Privacy Policy

Rondevu Management - Professional Event Management Platform

Last Updated: January 7, 2025

For Event Organizers, Venue Managers & Business Professionals

This Privacy Policy explains how we collect, use, and protect your information when you use Rondevu Management - our professional platform for creating, managing, and promoting events, venues, and organizations.

1. Information We Collect

1.1 Professional Account Information

Business Profile: Company name, business type, professional role, contact information
Personal Details: Name, email, phone number, professional bio, profile photo
Verification Data: Business licenses, certifications, identity verification documents
Authentication: Login credentials, two-factor authentication settings via Firebase Auth
Team Management: Staff accounts, role assignments, permission levels

1.2 Event Management Data

Event Creation: Event details, descriptions, scheduling, pricing, capacity limits
Event Assets: Images, videos, promotional materials, event documentation
Attendee Management: Guest lists, RSVPs, check-in data, attendance tracking
Ticket Management: Ticket types, pricing, sales data, refund processing
Waitlist Management: Waitlist entries, notifications, capacity management
Event Analytics: Performance metrics, attendance data, revenue tracking

1.3 Venue & Organization Management

Venue Information: Location details, capacity, amenities, operating hours
Business Operations: Menus, pricing, special offers, business hours
Organization Data: Member lists, roles, permissions, organizational structure
Content Management: Photos, descriptions, promotional content, branding materials
Performance Data: Venue utilization, booking patterns, revenue analytics

1.4 Financial & Payment Information

Payment Processing: Stripe account integration, payment methods, transaction history
Revenue Tracking: Ticket sales, revenue reports, payout schedules
Tax Information: Business tax details, 1099 forms, financial reporting
Refund Management: Refund policies, processing, dispute resolution

1.5 Customer & Attendee Data

Customer Information: Names, contact details, purchase history of event attendees
Check-in Data: QR code scans, attendance verification, entry timestamps
Communication Records: Messages, notifications, customer service interactions
Feedback & Reviews: Customer reviews, ratings, feedback on events and venues

1.6 Technical & Usage Data

Device Information: Device type, OS version, app version, unique identifiers
Camera Access: QR code scanning for event check-ins and ticket validation (no images stored)
Usage Analytics: Feature usage, time spent, workflow patterns, performance metrics
System Logs: Error logs, crash reports, security events, API usage
Location Data: Venue locations, event locations, business addresses

2. How We Use Your Information

2.1 Core Business Functions

Event Management: Create, schedule, promote, and manage events and tickets
QR Code Scanning: Use camera to scan QR codes for event check-ins and ticket validation
Venue Operations: Manage venue profiles, bookings, and business operations
Organization Management: Handle member management, roles, and organizational structure
Payment Processing: Process payments, manage refunds, and handle financial transactions
Customer Service: Provide support, handle inquiries, and resolve issues

2.2 Business Analytics & Insights

Performance Analytics: Track event success, venue utilization, and business metrics
Revenue Reporting: Generate financial reports, track sales, and analyze profitability
Audience Insights: Understand customer demographics and behavior patterns
Market Analysis: Provide industry insights and competitive analysis

2.3 Professional Communication

Business Notifications: Event updates, booking confirmations, payment notifications
Marketing Tools: Promotional campaigns, customer outreach, event marketing
Team Collaboration: Internal communications, task management, team coordination
Customer Communications: Attendee notifications, updates, and customer service

2.4 Platform Improvement

Feature Development: Develop new business tools and management features
Security Enhancement: Monitor for fraud, abuse, and security threats
Performance Optimization: Improve app performance and user experience
Compliance: Ensure regulatory compliance and industry standards

3. Information Sharing & Disclosure

3.1 Public Business Information

The following business information may be publicly visible:

Business name, venue name, organization name
Public events, venue information, and business hours
Professional profile information you choose to make public
Event descriptions, photos, and promotional content
Business reviews and ratings (if applicable)

3.2 Customer Data Sharing

Important: As a business user, you have access to customer data (attendee information, purchase history, etc.). You are responsible for:

Protecting customer privacy and data security
Complying with applicable privacy laws (GDPR, CCPA, etc.)
Using customer data only for legitimate business purposes
Obtaining proper consent for marketing communications
Providing customers with privacy rights and controls

3.3 Third-Party Service Providers

Firebase (Google Cloud): Authentication, database, cloud storage, and analytics
Stripe: Payment processing, financial transactions, and payout management
Google Maps: Location services, venue mapping, and navigation
Communication Services: Email delivery, SMS notifications, push notifications
Analytics Providers: Business intelligence, reporting, and performance analytics

3.4 Legal & Regulatory Compliance

We may disclose information when required by law or to:

Comply with legal processes, subpoenas, or court orders
Respond to government requests or regulatory inquiries
Protect against fraud, abuse, or illegal activities
Enforce our terms of service and protect our legal rights
Ensure public safety and security

4. Data Security & Protection

4.1 Enterprise-Grade Security

Data Encryption: AES-256 encryption at rest, TLS 1.3 in transit
Access Controls: Role-based access, multi-factor authentication, audit logs
Infrastructure Security: SOC 2 compliant hosting, regular security audits
Payment Security: PCI DSS Level 1 compliance through Stripe
Data Backup: Regular backups, disaster recovery, business continuity
Monitoring: 24/7 security monitoring, threat detection, incident response

4.2 Business Data Protection

Segregation: Your business data is isolated from other users
Employee Access: Limited access on a need-to-know basis with audit trails
Data Processing Agreements: Formal agreements with all service providers
Regular Audits: Security assessments and compliance reviews

4.3 Incident Response

In case of a security incident, we will:

Notify affected business users within 24 hours
Provide detailed incident reports and remediation steps
Assist with customer notification requirements
Report to relevant authorities as required by law

5. Your Rights & Controls

5.1 Business Account Management

Data Access: Export all your business data and customer information
Data Correction: Update and correct business information and settings
Data Deletion: Delete your business account and associated data
Data Portability: Export data in standard formats for migration
Team Management: Control staff access, roles, and permissions

5.2 Customer Data Rights

As a business user, you must provide your customers with:

Access to their personal data you collect
Ability to correct or update their information
Option to delete their data (subject to legal requirements)
Clear privacy notices and consent mechanisms
Opt-out options for marketing communications

5.3 Business Controls

Privacy Settings: Control what business information is public
Communication Preferences: Manage notifications and updates
Data Retention: Set retention periods for customer data
Integration Controls: Manage third-party app connections

6. Data Retention & Deletion

6.1 Business Data Retention

Active Accounts: Data retained while your business account is active
Inactive Accounts: Data retained for 3 years after last activity
Financial Records: Retained for 7 years for tax and legal compliance
Customer Data: Retained according to your business needs and legal requirements

6.2 Account Closure

When you close your business account:

Business profile data is deleted within 30 days
Customer data is handled according to your instructions
Financial records are retained for legal compliance
Analytics data may be retained in anonymized form

6.3 Customer Data Deletion

You can delete customer data at any time, subject to:

Legal requirements for record keeping
Ongoing business transactions
Dispute resolution needs
Regulatory compliance requirements

7. Legal Compliance

7.1 Privacy Law Compliance

We help you comply with privacy laws including:

GDPR: European Union General Data Protection Regulation
CCPA: California Consumer Privacy Act
PIPEDA: Canadian Personal Information Protection and Electronic Documents Act
State Laws: Various U.S. state privacy laws

7.2 Business Compliance Responsibilities

As a business user, you are responsible for:

Obtaining proper consent from customers
Providing clear privacy notices
Honoring customer privacy rights
Implementing appropriate security measures
Reporting data breaches as required by law

8. International Data Transfers

Your business data may be transferred internationally. We ensure protection through:

Adequacy Decisions: Transfers to countries with adequate protection
Standard Contractual Clauses: EU-approved data transfer agreements
Certification Schemes: Privacy Shield successors and similar frameworks
Binding Corporate Rules: Internal data protection standards

9. Third-Party Integrations

Rondevu Management integrates with business services that have their own privacy policies:

Google Workspace: Google Privacy Policy
Stripe: Stripe Privacy Policy
Firebase: Firebase Privacy Policy
Analytics Providers: Various business intelligence and analytics services

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. For business users, we will provide:

30-day advance notice of material changes
Email notifications to business account administrators
In-app notifications and policy summaries
Webinars or training for significant compliance changes

11. Contact Us

Business Privacy & Compliance Support

For privacy questions, compliance assistance, or data requests:

Business Support: business@rondevu.com

Privacy Officer: privacy@rondevu.com

Legal Team: legal@rondevu.com

Address: [Your Business Address]

Phone: [Your Phone Number]

Business Hours: Monday-Friday, 9 AM - 6 PM EST

Emergency Contact: Available 24/7 for security incidents

Effective Date: January 7, 2025

This privacy policy applies to Rondevu Management and all related business services.