1. Personal Data We Collect
1) INFORMATION YOU PROVIDE TO US
We collect Personal Data from you when you use the Service, including when you register for access to the Service, contact us with inquiries, use our mobile applications, respond to one of our surveys or browse any of our websites.
The Personal Data we may collect includes:
identification information: including ID card and passport information;
2) YOUR LOCATION
Our mobile applications may or may not include location-based services, including on-site services at events. To provide such location-based services through mobile applications, we collect, use and share precise location data, including the real-time geographic location of your mobile device. If you permit one of our mobile apps to access location services through the permission system used by your mobile operating system, we may collect the precise location of your device when the app is running in the foreground or background. Using your mobile device settings, you can control the location information you share.
3) OTHER INFORMATION COLLECTED FROM YOUR USE OF THE SERVICE
Whenever you interact with the Service, we may automatically receive and record information on our server logs from your browser or device, which may include your IP address, device identification information, Cookie information, the type of browser and/or device you’re using to access the Service, and the page or feature you requested (“Usage Data”). We may also transfer small files to your browser or device (“Cookies”) that allow us to collect certain information. We also use third-party services to collect usage information to better understand and improve the user experience. Usage information collected using third-party services is stored on the servers of the third-party service providers.
2. XNode’s Use of Personal Data
XNode may use your Personal Data for purposes including the following:
Aggregated Personal Data.
3. Sharing, Transfer and Disclosure of Personal Data
1) SHARING YOUR PERSONAL DATA
We will not share your Personal Data with companies, organizations or individuals other than XNode and its affiliates, except in the following circumstances:
We may anonymize your Personal Data so that you are not individually identified, and provide that information to our partners. We may also provide aggregate usage information to our partners, who may use such information to understand how often and in what ways people use the Service, so that they, too, can provide you with an optimal online experience. However, we will never disclose aggregate information to any third party in a manner that would identify you personally, as an individual.
Except for the purposes described above, we will not transfer your Personal Data to any company, organization or individual, except in the following circumstances:
3) PUBLIC DISCLOSURE
We will disclose your Personal Data to the public only under the following circumstances:
Pursuant to applicable laws, sharing and transfer of aggregated data which cannot be recovered by the recipient to re-identify individual Personal Data does not constitute sharing, transfer and disclosure of Personal Data, and therefore it may be stored and processed without notice to you and without your consent.
4. User Rights to Personal Data
1) THE RIGHT TO ACCESS AND CORRECT PERSONAL DATA
If you are a registered user of the Service, we provide you with tools to access or modify your Personal Data and other profile information.
2) THE RIGHT TO REQUEST THAT YOUR PERSONAL INFORMATION BE TRANSFERRED
Subject to the limitations of applicable laws, where processing Personal Data is necessary for entering into or performing our obligations under a contract with you or is processed with your consent, you may request that your Personal Data be transferred to you or another designated party (where technically feasible).
3) THE RIGHT TO CHANGE YOUR AUTHORIZATION SCOPE OR WITHDRAW YOUR AUTHORIZATION
To the extent you have authorized us to collect and process your Personal Data, you may withdraw that authorization by deleting information, turning off device functions, or changing privacy settings on our website or in our software. You may also stop using the Service so that we cannot continue collecting your Personal Data. Please note that some parts of the Service may not function properly if you remove our authorization to collect your Personal Data. For any Personal Data that you have authorized the Organizers directly, you should contact the Organizers to withdraw such authorization.
We take various precautions to protect your Personal Data from loss, misappropriation and misuse, and from being accessed, disclosed, modified or destroyed without permission. In order to ensure the safety of your Personal Data, we have established strict information security provisions and procedures to protect your Personal Data.
In the event of any Personal Data security breach, we will, in accordance with the requirements of applicable laws and in all cases within 30 days, notify you of the basic information and possible consequences of such security breach, actions we have taken or will take in response to the breach, suggestions on how you may prevent and reduce risks on your own, and actions we will take on your behalf. We will notify you of the relevant information through email, letter, phone, or push notification, or by publishing an announcement to our websites. Any such notice will be issued in compliance with all applicable laws.
6. International Transfers of Personal Data
1) THE LOCATION OF YOUR DATA
2) CALIFORNIA RESIDENTS
Under California Civil Code Sections 1798.83-1798.84, California residents may request a notice identifying the categories of Personal Data that we share with our affiliates and/or third parties for marketing purposes, and be provided with contact information for such affiliates and/or third parties. If you are a California resident and would like a copy of this notice, please submit a written request to: firstname.lastname@example.org.
3) EEA, SWITZERLAND AND UK ONLY
EU data protection law distinguishes between organizations that process Personal Data for their own purposes (known as "data controllers") and organizations that process personal data on behalf of other organizations or individuals (known as "data processors"). If you have any questions or complaints about how your Personal Data is handled, these should always be directed to the relevant data controller since they are the ones with primary responsibility for your Personal Data.
XNode may act as either a data controller or a data processor with respect to your Personal Data, depending on the circumstances. We will be a data controller of any information you submit to us in order to create a User account or an Organizer account. However, once a User submits Personal Data to an Organizer in conjunction with use of the Services, XNode becomes a data processor with respect to the Organizer Collected Personal Data.
We do not knowingly collect or solicit personal information from anyone under the age of 14. If you are under 14, please do not attempt to register for the Service or send any personal information about yourself to us. If we learn that we have collected personal information from a child under 14, we will delete that information as quickly as possible. If you believe that a child under 14 may have provided us with personal information, please contact us at email@example.com.
9. Contacting Us
If you have any questions or concerns regarding our privacy policies, please send us a detailed message by email to firstname.lastname@example.org.
10. Requests to Delete Personal Data and other issues
1) THE RIGHT TO DELETE YOUR PERSONAL DATA
2) RETENTION OF PERSONAL DATA
Even after you remove information from your profile or delete your account, Personal Data may be retained by us on back-up servers indefinitely, subject to and in compliance with applicable laws. We may retain your Personal Data for a period of time consistent with the original purpose of collection. We determine the appropriate retention period for Personal Data on the basis of the amount, nature and sensitivity of your Personal Data processed, the potential risk of harm from unauthorized use or disclosure of your Personal Data and whether we can achieve the purposes of the processing through other means, as well as on the basis of applicable legal requirements (such as applicable statutes of limitation).
We may also indefinitely retain and use any aggregated data derived from or incorporating your Personal Data, but not in a manner that would identify you personally.