Privacy Policy

Sync Technologies Inc. ("Sync Event," "we," "us," or "our") operates the Sync Event platform, including our event registration, badge printing, mobile event app, sponsor & exhibitor tools, and on-site technology services (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use our Services as an event organizer, attendee, sponsor, exhibitor, or website visitor.

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of the Services.

We comply with applicable data protection laws, including the California Consumer Privacy Act (CCPA/CPRA) and, where applicable, the General Data Protection Regulation (GDPR).

We collect information in three ways: information you provide directly, information collected automatically, and information from third parties.

Information You Provide Directly

• Account & Registration Data: Name, email address, phone number, organization name, job title, and password when you create an account or register for an event.
• Attendee Profile Data: Any additional information collected during event registration, including custom questions defined by the event organizer (e.g., dietary preferences, session selections, accessibility needs).
• Payment Information: Billing name, billing address, and payment card details. Card numbers are processed directly by our payment processor (Stripe) and are never stored on Sync Event servers.
• Communications: Messages, support requests, feedback, and survey responses you send to us.
• Badge & Check-In Data: Badge name, title, company, and any custom fields configured by the organizer for on-site badge printing and kiosk check-in.

Information Collected Automatically

• Usage Data: Pages visited, features used, time spent, click paths, and other interactions with the platform.
• Device & Technical Data: IP address, browser type, operating system, device identifiers, and referring URLs.
• Check-In & Scanning Data: Badge scan timestamps, kiosk interactions, and session attendance records captured during live events.
• Mobile App Data: Push notification tokens, app version, and in-app activity when you use the Sync Event mobile app.

Information from Third Parties

• Payment Processors: Stripe may share transaction status and limited billing information to confirm payment completion.
• Analytics Providers: Aggregated, anonymized analytics from tools we use to understand platform performance.
• Event Organizers: Organizers may import attendee lists or provide additional profile data on behalf of their attendees.

We use the information we collect for the following purposes:

• Providing the Services: Processing event registrations, printing badges, enabling check-in, powering the mobile app, and delivering sponsor & exhibitor tools.
• Account Management: Creating and managing your account, authenticating your identity, and providing customer support.
• Payment Processing: Facilitating ticket purchases and direct deposits to event organizers via Stripe Connect.
• Communications: Sending event confirmation emails, reminders, updates, and SMS notifications as configured by the event organizer or requested by you.
• Analytics & Reporting: Providing organizers with attendee demographics, ticket sales data, check-in analytics, and other event metrics.
• Platform Improvement: Understanding how our Services are used to improve features, fix bugs, and develop new capabilities.
• Legal Compliance: Complying with applicable laws, regulations, and legal processes, and enforcing our Terms & Conditions.
• Security: Detecting, preventing, and responding to fraud, abuse, and security incidents.

For GDPR purposes: Our legal bases for processing include performance of a contract (providing the Services), legitimate interests (platform security and improvement), legal obligation, and consent (where explicitly obtained, such as for marketing communications).

We do not sell your personal information. We share information only in the following circumstances:

• With Event Organizers: Attendee registration data, check-in records, and analytics are shared with the event organizer who collected that data. Organizers are responsible for their own use of attendee data under their own privacy policies.
• With Sponsors & Exhibitors (VIP Upgrade): When an attendee scans a sponsor's badge scanner or visits a virtual booth, the attendee's name, title, company, and contact information are shared with that sponsor as a captured lead. Attendees are informed of this at registration.
• With Service Providers: We share data with trusted vendors who help us operate the platform, including Stripe (payments), cloud hosting providers, email delivery services, and SMS providers. These vendors are contractually bound to protect your data and use it only for the services they provide to us.
• For Legal Reasons: We may disclose information if required by law, court order, or governmental authority, or to protect the rights, property, or safety of Sync Technologies Inc., our users, or the public.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information is transferred and becomes subject to a different privacy policy.

Sync Event uses Stripe Connect to process all payments. When you purchase a ticket or registration, your payment card information is submitted directly to Stripe and is never transmitted to or stored on Sync Event servers. Stripe is a PCI DSS Level 1 certified payment processor.

Ticket sales proceeds are deposited directly into the event organizer's connected Stripe account. Sync Event does not charge a per-ticket percentage fee. Our pricing is transparent and flat-rate, ensuring organizers keep more of their revenue.

For more information on how Stripe handles your payment data, please review the Stripe Privacy Policy.

We use cookies and similar tracking technologies to operate and improve the Services. Cookies are small text files stored on your device that help us recognize you and remember your preferences.

Types of Cookies We Use

• Strictly Necessary Cookies: Required for the platform to function, including authentication sessions and security tokens. These cannot be disabled.
• Functional Cookies: Remember your preferences (e.g., language, saved event settings) to improve your experience.
• Analytics Cookies: Help us understand how users interact with the platform so we can improve it. Data collected is aggregated and anonymized.
• Marketing Cookies: Used to deliver relevant advertising and measure campaign effectiveness. You can opt out of these via your browser settings or our cookie consent banner.

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Services. A cookie consent banner is displayed on your first visit, allowing you to accept or decline non-essential cookies.

Depending on your location, you may have the following rights regarding your personal information:

California Residents (CCPA/CPRA)

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you.
• Right to Delete: Request deletion of your personal information, subject to certain exceptions.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt-Out: Opt out of the sale or sharing of your personal information. We do not sell personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

EEA/UK Residents (GDPR)

• Right of Access: Obtain a copy of your personal data.
• Right to Rectification: Correct inaccurate or incomplete data.
• Right to Erasure ("Right to be Forgotten"): Request deletion of your data where there is no compelling reason for continued processing.
• Right to Restrict Processing: Ask us to limit how we use your data.
• Right to Data Portability: Receive your data in a structured, machine-readable format.
• Right to Object: Object to processing based on legitimate interests or for direct marketing.
• Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, please contact us at [email protected]. We will respond within 45 days (CCPA) or 30 days (GDPR) of receiving a verifiable request.

We retain personal information for as long as necessary to provide the Services and fulfill the purposes described in this policy, unless a longer retention period is required by law.

• Account Data: Retained for the duration of your account and for up to 3 years after account closure for legal and business purposes.
• Event & Attendee Data: Retained for up to 2 years after the event date, after which it is anonymized or deleted unless the organizer requests earlier deletion.
• Payment Records: Retained for 7 years as required by financial regulations.
• Analytics Data: Aggregated, anonymized analytics data may be retained indefinitely.

You may request deletion of your personal information at any time by contacting us. We will honor deletion requests within the timeframes required by applicable law.

We implement industry-standard administrative, technical, and physical security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

• TLS/SSL encryption for all data transmitted between your device and our servers.
• Encrypted storage of sensitive data at rest.
• Role-based access controls limiting employee access to personal data on a need-to-know basis.
• Regular security assessments and penetration testing.
• PCI DSS-compliant payment processing via Stripe.

While we take reasonable steps to protect your information, no security system is impenetrable. In the event of a data breach that affects your rights and freedoms, we will notify affected users and relevant authorities as required by applicable law.

The Sync Event platform is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected] and we will take steps to delete that information.

Event organizers who host events that may include minors are responsible for obtaining appropriate parental consent and complying with applicable laws governing the collection of minors' data.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last updated" date at the top of this page.
• Notify registered users via email or an in-platform notification.
• For significant changes, provide at least 30 days' notice before the new policy takes effect.

Your continued use of the Services after the effective date of the revised policy constitutes your acceptance of the changes.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: