OutSavvy Ltd (we) are committed to protecting and respecting the privacy of both our customers and event organisers (you) and to make sure that we comply with data privacy law obligations in the EU (primarily, the Data Protection Directive 95/46/EC (as implemented into the national laws of EU Member States) and the General Data Protection Regulation ("GDPR") beginning May 25th of 2018)
OutSavvy has updated our privacy policy to comply with the GDPR obligations and have reminded our event partners of their obligations to comply.
OUTSAVVY DATA PROCESSING
OutSavvy acts as both a data controller and data processor for our clients and customers :
OutSavvy as a data controller - OutSavvy acts as a data controller when an event partner uploads their information to create and sell tickets to an event. We also act as a data controller for customers who upload their personal data when registering on OutSavvy for an account or receiving marketing information. OutSavvy will be a data controller over the personal data provided to OutSavvy by that customer. OutSavvy will also act as a data controller for any information captured during the ticket purchase process on behalf of our event partners.
OutSavvy as a data processor - OutSavvy acts as a data processor capturing information during the checkout process for our Partners as part of the ticketing service. This includes processing of payments, sending relevant event emails and providing event tools to help gain insight into the effective running of partner events.
OUTSAVVY PARTNER EMAIL TOOLS
We offer the ability for partners to email their attendees and existing customers through the platform. Event related messaging can be sent for the specific event an attendee has signed up for. Any marketing related messaging requires an opt-in from the customer. OutSavvy is not responsible for obtaining the opt-in for our partners.
DELETION OF DATA
OutSavvy will comply with any data deletion requests. As such an event partner may see a blank name in their event data but any financial information will remain but not associated to a particular user.
If a partner receives a request to remove user data, they must forward the request onto support@outsavvy.com and OutSavvy will confirm the request with the customer and remove data as required.
DATA INCIDENTS
OutSavvy acting as the data processor and controller will contact customers directly over data accessed in an unauthorised manner. We will notify the customer directly rather than the event partner.
DATA STORAGE
OutSavvy holds all data in the United Kingdom within the EU.
HOW DOES OUTSAVVY SECURE PERSONAL DATA
OutSavvy is committed to keeping your personal data safe. OutSavvy has implemented numerous security measures on our data servers. Any sensitive data such as passwords are encrypted within our system. All transactional data including stored cards is never held on our servers. We partner with Square payments to process and store this data. Please find a link to their privacy policy here
WHAT ELSE IS OUTSAVVY DOING
Data protection officer - OutSavy has designated a data protection officer to oversee all aspects of GDPR and ensure our systems and staff are in compliance with the policy.
Last Updated: May 2021