General Data Protection Regulation

Last Updated:

Data Processing Agreement:

CUSTOMER/USER IS THE DATA CONTROLLER AND EVENTKINGDOM IS THE DATA PROCESSOR.

General:

EventKingdom GmbH (EventKingdom) is not in the business of sharing or selling your information. Especially your recipients and their data usage are not tracked for marketing or advertisement purposes in any way. We consider this information to be a vital part of our relationship with you.

Numerous customers of EventKingdom collect, process and use personal data within the meaning of the GDPR. Art. 28 of the EU General Data Protection Regulation (GDPR) obliges these customers, in the case of the collection, processing or use of this data by contractually bound contractors (contracted service providers), to comply with Art. 28 GDPR with the requirements stated therein to commit in writing. EventKingdom offers its customers numerous services (invitation mailing online, guest management, check in services, paper cards, tickets, etc.). It takes the view that the majority of these services offered do not involve the collection, processing or use of personal data within the meaning of the GDPR; Incidentally, in the majority of these services, offered access to such personal data by employees of EventKingdom is excluded. Without abandoning this legal view, EventKingdom complies fully with Art 28 GDPR and is prepared to avoid legal uncertainty in favor of its customers, as a contractor to additionally conclude a fee-based agreement in writing.

Please read this Privacy Policy carefully when using our services or transacting business with us. By using our site, you are accepting the practices described in this Privacy Policy.

If you have any questions, please refer to the end of this Privacy Policy for information on how to contact us.

Background:

Data Controller and the Data Processor have entered into a separate SERVICE agreement known as Services Agreement, beginning with the registration at the Data Processor website TO PROVIDE ONLINE INVITATIONS, SAVE THE DATE CARDS, CARDS, GUEST MANAGEMENT & CHECK IN SERVICES known as Services.

Data Protection:

Definitions in this Agreement:

Data means all Personal Data collected, generated or otherwise processed by the Supplier as a result of, or in connection with, the provision of the Services.

Data Protection Laws: means:

Data Subject means an individual who is the subject of personal data.

EEA means the European Economic Area.

Losses means costs, claims, demands, actions, awards, judgments, settlements, expenses, liabilities, damages and losses (including all interest, fines, penalties, management time and legal and other professional costs and expenses).

Personal Data has the meaning given to it under the Data Protection Laws.

Records means the records referred to in Clause 1.7.1.

Services means the provision of online invitations, save the date cards, cards, guest management and check in services.

Services Agreement is described in background.

Sub Processor has the meaning set out in Clause 1.4.1.

Supervisory Authority means any data protection authority with jurisdiction over the processing of the Data.

How we protect your Data:

Data Processing:

Transfers Outside of the EEA

Sub Processors

Information Provision and Data Protection Audits

Dealings with Supervisory Authorities

Records

Data Subjects

On request, the Data Processor shall take all necessary action and provide Data Controller with all reasonable assistance necessary for Data Controller to comply with Data Controller’s obligations under the Data Protection Laws in relation to:

Data Breaches

Return or Destruction of Data

the Data Processor shall, at Data Controller’s discretion, destroy or return all Data to Data Controller on termination of this Agreement, and shall destroy or delete all copies it holds of the Data, unless relevant local law to which the Data Processor is subject requires that Data to be retained.

Governing Law

If it is or becomes a requirement that, under the Data Protection Laws or other Applicable Laws, Clause 1 must be governed by the laws of a member state of the European Union.

Warranties

Indemnity

The Data Processor shall on demand indemnify Data Controller from and against all Losses incurred by Data Controller or any member of its Group or any of their respective, its employees, officers, agents and contractors as a result of any breach by the Data Processor or any entity or individual appointed by the Data Processor to carry out its obligations of Clause 1.

Priority

The Data Processor shall comply with this Agreement in addition to its obligations under any other contract with the Data Controller (whether currently in force or entered into in the future). Where there is any inconsistency between the two, in relation to data protection law and/or confidential information this Agreement shall prevail, unless the Data Controller notifies the Data Processor otherwise in writing.

Schedule

DATA PROCESSING

Type of Data to be Processed

The type of data to be processed results from the Service Agreement

or

The type of data to be processed is the execution of the following services or tasks by Data Controller – invitations, save the date cards, cards and guest management & check in services.

Categories of Data Subject whose Data will be Processed

The Categories of Data Subjects comprise:

Nature and Purpose of Processing

To create online invitations, save the date cards and cards for a wide variety of events. To use guest management and check in services for a wide variety of events.

Duration of Processing

The Services Agreement is authorised for an unlimited period and can be cancelled by either Party with a notice period of one week. This does not prejudice the right to termination of the contract without notice in accordance with the Services Agreement. This does not change the billing agreements entered by purchasing a service.

Non-Identifiable information:

We use various technologies to collect information from your computer and about your activities on our site.

With whom we share your information:

EventKingdom is not in the business of sharing or selling your information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your personal data with:

Third-party websites:

This Data Protection Policy applies only to EventKingdom. The site may contain links to third party websites which do not operate under this Data Protection Policy. These third-party websites may independently solicit and collect information, including personal information, from you and, in some instances, provide us with information about your activities on those websites. We suggest contacting those websites directly for information on their Data Protection policies.

How you can access your information

If you have an online account at EventKingdom, you can review and update your personal data by logging into your account. You can also review and update your personal data by contacting us. Please see the bottom of this Data Protection Policy to contact us.

If you have an online account with us, you may close your account at any time by contacting us via the "contact" link at the bottom of each page. After you close your account, you will not be able to sign in to our site or access any of your personal data. You can of course open a new account at any time. If you close your account, we may still retain certain information associated with your account for analytical purposes and recordkeeping integrity, as well as to prevent fraud, collect any fees owed, enforce our Terms of Service, take actions we deem necessary to protect the integrity of our web site or our users, or take other actions otherwise permitted by law. In addition, if certain information has already been provided to third parties as described in this Data Protection Policy, retention of that information will be subject to those third parties' policies.

Your choices:

You can use the site without providing any personal data when you receive EventKingdom products or other correspondence. If you choose not to provide any personal data, you will not be able to use certain EventKingdom services, such as sending EventKingdom products or other correspondence.

Children's privacy:

EventKingdom is a general audience site, and we do not knowingly collect personal information from children under the age of 13. If you are under the age of 13, please refrain from submitting any personal data through the site.

Public data:

This Data Protection Policy does not apply to any personal data collected by EventKingdom other than personal data collected through the site. This Data Protection Policy shall not apply to any unsolicited information you provide to EventKingdom through this site or through any other means. This includes, but is not limited to, information posted to any public/open areas of the site, any ideas for new products or modifications to existing products, and other unsolicited submissions. All unsolicited Information shall be deemed to be non-confidential and EventKingdom shall be free to reproduce, use, disclose, and distribute such unsolicited information to others without limitation or attribution.

Opt-out Policy

Every recipient of sendings via EventKingdom has the right to opt-out of such sendings. Each sending to recipients contains an unsubscribe link in the bottom left corner of the email. Each recipient can click on the unsubscribe link and unsubscribe from the sender of the email. If a recipient does this, sendings from this sender will no more be sent to the recipient's email address and marked accordingly in the recipient list.

Changes to Data Protection and signed downloadable version

It may seem necessary to occasionally update this Data Protection Policy to reflect changes in our site and business. EventKingdom therefore reserves the right to modify this Data Protection Policy at any time. When changes to this Data Protection Policy are made, we will revise the "last updated" date at the top of this Data Protection Policy. If we make any material changes in the way we collect, use, and/or share your personal information, we will notify you by sending an email to the email address you provided us in your account. We recommend that you check our Data Protection Policy from time to time to inform yourself of any changes in this Data Protection Policy and especially before you profide any personal data. If you wish to download a digitally signed version (no charge) please go to ACCOUNT/SETTINGS.

How to contact us and further questions

If you have any questions about our Data Protection Policy please contact us below. If you need a signed version of our Data Protection Policy please go to ACCOUNT/SETTINGS) where you can request a signed version at no extra cost. You can also send us your own General Data Protection Agreement. Signing a customer Data Protection Agreement is included for Enterprise plan customers. A one time payment of 99,- EUR is requested from Standard or Professional plan customers. Please feel free to contact us at:

EventKingdom GmbH
Eichenallee 32
14050 Berlin
+49 30 91565745
help@eventkingdom.com