Before or at the time of collecting personal information, we will identify the purposes for which information is being collected. These purposes include but are not limited to event registration, event experience, event logistics, safety and security, payment processing, event related communications, to improve our products and services, fraud prevention, customer and market analysis, and to deliver more personalized services such as marketing and local event recommendations.
We will collect and use personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.
We will only retain personal information as long as necessary for the fulfillment of those purposes.
We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.
Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.
Leap Conventions has strong data protection controls including encryption of data when being transmitted to sub-processors, in order to protect personal information from unintended disclosure or misuse. We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.
In case of a data breach, appropriate authorities and affected individuals will be notified by Leap Conventions via the appointed Data Protection Officer within 72 hours of the breach.
We will make readily available to customers information about our policies and practices relating to the management of personal information.
Camera: Certain Leap Conventions apps may use camera on an iOS or Android device. Any data from camera and other sensors is neither collected nor distributed by Leap Conventions and is used solely for the purposes of ticketing and registration services. Any personal data collected is saved only to the user's device with user consent and action.
Being that Leap Conventions is an event management and ticketing service provider, customers are permitted to create accounts with Leap Conventions that allow them access to their personal data that has been processed by GrowTix. Access to personal data stored by our clients within the Leap Conventions system can be achieved by creating an account with GrowTix.
As is true of most web sites, we gather certain information automatically and store it in log files. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We do link this automatically collected data to other information we collect about you.
We partner with a third party to either display advertising on our web site or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests.
To opt-out of interest-based advertising by participating companies in the following consumer choice mechanisms, please visit:
Data stored within the Leap Conventions systems is collected and processed with an end to service Leap Conventions clients and their customers in event related services. This personal data is defined as necessary data in providing contracted services for Leap Conventions clients and their customers.
GrowTix is a data controller in regard to your user account created within GrowTix. Only an email address and name are required to create an account within Leap Conventions and said account is used to access data that has been processed on behalf of our clients. Leap Conventions accounts will remain active within the system with the purpose of accessing data processed by our clients. You can request for your user account to be removed from the Leap Conventions system by submitting a request to firstname.lastname@example.org.
GrowTix engages with sub-processors, subcontractors and content delivery networks to assist it in providing Leap Conventions Services. In this instance, sub-processors are defined as any entity that processes personal data for and on behalf of Leap Conventions and its clients. It is the responsibility of Leap Conventions to determine that your data is securely processed by our sub-processors.
GrowTix sub-processors and their uses are indicated below:
Google: Analytics data, geocoding.
AWS: Data hosting services.
SmartyStreets: Address verification.
Sendgrid: Email communications with client customers and others as deemed necessary functions within GrowTix.
Twilio: SMS communications with client customers, 2FA, and others as deemed necessary functions within GrowTix.
Stripe.com: Merchant Services
Leap Event Technology: Streaming service and meet and greet service.
Logrocket: Admin session replay and tracking.
Pendo: User behavior tracking and analytics.
Epic Photo Ops: Third party photo op company.
Authorize.net: Merchant services.
Stripe.com: Merchant services.
Propay: Merchant services.
PayPal Merchant services.
Bambora: Merchant services.
Square: Merchant services.
Cybersource: Merchant services.
We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.
Collection. We collect certain categories of personal information about you. We collect the following types of categories of personal information:
The categories of third party service providers to which we may share the above categories of information, include, without limitation, payment processing companies, data analytics providers, fraud prevention providers, cloud storage providers, IT service providers, delivery partners, and marketing companies.
In the preceding twelve (12) months, we may have sold or shared personal information or used personal information for targeted advertising purposes; however, we do not use your personal information to profile you in furtherance of decisions that produce legal or significantly similar effects (as defined under applicable law). To the extent applicable law grants you the right to opt-out of the sale of your personal information or the sharing of your personal information for targeted advertising purposes, you can opt-out by submitting information via the DO NOT SELL OR SHARE MY PERSONAL INFORMATION form or by exercising the methods set forth under the “Exercising Your Rights” section below.
Your Rights and Choices
California, Virginia, and other applicable U.S. State laws may grant you certain rights—subject to all applicable limitations, exemptions, or exceptions—regarding our collection and use of your personal information. These rights include, to the extent applicable and to the extent granted under applicable law:
The above rights are only exercisable by you where applicable law in the jurisdiction in which you reside actually grants you the right being exerted. When exercising your right to deletion (to the extent applicable), please identify the information that you wish to be deleted and whether you would like to delete your account. Please note that the exercising of your right to deletion will result in the deletion of the personal information that we have collected about you. This may result in our inability to further provide services to you in the future.
Exercising Your Rights. To exercise the rights described above only to the extent applicable law grants you such rights, please submit a verifiable consumer request to:
Email us: email@example.com
Only you or a registered agent (if and only as permitted under applicable law) that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. If you have a registered agent act on your behalf, we have the right to authenticate such agent’s authority to act. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
Response Timing and Format. Your request will be responded to within 45 days, and in any event, we will respond to you within the timeframe required under applicable law. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
If we deny your request, you can appeal such denial by firstname.lastname@example.org.
For questions or comments on this policy email email@example.com or write Privacy Manager, GrowTix, 10675 Perry Hwy, #1316, Wexford, PA 15090