firstname.lastname@example.org. We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of personal data within 45 days of receiving your complaint. We have further committed to cooperate and comply with the panel of European data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner respectively in the resolution of any Privacy Shield complaints we do not otherwise satisfactorily address with you directly. Your DPA contact details can be found here. Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
How to contact us
If you have any questions regarding this Notice or if you need to request access to or update, change or remove personal data that we control, you can do so by contacting email@example.com or by regular mail addressed to:
Attn: Legal Department
155 5th St.
San Francisco, CA 94103
Changes to this Notice
We reserve the right to amend this Notice from time to time consistent with the Privacy Shield's, requirements.
Collecting your Personal Information
We do not collect any personal information about you at our website unless you choose to provide it to us voluntarily. We define “personal information” as information that personally identifies you or allows us to contact you. Such information might include your phone number, name or email address. Generally, this information is requested when you are asked to register before entering a contest, subscribing to e-mail newsletters, completing an online survey, joining a limited-access premium site, viewing premium-level resource information, or when requesting information about or purchasing Blackbaud products and services. If you encounter a screen or page that requests information you do not want to share with us, do not enter the information and do not proceed with that screen or page.
You can personalize your experience at www.blackbaud.com by becoming a registered user. If you ever want to review or update your profile, simply visit www.blackbaud.com and edit your account information. We’ll ask you to disclose your User ID and password so that only you can access your profile. Your account information is secure and is accessible by using a password that you select. Do not share your password with anyone. The Blackbaud website assigns a personal identification number and sends it to your computer in the form of a small text file, called a “cookie.” The use of this cookie allows you to visit other password-restricted portions of Blackbaud’s website—for which you have security access—without having to sign in again.
Use of your Personal Information
If you do provide us with personal information, we will only use it for the purposes described where it is collected or elsewhere on the website. Specifically, we may use your personal information in the following ways: (1) to make the website easier for you to use by not making you enter your personal information more than once; (2) to help you quickly find information on Blackbaud software, services and customer support; (3) to help us create and deliver content most relevant to you; and (4) to alert you to product upgrades, special offers, updated information and other new services from Blackbaud.
We will not sell, license, transmit or disclose your personal information outside of Blackbaud or its affiliates without notice to you unless (1) you expressly authorize us to do so, (2) it is necessary to allow our service providers, representatives, or agents to provide services for or to us, (3) it is necessary to provide our products or services to you, (4) it is disclosed to entities that perform marketing services on our behalf or to other entities with whom we have joint marketing or other agreements, (5) it is necessary or we deem it appropriate in connection with a sale of all or substantially all of the assets or business of Blackbaud, a sale of stock or equity interests of Blackbaud, or the merger of Blackbaud into another entity or any consolidation, share exchange, combination, reorganization, or like transaction in which Blackbaud is not the survivor, (6) it is necessary to protect and defend the rights or property of Blackbaud, (7) it is necessary to act in urgent circumstances to protect the personal safety of Blackbaud customers, visitors to Blackbaud’s website or the public, or (8) otherwise as we are required or permitted by law.
We occasionally contract with other companies to provide limited services on our behalf, including packaging, mailing and delivering purchases, answering customer questions about products or services, sending postal mail and processing event registration. We will only provide those companies the information they need to deliver the service, and they are prohibited from using that information for any other purpose.
If you are a California resident, you may ask us to disclose certain information about or to refrain from sharing your information (whether collected online or offline) with third parties for their marketing purposes. Please tell us your preference by contacting us as indicated in the “Contacting Us” section of this Policy.
Information Collected from Children
www.Blackbaud.com is a general audience site, and we do not knowingly collect information about children or sell products to children under the age of 13. If you are under the age of 13, you must ask your parent or guardian to assist you in using our website. Furthermore, we may restrict entries to any contests, sweepstakes or promotions to entrants who are at least 18 years of age.
We may contact you about promotions, customer stories, Blackbaud news and updates, or thought leadership content. We may send these communications via email or postal mail, call your organization, or serve you advertisements on our website. If you would no longer like to receive such emails, please follow the “Unsubscribe” instructions at the end of each email. Your e-mail address will be removed from our marketing list. Please allow us a reasonable period of time in order to satisfy your request, as some promotions may already be in process. To opt out of being contacted by any other communication methods, please contact us at firstname.lastname@example.org.
We appreciate your questions and comments about our website and services and welcome your email messages to mailboxes listed on our website. We will share your messages with those within and outside our organization who may be able to address the issues contained in your message. We will keep a copy of your message until we have had an opportunity to address your concerns. We may archive your message for a certain period of time or discard it, but your email message will not be used for any other purpose.
Access to your Personal Information
We will provide you with the means to ensure that your personal information is correct and current. If you are a registered user of our website, you may review and update this information at any time on www.blackbaud.com. Registered users can view and edit personal information they have already given us. All users can subscribe or unsubscribe to Blackbaud email newsletters and blogs.
We require you to enter your password for security purposes before you update your email address, user name, password, and/or your security question and answer. If you change your email address, we send an email to both your old and new email addresses.
Security of your Personal Information
We restrict access to personal information collected about you at our website to our employees, our affiliates’ employees, those who are otherwise specified in this Policy, or others who need to know that information to provide services to you or in the course of conducting our business operations or activities. While no website can guarantee security, we maintain appropriate physical, electronic, and procedural safeguards to protect your personal information collected via the website. We protect our databases with various physical, technical and procedural measures and we restrict access to your information by unauthorized persons. We also advise all Blackbaud employees about their responsibility to protect customer data and we provide them with appropriate guidelines for adhering to our company’s business ethics standards and confidentiality policies. Inside Blackbaud, data is stored in password-controlled servers with limited access.
Links to Other Websites
For your convenience, we may provide links to other websites and web pages that we do not control. We cannot be responsible for the privacy practices of any websites or pages not under our control and we do not endorse any of these websites or pages, the services or products described or offered on such sites or pages, or any of the content contained on those sites or pages.
A cookie is a piece of information that a web server may place on your computer when you visit a website. Cookies are commonly used by websites to improve the user experience and have not been known to transmit computer viruses or otherwise harm your computer. Many cookies last only through a single website session, or visit. Others may have an expiration date, or may remain on your computer until you delete them.
Our cookies will track only your activity relating to your online activity on this website, and will not track your other Internet activity. Our cookies do not gather personally identifiable information.
You can decide if and how your computer will accept a cookie by configuring your preferences or options in your browser. However, if you choose to reject cookies, you may not be able to use certain of our online products and services or website features. For example, if you choose to not have your browser accept cookies from Blackbaud’s website, you will need to re-enter your personal information each time that you attempt to access premium information.
Certain pages on our websites contain “web beacons” (also known as Internet tags, pixel tags and clear GIFs). These web beacons allow third parties to obtain information such as the IP address of the computer that downloaded the page on which the beacon appears, the URL of the page on which the beacon appears, the time the page containing the beacon was viewed, the type of browser used to view the page, and the information in cookies set by the third party.
An IP address is a unique identifier that certain electronic devices use to identify and communicate with each other on the Internet. When you visit our website, we may view the IP address of the device you use to connect to the Internet. We use this information to determine the general physical location of the device and understand from what regions of the world our website visitors come. We also may use this information to enhance our website.
We do not currently take actions to respond to Do Not Track signals sent by your Internet browser because a uniform technological standard has not yet been developed. In the future, we may adopt a standard once appropriate new technologies are created and will make any corresponding changes to this Policy.
Contests, Sweepstakes and Other Promotions
On our website, you may wish to participate in contests, sweepstakes and other promotions that we may offer from time to time. Through these promotions, you may choose to participate in activities such as sharing information found on our websites with others and sending email invitations. If you choose to participate in these promotions, and are eligible to do so, we may ask you for information such as your name, email address, date of birth and telephone number.
In connection with any contests, sweepstakes and other promotions that we may offer from time to time via the website, we use the information you provide to administer the contests, sweepstakes and other promotions. We also may use the information to communicate with you, or the other people you select, about our products and services or our partners may use such information to communicate with you about the contests, sweepstakes or other promotions or their products and services. As mentioned above, if you create a profile and submit an entry in connection with a contest or promotion, your name, profile and entry, but not your email address, phone number and age, will be visible to other website users. We will not use information you provide about other people for any purpose except the purpose you direct without first getting their consent.
Transfer of Information
Blackbaud is headquartered in the United States of America. Any personal information you provide may be stored and maintained in a secure database in the United States. If you are a resident of a country other than the United States and provide us with your information, you consent to the transfer of your data into the United States.
Changes to this Policy
Blackbaud may update this Policy at any time and from time to time and we will post any changes to this page. The most recent version of the Policy is reflected by the version date located at the bottom of this Policy.
If you have any questions about this Policy or would like to learn more about how we protect privacy, please write to us at Blackbaud, Inc., 2000 Daniel Island Drive, Charleston, SC, 29492-7541, USA or at email@example.com.
Last updated September 18, 2019
Blackbaud Privacy Shield Notice
This is a United States-based website and is subject to United States law. Laws related to Personal Data vary by country. For example, Personal Data collected in the European Union is subject to laws based on the European Union Data Protection Directive. Blackbaud, its subsidiaries, and its affiliates are certified under the EU-U.S. Privacy Shield framework and the Swiss-U.S. Privacy Shield Framework regarding the collection, storage, transfer, use and other processing of Personal Data transferred from the European Union, the United Kingdom, and Switzerland, as applicable, to the United States.
Last Updated: March 11, 2019
We participate in and comply with the EU-U.S. and Swiss-U.S. Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of Personal Data (defined in Section 2.1) transferred from European Economic Area ("EEA") member countries, Switzerland and the United Kingdom (UK) to the United States. You can find out more about our commitment to the EU-U.S. and Swiss-U.S. Privacy Shield Framework in our Privacy Shield Notice.
TIP: Take a look at our Help Center article to learn how to opt in and out of Eventbrite communications.
NOTE: To learn more about Eventbrite's Legal Terms, take a look here.
1. Who We Are.
1.1 Eventbrite Services.
Welcome to Eventbrite! We are a ticketing and registration platform dedicated to bringing the world together through live experiences. Through our platform, mobile apps and services, we enable people all over the world to create, discover, share and register for events.
Eventbrite's products, features and offerings are available (a) online through various Eventbrite properties including without limitation, Eventbrite, Eventbrite Communities, Eventbrite Music, Eventbrite Venue, Lanyrd, Rally, Ticketea, Ticketfly, nvite ("Site(s)"); (b) off platform, including without limitation, RFID, entry management, sponsorship and marketing or distribution services; and (c) through mobile applications, webpages, application programming interfaces, and subdomains ("Applications"). (a), (b), and (c) are collectively referred to as "Eventbrite Properties" or our "Services".
1.2 Who's Who.
Eventbrite, Inc. is a Delaware corporation with its principal place of business at 155 5th Street, Floor 7, San Francisco, CA 94103, Reg. No. 4742147 ("Eventbrite," "us," "we" or "our"). If you are resident in the EEA or Switzerland, Eventbrite, Inc. is the responsible party with respect to Personal Data (defined below) collected through the Services. Eventbrite's representative for European data protection law purposes is Eventbrite NL B.V. with its principal place of business at Silodam 402, 1013AW, Amsterdam, The Netherlands.
If you have any questions or concerns at any time, please do not hesitate to contact us at the address above or by contacting us at firstname.lastname@example.org.
2. Our Privacy Statement.
3. Personal Data That We Collect.
When you use or interact with us through the Services, we may collect Personal Data. Sometimes this will be on our own behalf and other times this will be on behalf of an Organizer using our Services to run an event. This is an important distinction for EU data protection law purposes and is explained in more detail in Section 16 below.
3.1 Information Collected From All Users.
Information you provide to us: For all Users we collect Personal Data when you voluntarily provide such information to the Services, such as when you register for access to the Services, contact us with inquiries, respond to one of our surveys or browse or use certain parts of the Services. The Personal Data we may collect includes without limitation your name, address, email address and any other information that you choose to provide and/or that enables Users to be personally identified.
When you register for the Services or otherwise submit Personal Data to us, we may associate other Non-Personal Data (including Non-Personal Data we collect from third parties) with your Personal Data. At such instance, we will treat any such combined data as your Personal Data until such time as it can no longer be associated with you or used to identify you.
3.2 Information Collected From Organizers.
If you are an Organizer we will collect additional Personal Data from you.
Information you provide to us: In some cases, we may collect your credit card information (e.g., your credit card number and expiration date, billing address, etc.), some of which may constitute Personal Data, to secure certain payments. In addition, if you use our payment processing services, we will collect financial information from you (e.g., your bank account information or an address to send checks) as necessary to facilitate payments and information required for tax purposes (e.g., your taxpayer identification number).
Information we obtain from other sources: We may also collect or receive Personal Data including your name, email address and other contact information from third party sources, such as third party websites and marketing partners, your bank, our payment processing partners and credit reporting agencies.
3.3 Information Collected From Consumers.
If you are a Consumer we will collect additional Personal Data from you, sometimes for our own purposes and other times on behalf of an Organizer (see Section 16 below for more information).
Information you provide via Eventbrite Properties or Applications: If you register for a paid event, you will provide financial information (e.g., your credit card number and expiration date, billing address, etc.) some of which may constitute Personal Data. In addition, Organizers can set up event registration pages to collect virtually any information from Consumers in connection with registration for an Organizer's event listed on the Services. Eventbrite does not control an Organizer's registration process nor the Personal Data that they collect. When you register for, or otherwise provide information to Eventbrite in conjunction with an Organizer event or activity, whether that information is yours or a third party’s, in connection with a purchase, registration, or transfer, that Organizer will receive and may use the information you provide. Please see Section 5.5 below, titled “How We Disclose and Transfer Your Personal Data: Organizers” for more information about an Organizer’s receipt and use of your Personal Data.
Information we obtain from other sources: We may also collect or receive Personal Data from third party sources, such as Organizers, other Consumers, social media or other third party integrations, your credit card issuing bank, our payment processing partners or other third parties.
4. How We Use Your Personal Data.
4.1 Specific Reason.
If you provide Personal Data for a certain purpose, we may use the Personal Data in connection with the purpose for which it was provided. For instance, if you contact us by e-mail, we will use the Personal Data you provide to answer your question or resolve your problem and will respond to the email address from which the contact came.
4.2 Access and Use.
If you provide Personal Data in order to obtain access to or use of the Services or any functionality thereof, we will use your Personal Data to provide you with access to or use of the Services or functionality and to analyze your use of such Services or functionality. For instance, if you supply Personal Data relating to your identity or qualifications to use certain portions of the Services, we will use that information to make a decision as to granting you access to use such Services and to assess your ongoing qualification to use such Services.
4.3 Internal Business Purposes.
We may use your Personal Data for internal business purposes, including without limitation, to help us improve the content and functionality of the Services, to better understand our Users, to improve the Services, to protect against, identify or address wrongdoing, to enforce our Terms of Service, to manage your account and provide you with customer service, and to generally manage the Services and our business.
4.4 Eventbrite Marketing.
We may use your Personal Data for our marketing and advertising purposes, including (without limitation) by email, SMS marketing, display media, and targeting other devices (such as tablets, mobile devices and televisions). We do this in order to inform you about services or events we believe might be of interest to you, develop promotional or marketing materials and display Eventbrite or event-related content and advertising on or off the Services that we believe might be of interest to you. We may also do this on behalf of an Organizer, for example where your prior interactions with an Organizer suggest you may be interested in a particular type of event. See "Opt Out from Electronic Communications" below on how to opt out of various Eventbrite marketing communications.
You may see advertisements for our Services (or our Organizer’s events) on third party websites, including on social media platforms. Where you see an advertisement on a third party website or social media platform, this may be because we engaged the third party or social media platform to show this advertisement to our Users, or to others who have similar attributes to our Users. In some cases, this involves sharing your email address or other contact details with the third party or social media platform so that they can identify you as one of our Users, or identify other individuals with similar attributes to you in order to show them advertisements for our Services (or for our Organizer’s events). If you no longer want your Personal Data to be used for these purposes please contact us at email@example.com. For more information about how we market on, and interact with social media sites, please refer to section 5.6.
4.5 Organizer Emails.
We allow Organizers to use our email tools to contact Consumers for their current and past events, so you may receive emails from our system that originate with such Organizers and that we send on their behalf. If you registered for an event on the Services, your email address is available to that Organizer. However, Organizers may also import the email addresses they have from external sources and send communications through the Services to those email addresses, and we will deliver those communications to those email addresses on the Organizer's behalf. The Organizer and not Eventbrite is responsible for sending these emails. See "Opt Out from Electronic Communications" below on how to opt out of Organizer-initiated communications.
4.6 Use of Interest-Based Data
We sometimes make inferences about the type of events or activities you may be interested in. We may use these inferences to help target advertising or customize recommendations to you, including on behalf of Organizers. We may do this on an aggregated or generalized basis. For instance, we may determine that our users who attend many comedy events also often attend or show interest in endurance-related events or content. We may direct (or assist in directing) content or recommendations related to both comedy and endurance to those Users.
4.7 Other Purposes.
4.8 Aggregated Personal Data.
5. How We Disclose And Transfer Your Personal Data.
5.2 Business Transfers.
5.3 Parent Companies, Subsidiaries and Affiliates.
5.4 Agents, Consultants and Service Providers.
We may share your Personal Data with our contractors and service providers who process Personal Data on behalf of Eventbrite to perform wcertain business-related functions. These companies include our marketing agencies, online advertising providers, data enhancement and data services providers, database service providers, backup and disaster recovery service providers, email service providers, payment processing partners, customer support, tech support, hosting companies and others. When we engage another company to perform such functions, we may provide them with information, including Personal Data, in connection with their performance of such functions.
When you purchase tickets to, register for or donate to an event, transfer an event ticket or registration to another person, enter a contest, or otherwise input your Personal Data (such as through a web form), or otherwise communicate with an Organizer, or participate in or express interest in an Organizer or Organizer event or activity, that Organizer will receive the information you provide, including your Personal Data, and where a ticket or registration is transferred, the Personal Data of the transferee as well. Other third parties that are involved in or on whose behalf an event or activity is promoted, may receive that Personal Data as well.
For example, as to fundraising pages, we may provide your Personal Data both to the Organizer charity of the fundraising page and the Organizer of the event to which the fundraising page is linked. In some instances, an Organizer may appoint a third party, which may or may not be affiliated with the Organizer, to create an event or fundraising page on its behalf (we call these third parties ("Third Party Organizers"). For example, and without limitation, a concert venue (the Organizer, in this case) may allow third party promoters or production companies (the Third Party Organizers) to create events that will be hosted at the Organizer's venue using its Eventbrite account. In that case, we may provide your Personal Data to the Third Party Organizers on behalf of the Organizers. The same is true for contests and sweepstakes: we may provide your Personal Data to both the Organizer promoting the contest or sweepstakes, and any legal sponsor of the contest or sweepstakes (such as a brand sponsor).
We are not responsible for the actions of these Organizers, or their Third Party Organizers (or other downstream recipients of your Personal Data), with respect to your Personal Data. It is important that you review the applicable policies of the Organizers, and if applicable and available, their appointed Third Party Organizers, of an event (and the related fundraising page, if applicable) before providing Personal Data or other information in connection with that event or related fundraising page.
Similarly, if you are a member of an Organizer's organization within Eventbrite, your Personal Data will be available to the Organizer and shared with those Third Party Organizers granted permission by the Organizer to view all members of the Organizer's organization.
5.6 Facebook, Social Media and Other Third Party Connections.
b. “Liking” or “Following” Eventbrite on Social Media. In addition, when you “like” or “follow” us on Facebook, Instagram, Twitter or other social media sites (to the extent we provide that capability), we may collect some information from you including your name, e-mail address, and any comments or content you post relevant to us. We likewise may collect your information if you sign up for one of our promotions or submit information to us through social media sites.
c. Facebook Plug-Ins and Links on Our Pages. Eventbrite’s own website may contain links to Facebook as well, such as through the Facebook “Like” or “Share” button or other social plug-ins. When you interact with these features and links, your browser will establish a direct link with the Facebook servers, and Facebook will receive information about your browser and activity, and may link it to your Facebook user account. For more information about how Facebook uses data, please see Facebook’s own policies.
d. Additional Facebook Marketing and Connectivity. In addition, if you are a member of Facebook (or another social media platform), and you provide Personal Data to an Organizer (such as in the ways described in Section 5.5), the Organizer may use that Personal Data to send you advertising and offers through Facebook (or another social media) platform, including when you are on Facebook or another social media platform. The Organizer may work with us and with third parties to enable this data integration and advertising. Facebook and other social media platforms may provide a way to opt out of this type of advertising. Please review their user settings and support pages to learn more about how they help you to manage privacy and marketing choices.
e. Third party services and integrations. Eventbrite may provide you with opportunities to contract directly with third parties, and/or to integrate with third party services or applications, through our platform. In such instances, we will disclose your Personal Data to other entities in order to fulfill a request by you, or to provide services you have requested.
5.7 Legal Requirements.
We may disclose your Personal Data if required to do so by law in order to (for example) respond to a subpoena or request from law enforcement, a court or a government agency (including in response to public authorities to meet national security or law enforcement requirements), or in the good faith belief that such action is necessary to (a) comply with a legal obligation, (b) protect or defend our rights, interests or property or that of third parties, (c) prevent or investigate possible wrongdoing in connection with the Services, (d) act in urgent circumstances to protect the personal safety of Users of the Services or the public, or (e) protect against legal liability.
6. How We Store Your Personal Data.
7. How You Can Access, Update, Correct or Delete Your Personal Data.
You can request access to some of your Personal Data being stored by us. You can also ask us to correct, update or delete any inaccurate Personal Data that we process about them.
If you are a registered User, you can exercise these rights by logging in and visiting the My Account page. Both registered and unregistered Users may also exercise these rights by contacting us directly by email or at the address specified below.
If a Consumer initiates a data deletion request, Eventbrite is authorized to delete or anonymize Personal Data of the requesting Consumer from the Services even if that means removing its availability to the Organizer through the Services. However, if you are a Consumer, you understand that even if Eventbrite deletes or anonymizes your Personal Data upon your request or pursuant to this Policy, your Personal Data may still be available in the Organizer's own databases if transmitted to the Organizer prior to Eventbrite receiving or taking action on any deletion or anonymization activity.
We will consider and respond to all requests in accordance with applicable law.
8. How Long We Retain Your Personal Data.
We may retain your Personal Data as long as you are registered to use the Services. You may close your account by contacting us. However, we may retain Personal Data for an additional period as is permitted or required under applicable laws. Even if we delete your Personal Data it may persist on backup or archival media for an additional period of time for legal, tax or regulatory reasons or for legitimate and lawful business purposes.
9. Cookies, Pixels Tags, Local Shared Objects, Web Storage And Similar Technologies.
10. Your Choices.
You have several choices available when it comes to your Personal Data:
10.1 Limit the Personal Data You Provide.
You can browse the Services without providing any Personal Data (other than Automatic Data to the extent it is considered Personal Data under applicable laws) or with limiting the Personal Data you provide. If you choose not to provide any Personal Data or limit the Personal Data you provide, you may not be able to use certain functionality of the Services. For instance, in order to buy tickets as a Consumer, your name and email address will be required by the Organizer.
10.2 Opt Out from Electronic Communications.
(a) Eventbrite Marketing Communications.
Where it is in accordance with your marketing preferences, Eventbrite may send you electronic communications marketing or advertising the Services themselves or events on the Services, to the extent you have registered for the Services or purchased a ticket and/or registration to an event listed on the Services. You can also "opt out" of receiving these electronic communications by clicking on the "Unsubscribe" link at the bottom of any such electronic communication. In addition, you may also manage your email preferences at any time by logging in (or signing up and then logging in), clicking on "Account" and then "Email Preferences."
(b) Organizer-initiated Communications.
Organizers may use our email tools to send electronic communications to those on their email subscription lists, including Consumers who have registered for their events on the Services in the past. Although these electronic communications are sent through our system, Eventbrite does not determine the content or the recipients of these electronic communications. Organizers are required to use our email tools only in accordance with all applicable laws. Eventbrite provides an "Unsubscribe" link on each of these emails, which allows recipients to "opt out" of electronic communications from the particular Organizer.
(c) Social Notifications.
If you connect your Facebook account or sign up for other social media integrations whose product features include social notifications (i.e., updates on what your friends are doing on the Services), you will receive these social notifications. You can manage these social notifications by toggling your social settings to private or disconnecting such integration.
(d) Transactional or Responsive Communications.
Certain electronic communications from Eventbrite are responsive to your requests. For instance, if you are a Consumer, we must email you your ticket or registration on behalf of the Organizer when you purchase such ticket or registration. As a further example, if you email our customer support department, we will return your email. Notwithstanding any unsubscribe election that you have made, you will still receive these transactional or responsive emails. You can stop receiving these types of emails only by contacting us. By electing to stop receiving all electronic communications from us or through our system, you will no longer receive any updates on events you have created (including payout issues) or on events you are registered to attend (including emails with your tickets). We do not recommend that you do this unless you plan to no longer use the Services, are not currently registered for an event, are not currently organizing an event, and will have no need to receive further communications from us or through our system.
10.3 Do Not Track.
We currently do not participate in any "Do Not Track" frameworks that would allow us to respond to signals or other mechanisms from you regarding the collection of your Personal Data.
11.1 Personal Data Provided to Others.
11.2 Third Party Links.
12. Children - Children's Online Privacy Protection Act.
13. International Privacy Laws.
15. Dispute Resolution.
If you have a complaint about Eventbrite's privacy practices you should write to us at:
Eventbrite, Inc., Attn: Privacy Officer, 155 5th Street, Floor 7, San Francisco, CA 94103, USA, or by email. We will take reasonable steps to work with you to attempt to resolve your complaint.
Residents of the EEA, Switzerland or the UK who believe that their information has not been processed in compliance with the Privacy Shield Principles may raise their complaints in a number of ways. For further information, please see our Privacy Shield Notice.
16. EEA, SWITZERLAND AND UK ONLY
The EU General Data Protection Regulation (GDPR)
In May 2018, a new data privacy law known as the EU General Data Protection Regulation (or the "GDPR") went into effect. The GDPR requires Eventbrite and Organizers using the Service to provide Users with more information about the processing of their Personal Data.
Here is what you need to know:
Legal grounds for processing your Personal Data
The GDPR requires us to tell you about the legal ground we're relying on to process any Personal Data about you. The legal grounds for us processing your Personal Data for the purposes set out in Section 4 above will typically be because:
• you provided your consent;
• it is necessary for our contractual relationship;
• the processing is necessary for us to comply with our legal or regulatory obligations; and/or
• the processing is in our legitimate interest as an event organizing and ticketing platform (for example, to protect the security and integrity of our systems and to provide you with customer service, etc.).
Transfers of Personal Data
As Eventbrite is a global company, we may need to transfer your Personal Data outside of the country from which it was originally provided. This may be intra-group or to third parties that we work with who may be located in jurisdictions outside the EEA, Switzerland and the UK which have no data protection laws or laws that are less strict compared with those in Europe.
Whenever we transfer Personal Data outside of the EEA, Switzerland or the UK, we take legally required steps to make sure that appropriate safeguards are in place to protect your Personal Data. For Personal Data we receive from the EEA, Switzerland and the UK, Eventbrite, Inc has certified its compliance to the EU-U.S. and Swiss-U.S. Privacy Shield as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from those countries. We have certified that we adhere to the Privacy Shield principles of Notice, Choice, Accountability for Onward Transfers, Security, Data Integrity & Purpose Limitation, Access and Recourse, Enforcement & Liability when processing Personal Data from the EEA, Switzerland or the UK in the United States. You can find out more about our commitment to the EU-U.S. and Swiss-U.S. Privacy Shield Framework in our Privacy Shield Notice.
Feel free to contact us as set forth in Section 15 for more information about the safeguards we have put in place to protect your Personal Data and privacy rights in these circumstances.
Personal Data retention
We retain your Personal Data for as long as necessary to provide you with our Services, or for other important purposes such as complying with legal obligations, resolving disputes, and enforcing our agreements.
If you have an account with us, we will typically retain your Personal Data for a period of ninety (90) days after you have requested that your account is closed or if it's been inactive for seven (7) years.
Data protection law provides you with rights in respect of Personal Data that we hold about you, including the right to request a copy of the Personal Data, request that we rectify, restrict or delete your Personal Data, object to profiling and unsubscribe from marketing communications.
For the most part, you can exercise these rights by logging in and visiting the My Account page or changing the "cookie settings" in your browser (see our Cookie Statement for more information). If you can't find what you're looking for in the My Account page, please contact us using the contact information set out in Section 15 above. Please note that requests to exercise data protection rights will be assessed by us on a case-by-case basis. There may be circumstances where we are not legally required to comply with your request because of the laws in your jurisdiction or because of exemptions provided for in data protection legislation.
If you have a complaint about how we handle your Personal Data, please get in touch with us as set forth in Section 15 to explain. If you are not happy with how we have attempted to resolve your complaint, you may contact the relevant data protection authority.
Eventbrite as a data controller and a data processor
EU data protection law makes a distinction between organizations that process Personal Data for their own purposes (known as "data controllers") and organizations that process personal data on behalf of other organizations (known as "data processors"). If you have a question or complaint about how your Personal Data is handled, these should always be directed to the relevant data controller since they are the ones with primary responsibility for your Personal Data.
Eventbrite may act as either a data controller or a data processor in respect of your Personal Data, depending on the circumstances.
For example, if you create an account with us to organize your events, Eventbrite will be a data controller in respect of the Personal Data that you provide as part of your account. We will also be a data controller of the Personal Data that we have obtained about the use of the Applications or Eventbrite Properties, which could relate to Organizers or Consumers. We use this to conduct research and analysis to help better understand and serve Users of the Services as well as to improve our platform and provide you with more targeted recommendations about events we think may be of interest to you.
However, if you register for an event as a Consumer, we will process your Personal Data to help administer that event on behalf of the Organizer (for example, sending confirmation, promotional and feedback emails, processing payments, etc.) and to help the Organizer target, and understand the success of, their event and event planning (for example, providing event reports, using analytics to gain insights into the effectiveness of various sales channels, etc.). In these circumstances, Eventbrite merely provides the "tools" for Organizers; Eventbrite does not decide what Personal Data to request on registration forms, nor is it responsible for the continued accuracy any Personal Data provided. Any questions that you may have relating to your Personal Data and your rights under data protection law should therefore be directed to the Organizer as the data controller, not to Eventbrite.
Blackbaud eTapestry Privacy Shield Certification
Blackbaud Privacy Shield Certification Notice
Blackbaud’s participation in the Privacy Shield applies to all personal data that is subject to the Privacy Shield Principles and is received from the EU, European Economic Area (“EEA”), UK, and Switzerland. Blackbaud will comply with the Privacy Shield Principles in respect of such personal data.
For purposes of this Notice, “Personal Data” means information that (i) is transferred from the EEA, the UK, and/or Switzerland to the United States, (ii) is recorded in any form, (iii) is about, or relates to, an identified or identifiable job applicant, consumer, customer, supplier or other individual (excluding Blackbaud employees), and (iv) can be linked to that job applicant, consumer, customer supplier or other individual. This Notice outlines our general policy and practices for implementing the Privacy Shield principles for Personal Data.
Privacy Shield Principles
Blackbaud’s practices regarding the collection, storage, transfer, use and other processing of Personal Data comply with the Privacy Shield principles of notice, choice, onward transfer, access, security, data integrity, and enforcement and oversight.
We notify our job applicants, consumers, customers, suppliers and others located in the EEA, the UK, and Switzerland about the purposes for which we collect and use Personal Data, the types of third parties to which we disclose the information, the choices job applicants, consumers, customers, suppliers and others have for limiting the use and disclosure of their information, and how to contact us about our practices concerning
When we receive Personal Data from our subsidiaries, affiliates or other entities in the EEA, the UK, and Switzerland, we will use and disclose such information in accordance with the notices provided by such entities and the choices made by the individuals to whom such Personal Data relates.
Purpose of Collection and Use of Personal Data
Blackbaud collects certain Personal Data such as name, email address, postal address and telephone number. We do not collect sensitive Personal Data of consumers, customers or suppliers, such as information about medical or health conditions, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or other sensitive information as defined by the Privacy Shield framework.
We use Personal Data of consumers, customers, suppliers and others (i) to respond to their requests, (ii) to evaluate the quality of our products and services, (iii) to communicate with them about our products, services and related issues, (iv) to notify them of and administer offers, contests, sweepstakes and other promotions, and (v) for internal administrative and analytics purposes, and (vi) to comply with our legal obligations, policies and procedures.
Blackbaud shares Personal Data with its service providers and among Blackbaud’s parent, subsidiaries and affiliates. With respect to Personal Data we share with other third parties, we provide job applicants, consumers, customers, suppliers and others located in the EEA, the UK, and Switzerland with an opportunity to opt-out of such sharing. Click here if you would like to opt-out. We do not use Personal Data for purposes incompatible with the purposes for which the information was originally collected without notifying the relevant consumers, customers, suppliers and others of such uses and offering an opportunity to opt-out.
In addition, we may disclose Personal Data (i) if we are required to do so by law or legal process, (ii) to law enforcement authorities or other government officials based on an enforceable government request or as may be required under applicable law, or (iii) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of suspected or actual illegal activity.
Onward Transfer of Personal Data
We may share Personal Data with service providers we have retained to perform services on our behalf. We now require service providers to whom we disclose Personal Data and who are not subject to laws based on the EU’s General Data Protection Regulation, the UK’s Data Protection Act 2018, or the Swiss Federal Act on Data Protection, as applicable, to either (i) subscribe to the Privacy Shield principles or (ii) contractually agree to provide at least the same level of protection for Personal Data as is required by the relevant Privacy Shield principles. If the third party does not comply with its privacy obligations, Blackbaud will take commercially reasonable steps to prevent or stop the use or disclosure of Personal Data. In the context of an onward transfer, Blackbaud has responsibility for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. Blackbaud shall remain liable under the Principles if its agents that it engages to process such personal information do so in a manner inconsistent with the Principles, unless Blackbaud proves that it is not responsible for the event giving rise to the damage.
Access to Personal Data
Blackbaud provides job applicants, consumers, customers, suppliers and others with reasonable access to the Personal Data maintained about them. We also provide a reasonable opportunity to correct, amend or delete that information where it is inaccurate. We may limit or deny access to Personal Data where providing such access is unreasonably burdensome or expensive under the circumstances, or as otherwise permitted by the Privacy Shield principles. To obtain access to Personal Data, job applicants, consumers, customers, suppliers and others may contact Blackbaud as specified in the “How to Contact Us” section of this Policy.
Blackbaud maintains reasonable administrative, technical and physical safeguards to protect Personal Data from loss, misuse and unauthorized access, disclosure, alteration and destruction.
Blackbaud takes reasonable steps to ensure that Personal Data collected by Blackbaud is relevant for the purposes for which it is to be used and that the information is reliable for its intended use and is accurate, complete and current. We depend on our job applicants, consumers, customers, suppliers and others to update or correct their Personal Data whenever necessary.
Your Rights to Access, to Limit Use, and to Limit Disclosure
EU, UK, and Swiss individuals have rights to access personal data about them, and to limit use and disclosure of their personal data. With our Privacy Shield certification, Blackbaud has committed to respect those rights. Because in some circumstances Blackbaud personnel have limited ability to access data our customers submit to our services, if you wish to request access, to limit use, or to limit disclosure, please provide the name of the Blackbaud customer who submitted your data to our services. We will refer your request to that customer, and will support them as needed in responding to your request.
Blackbaud may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Inquiries and Complaints
If you believe Blackbaud maintains your personal data in one of the services within the scope of our Privacy Shield certification, you may direct any inquiries or complaints concerning our Privacy Shield compliance to firstname.lastname@example.org. Blackbaud will respond within 45 days. If we fail to respond within that time, or if our response does not address your concern, you may contact ICDR/AAA (https://www.icdr.org), which provides an independent third-party dispute resolution body based in the United States. The services of ICDR/AAA are provided at no cost to you. If neither Blackbaud nor ICDR/AAA resolves your complaint, you may have the possibility to engage in binding arbitration through the Privacy Shield Panel. Also, Blackbaud’s commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission.
With respect to human resources data, Blackbaud will cooperate and comply with the EU DPA’s, the UK Information Commissioner’s Office, and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with respect to human resources data transferred from the EU, the UK, and Switzerland, as appropriate, in the context of the employment relationship. If you do not receive timely acknowledgement of your complaint from Blackbaud, or if we have not addressed your complaint to your satisfaction, you may contact the EU DPA’s, the UK ICO, or FDPIC, as applicable, for more information or to file a complaint. The services of the EU DPA’s, the UK ICO, or FDPIC are provided at no cost to you.
How to Contact Us
You may address any questions or concerns regarding our Privacy Shield Policy or our practices concerning Personal Data by:
Contacting us through our website: Click here, or
Attention: Law Department
65 Fairchild Street
Charleston, SC, 29492-7541
The Blackbaud Privacy Shield Notice may be amended from time-to-time in compliance with the requirements of the Privacy Shield principles. Appropriate notice will be given concerning such amendments.
This Privacy Shield Notice is effective as of August 1, 2016 and was last revised September 18, 2019.