Twisted Edwards z.s. Privacy Policy
This Privacy Policy is effective as of 27 January 2024.
1. Who we are
Twisted Edwards z.s. (“we” or “us”) is a non-profit association, registered in the Czech Republic. We are primarily responsible for the planning, coordination, and production of events, workshops, and training sessions. We are data controllers, as defined by Regulation (EU) 2016/679 (GDPR).
For further information, we can be contacted at orga@twed.org. We can also be contacted using the details below.
2. Scope of this Privacy Policy
This Privacy Policy aims at informing website visitors, volunteers, event participants, sponsors, and other stakeholders about what data we collect and how it is processed. We are committed to processing personal data responsibly, securely, and proportionally throughout our activities, and wish to maintain respect for your data protection, and privacy, rights throughout our activities.
3. Personal data we collect
We collect personal data directly from individuals in a variety of ways, including:
Website visitors
We collect aggregated data regarding usage and navigation of our website, including how you browse the site, the number of clicks you make, and the length of time you spend on the site.
Website registrants
When registering on our website, we collect data related to your account and interactions in forums such as name, email, profile pictures, text, any images you willingly upload, and IP addresses.
Event participants
We collect payment related data for ticket sales, including names, emails, and payment details (transaction information and/or credit card details).
When registering on the site, either as a user or potential speaker/volunteer, we collect data such as name, email, and pseudonym.
We collect data related to your application such as code, proposal text, documents, or any other files you willingly upload. This may include (if you upload one) a profile picture.
We only process this personal data in a way that is compatible with, and relevant to, the purpose for which it was collected.
4. Why we collect this data
We collect the data outlined above to provide services concerning your interaction and involvement with us.
For example, we may use your contact information to respond to questions, inform you about changes to our services, events, or communicate about your contributions and resolve technical issues you encounter.
We may also use information provided to us about your proposal to conduct assessments, create event programmes, or contact you with queries and questions regarding your talk or workshop.
We use payment related information to ensure that you receive your ticket in an ordinary manner, as is expected from a ticket sales service.
We use your interactions with our forums to ensure you are able to communicate with us, and other members of our community.
5. Legal basis for collection and processing
We rely on a combination of legal basis for the collection of your data. Primarily, the legal basis we rely on are detailed within the GDPR, Article 6. To be more specific, we rely on:
- GDPR Art. 6(1)(f) (legitimate interests).
- GDPR Art. 6(1)(b) (performance of a contract).
- Where the above do not apply a. GDPR Art 6(1)(a) (consent).
If we rely on consent, we will explicitly ask you for your permission to collect and process your data.
6. Data shared with third parties
We do not sell, trade, or otherwise transfer personal data to third parties.
We use an email delivery service offered by Mailjet to send out automated transactional emails to users for password resets, order confirmations, ticket delivery, proposal submission confirmations, and event update notifications. Mailjet complies with EU data protection laws, including the GDPR.
7. How we protect personal data
We have put appropriate technical and organisational security policies and procedures in place to protect personal data (including sensitive personal data) from loss, misuse, alteration or destruction.
We aim to ensure that access to your personal data is password protected.
We encrypt all data stored at our central location and data is restricted only to those who need to access it. Those individuals who have access to the data are required to maintain the confidentiality of such information.
We install and regularly update all security and anti-virus software in use on all of our systems.
Please be aware that the transmission of data via the Internet is not completely secure. Whilst we do our best to try to protect the security of your personal data, we cannot ensure or guarantee the security of your data transmitted to our site.
8. Cookies
We do not use cookies on our website or services.
9. Marketing
We would like to send you emails regarding event marketing. We will ask your permission to do so. If you have agreed to receive these, you may always opt out. You have the right at any time to stop us from contacting you for information or marketing purposes
10. Collection of information from minors
We do not knowingly collect data from, or market to children under 18 years of age. By using our services, you represent that you are at least 18, or that you are the parent or guardian of a minor and give explicit consent to the use of our services.
11. Retention of personal data
We retain the data we collect for as long as we need to provide services to you., or as required to comply with our legal obligations. After such time, we will delete, de-identify, or aggregate this information within 30 days.
If you have an account on our services, we will retain your data for as long as your account is active or as needed to perform our contractual obligations, comply with legal obligations, resolve disputes, preserve legal rights, or enforce our agreements.
We will delete, de-identify, or aggregate this information to the extent possible once it is no longer necessary to fulfil the purposes for which it was collected.
12. Your data protection rights
Subject to certain exceptions and limitations, you may have the right:
- to request information regarding the processing of your personal data by us;
- to obtain the rectification of any inaccurate personal data stored by us;
- to obtain the erasure of your personal data stored by us;
- to obtain the restriction of processing of your personal data;
- to receive a copy of your personal data in a structured, commonly used and machine-readable format, or to demand transmission to another controller;
- to withdraw your consent once given to us at any time.
13. Privacy policies of other websites
This privacy policy applies only to our website, and the services we provide to you. If you click on a link to another website, you should read their privacy policy.
14. Changes to our Privacy Policy
If we decide to change our Privacy Policy, we will post changes on this page. We encourage you to visit this page periodically to learn of any updates. Your continued use of our services after an updated Privacy Policy is posted constitutes your consent to the revised Privacy Policy.