Event HAVEN

Privacy Notice

Last updated: May 12, 2026

This Privacy Notice explains how HAVEN Productions, LLC ("Event HAVEN", "we") collects, uses, shares and protects personal data when you use our websites, mobile experiences and organizer backend (the "Service"). It applies to attendees, organizers, vendors, sponsors and visitors. Where an event organizer uses the Service to manage their event, that organizer is the controller of attendee data and we act as a processor on their behalf.

1. Data we collect

  • Account data: name, email address, password hash, profile photo, role.
  • Event data: events you organize or attend, schedules, favorites, vendor and sponsor listings.
  • Communications: invitations, transactional emails, support messages.
  • Usage data: device type, browser, IP address, pages visited, approximate location derived from IP, error logs.
  • Cookies and similar: see our Cookie Notice.

2. How we use data

  • Provide, secure and improve the Service (including authentication, abuse prevention and analytics).
  • Send transactional emails such as invitations, password resets and security notices.
  • Comply with legal obligations and enforce our Terms and Acceptable Use Policy.
  • With your consent, send product updates or marketing. You can withdraw consent at any time.

3. Legal bases (GDPR / UK GDPR)

We rely on the following legal bases:

  • Contract: to provide the Service you requested.
  • Legitimate interests: to secure the Service, prevent fraud and improve features.
  • Consent: for non-essential cookies and marketing communications.
  • Legal obligation: to comply with tax, accounting and law-enforcement requirements.

4. Sharing

We share personal data only with:

  • Event organizers when you attend or interact with their event.
  • Service providers (sub-processors) such as our cloud hosting, email delivery, mapping and analytics providers, under written data-processing terms.
  • Authorities when required by law or to protect rights, safety or property.
  • Successors in connection with a merger, acquisition or asset sale, with notice to you.

We do not sell personal data and do not share it for cross-context behavioral advertising.

5. International transfers

We may transfer personal data to countries outside your own. Where we transfer data from the EEA, UK or Switzerland to a country without an adequacy decision, we use Standard Contractual Clauses and appropriate safeguards.

6. Retention

We keep account data for as long as your account is active and for a reasonable period afterward to comply with legal obligations, resolve disputes and enforce agreements. Event content is retained according to the organizer's instructions. Server logs are retained for up to 90 days.

7. Your rights

Depending on where you live, you may have the right to access, correct, delete, port or restrict processing of your personal data, to object to certain processing, and to lodge a complaint with your local supervisory authority. California residents have additional rights under the CCPA/CPRA, including the right to know, delete, correct and limit use of sensitive personal information. To exercise any of these rights, email privacy@event-haven.com. We will respond within the timeframes required by law.

8. Security

We apply administrative, technical and physical safeguards designed to protect personal data, including encryption in transit, role-based access control, audit logging and least-privilege database policies. No system is perfectly secure; please report vulnerabilities to security@event-haven.com.

9. Children

The Service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us and we will delete it.

10. Changes

We will post updates here and, for material changes, notify you by email or in-product notice at least 14 days before they take effect.

11. Contact

Privacy questions: privacy@event-haven.com. For EU/UK data subjects, our representative can be contacted at the same address.