We take data privacy seriously and comply with all relevant laws.
Fully GDPR compliant and complies with privacy laws.
Attendees have the option to opt out of being tracked. You have control over your own data at all time. You can also leave the beacon at the entrance.
The solution enhances the event experience for attendees - not to invade their privacy. Making it easier to connect with relevant people and companies.
Attendee data is only used for the intended purpose of improving the event experience. Will only use it for the intended purpose of improving the event experience. All user data is deleted one day after the event has ended.
Only existing badge data is visible, and no additional information is shown.
Scan4People takes privacy and GDPR questions very seriously. This is why we have all aspects of our application reviewed by a leading Legal Counsel in EU GDPR law with IAPP Certification in Data Privacy (GDPR). Our solution is fully compliant with EU privacy law. There are three distinct users of the application:
The Scan4People app may process a combination the following for the "Beacon user":
The Scan4People app may process a combination the following for the "Scanning user":
The Scan4People app may process a combination the following for the "Admin user":
Why do we use this data:
We use your personal data primarily only to the extent that it is necessary for the purposes of conducting our business, and only for the purpose for which it was originally collected and any other permissible, related purpose. We may use your personal data for a number of reasons:
Scan4People adheres to the principle of purpose limitation and only processes data for purposes related to those specified when personal data were collected. Processing for secondary purposes only takes place where we have a legal basis such as the consent of the data subject. To assess our adherence to this principle Scan4People considers the relationship between the purposes for which the data have been collected and the purposes of further processing, the context in which the data have been collected, the reasonable expectations of the data subjects, the nature of the data and the impact of the further processing on the data subjects in full compliance with current GDPR law.
Our employees have access to and process personal data based upon the "need to know" principle. In other words they have access to personal data where this is necessary in order to do their job. We regularly check who has access to our systems and data.
We do not sell personal data.
Data may be exported to further countries in line with legal requirements and the required measures to ensure protection of the data. This is particularly the case where personal data needs to be processed by internal services teams or by third parties in other Scan4People locations and outside the EU or Switzerland. We make sure adequate safeguards such as binding contracts are in place with those internal and external parties.
We keep your personal information in compliance with applicable retention periods and for as long as necessary for the purpose for which it was collected, and to comply with our legal and regulatory requirements. This may include keeping your information for a reasonable period of time after your relationship with us or our client has ended. We securely destroy personal data when they are no longer needed for the relevant purposes and its retention period has expired. In some circumstances we retain aggregated or anonymised data which can no longer be associated with you and is therefore not considered personal data. If you need more information about the retention or deletion of your personal data, please see also the section on your privacy rights below and contact us using the details provided at the end of this document.
Your privacy rights
We recognise that you may have rights with regard to our processing of your data. While the nature and extent of these rights will differ from location to location, we have processes in place that allow us to respond in a timely manner to any valid request to:
If you are unhappy with how we process your personal data, you may have the right to complain to a data protection regulator or supervisory authority. We encourage you to contact us first so we can address your concerns.
We have instituted a comprehensive, global data protection compliance framework in order to fulfill our responsibilities to protect personal data and to respect privacy rights in compliance with data protection and privacy laws and regulations around the world, including but not limited to the Swiss Data Protection Act, the European Union’s General Data Protection Regulation (GDPR), UK Data Protection Act.
Scan4people is fully compliant with the General Data Protection Regulation (GDPR) and takes the protection and privacy of our users' personal data very seriously. All data collected and stored on our Application is securely encrypted and stored in an encrypted database in Amazon Web Services (AWS). We assure that no personal data such as email addresses or phone numbers will be shared with any third party, or with other users of the Application. Additionally, we would like to assure that Bluetooth Beacons used in the Application do not carry or transmit any personal data. Furthermore, we would like to assure that all database and application data of attendees will be deleted one day after the event has finished. We are committed to ensuring that all personal data is handled and stored in accordance with the highest standards of security and data protection.
In addition to the measures outlined above, we also respect the right of attendees to opt out of using or carrying the beacon. Attendees have the option to return the beacon to the conference at any time.
We also understand that attendees may want to have control over their personal data stored in the Application and in our encrypted database in AWS. Therefore, we allow any attendee to request the deletion of their personal data stored in our system at any time. To do so, they only have to send an email to info@scan4people.com requesting the deletion of their personal data. We will process the request and delete the data promptly. We are committed to providing all attendees with full control over their personal data and respecting their privacy choices.
About AWS: At Amazon, security remains the highest priority, AWS constantly continues to innovate and invest in a high bar for security and compliance across all global operations. Amazon’s industry-leading functionality provides the foundation for our long list of internationally-recognized certifications and accreditations, demonstrating compliance with rigorous international standards, such as ISO 27001 for technical measures, ISO 27017 for cloud security, ISO 27018 for cloud privacy, SOC 1, SOC 2 and SOC 3, PCI DSS Level 1, and EU-specific certifications such as BSI’s Common Cloud Computing Controls Catalogue (C5). AWS continues to pursue the certifications to assist the customers.
Copyright © 2024 Scan4People – Alle Rechte vorbehalten.