Policy key definitions:
"I", "our", "us", "we" or “GES” refers to the business, Global Event Services Ltd.
"you", "the user" refer to the person(s) using this website.
GDPR means General Data Protection Act.
PECR means Privacy & Electronic Communications Regulation.
ICO means Information Commissioner's Office.
Cookies mean small files stored on a users computer or device
PROCESSING OF YOUR PERSONAL DATA
Under the GDPR (General Data Protection Regulation) we may control and process any personal information about you electronically. We are registered with the ICO under the Data Protection Register, our registration number is: Z8263249.
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). We may collect, use, store and transfer different kinds of personal data about you which we have grouped together follows:
• Identity Data includes first name, maiden name, last name, username or similar identifier, marital status, title, date of birth and gender.
• Contact Data includes billing address, delivery address, email address and telephone numbers.
• Financial Data includes bank account and payment card details.
• Transaction Data includes details about payments to and from you and details of events you attend and associated services we provided to you.
• Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug in types and versions, operating system and platform and other technology on the devices you use to access our website.
• Profile Data Includes your username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses.
• Usage Data includes information about how you use our website and services.
• Marketing and Communications Data
includes your preferences in receiving marketing from us and our third parties and your communication preferences.
If, as determined by us, the lawful basis upon which we process your personal information changes, we will notify you about the change and any new lawful basis to be used if required. We shall stop processing your personal information if the lawful basis used is no longer relevant.
YOUR INDIVIDUAL RIGHTS
Under the GDPR your rights are as follows. You can read more about your rights in details here;
the right to be informed;
the right of access;
the right to rectification;
the right to erasure;
the right to restrict processing;
the right to data portability;
the right to object; and
the right not to be subject to automated decision-making including profiling.
You also have the right to complain to the ICO at www.ico.org.uk if you feel there is a problem with the way we are handling your data. We handle subject access requests in accordance with the GDPR.
WHAT WE DO
Global Event Services Ltd. organises and runs many types of events for our clients. These include but are not limited to: Conferences, Congresses, Meetings, Incentives, Product Launches & Medical Education Meetings. During the course of these events we may be required to collect personal data.
Global Event Services does collect this personal data for own marketing use and only collects personal data when a formal contract exists between the client and GES. The personal data we collect is purpose limited and minimised and we will not ask for anything we do not require for the event to take place.
WHAT WE DON’T DO
We do not use your data for the purpose of data profiling and we will not sell or lease your personal information to third parties unless we are required by law to do so.
In specific circumstances we can collect and process your data with your consent, for example when you are asked to provide personal data for a registration form of an event which we are organising on behalf of a client, this consent can only be given by an affirmative action indicated on the appropriate page, this will clearly state the agreement to personal data being processed.
THE WAYS IN WHICH WE USE YOUR DATA
Below you will see a description of all the ways we may use your personal data, and which of the legal bases we rely on to do so, in addition to your consent where this is given.
Activity Type of Data Lawful basis for processing
To record you as a participant of an event Identity & Contact Performance of our contract to you
and our client
Providing services to you Identity, Contact, Performance of our contract to you
Financial, Usage Transaction and our client
To administer and protect our business Identity, Contact, Necessary for running our
and this website administration Technical business, provision of administration,
IT Services, to prevent fraud & to comply
with legal requirements
To use data analytics to improve our Technical, Usage Necessary to develop our business
customer relationships website, products or services, marketing &
inform our marketing strategy
INTERNATIONAL DATA TRANSFER
If we are required to transfer your personal data out of the EEA, we will first make sure that we are fully satisfied before doing so that a similar degree of protection of data is required by the country in and we will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission. For further details, see European Commission: Adequacy of the protection of personal data in non-EU countries.
Please contact us if you would like further information on the specific mechanism used by us when transferring your personal data out of the EEA.
Some cookies are required to use the full functionality of this website.
DATA SECURITY & PROTECTION
We ensure the security of any personal information we hold by using secure and encrypted data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.
We will only retain data for as long as is required to fulfil the purposes that it was required for including of satisfying any legal, accounting or reporting requirements.
All data will be retained for a period of 5 years from the date of completion of an event that has been attended.
RESOURCES & FURTHER INFORMATION
Privacy Notice Policy Base: v.4.0 May 2018