Lively Event Platform Privacy Policy

Introduction

If you are viewing this page, you may have been using one of the applications built through our Service and you may want to find out more about the Data processing carried out via the Lively Event Platform. Lively takes care of protecting the confidentiality of the information that End-Users share, and commits itself to the strictest compliance with the data protection law that applies.

This document is aimed at providing End-Users with an outline of what the Service provided by Lively consists of, what Personal Data are collected via the Service and how such Data are processed.

Lively provides the Service to Clients who shall use it for the purposes and according to the modalities described in their privacy policy. In case of any inconsistency or discrepancy between the present document and the Client privacy policy, this latter document shall prevail.

The contractual relationship between Lively and the Client is specifically addressed in the related paragraphs of the present document.

Service provided by Lively

Lively is a company specialised in providing event and engagement application solutions that may either be built autonomously by Clients or with the assistance of a Lively Platform trained team of specialists. Each of these applications provide End-Users with a digital solution to interact and communicate during events, meetings or community engagements. Such communication is carried out in a paperless environment through the functionalities available in the application. Once the End-User has joined the event environment, he can start using the engagement features of the Lively Event Platform, including but not limited to, posting questions, receiving learning or training material, communicating in real time with other End-Users, taking notes, casting votes etc., the exact functionalities depending on the feature set made available on that application and on the setting thereof, as established by the Client.

Types of Data collected

Usage Data

The navigation on the Lively Event Platform (as well as the use of any third party’s application embedded and/or available therein), implies the communication of Usage Data, which is implicitly acquired during the navigation of the End-User through the internet communications protocol.

Usage Data includes but is not limited to, the IP addresses or domain names of the devices utilized by the End-Users, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the End-User, the various time details per visit (e.g., the time spent on each page within the Lively Event Platform) and the details about the path followed within the Lively Event Platform with special reference to the sequence of pages visited, and other parameters about the device’s operating system and/or the End-User's IT environment.

Usage Data is not collected for the purpose of identifying the End-User. However, End-User must be aware that the identification may be possible through further elaborations and associations, as well as with information held by third parties.

Should any wilful act of misconduct, fraud or criminal offence be perpetrated, Usage Data could potentially be used for ascertaining individual responsibilities.

Data communicated by End-User

To use the Service, End-Users may need to register and disclose the information requested in the relevant forms in a complete and truthful manner. Whenever a field in the forms provided is described as “optional” or “not compulsory” or is not marked with “*” symbol it means that End-User is free not to communicate the requested Data and that the End-User’s request can be fulfilled notwithstanding the absence of this information. The Data collected by the Lively Event Platform for registration purposes are: email address, first name, last name. End-User’s Personal Data shall be processed upon End-User’s prior, free and informed consent, when required by the law, and solely for the purposes outlined in the present privacy policy. End-Users are responsible for any third party Personal Data obtained, published or shared through this Lively Event Platform and confirm that they have the third party's consent to provide the Data to the Client and / or Lively.

Mode and place of processing the Data

Methods of processing

The Data of End-Users is processed in an appropriate manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data. The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.

Place

The Data is processed at the Client's operating offices and in any other places where the parties involved with the processing are located. For further information, please contact privacy@lively.agency

Retention time

The Data is kept for the time necessary to provide the Service requested by the End-User, or stated by the purposes outlined in this document, and the End-User can always request that the Client suspend or remove the Data. For further information, End-User can contact Lively at privacy@lively.agency

Purposes of processing

The Data concerning the End-User is collected for the purposes described below.

In particular, Usage Data is solely processed to:

As for the Data communicated by End-User on a voluntary basis, it is processed for the following purposes:

Further details about the processing of Personal Data carried out by the Owner can be found in the section below.

How it works for End-Users

End-Users must be aware that other users of the application might have access to, or re-post, or otherwise share what they have published, which could also include Personal Data such as name, nickname/screen name, location and other information about the End-User, as well as information about the event they are participating to. These other users might make such information publicly available.

At each event at which the Lively Event Platform is employed, the Event Organizer determines the rules as to how individually-identifiable information in the Lively Event Platform will be made accessible to other End-Users. Where applicable and once these rules have been determined, Lively enforces them, including by withholding Data from the Event Organizer where that Data was gathered under a commitment of anonymity.

Some of the ways in which individually-identifiable information about a participant are made available to others vary from event to event including, but not limited to the following:

Data communicated to Lively

Data automatically collected by Lively

The Lively Event Platform usually provides for a closed environment, meaning that the End-User must be authenticated with an email link or a similar authentication scheme before joining the Lively Event Platform. If no authentication scheme is available, End-Users can access by providing the following Data: email address, first name and last name. Lively does not automatically collect, via the service, any personal identifiable information from the Users. Nonetheless, the use of the Service may imply the automatic collection of some End-User's information and other Usage Data, including but not limited to, IP address, operating system and type of browser used by End-User's mobile device.

Communication of Data to Lively by the Client

Notwithstanding the above, under specific circumstances and, namely, as part of the functioning of the Lively Event Platform related to a meeting or event at which the Lively Event Platform is employed, Lively may receive some personal identifiable information about the End-Users, including but not limited to, their name, surname and email address, in order to enable the particular features of the Lively Event Platform.

Lively does not own any such Data and shall process them, as Data Processor, according to the instructions and the terms and conditions set forth in the agreement entered into with the Client who remains the sole Data Controller.

Data transfers

Liability for Data transfers

Clients are solely liable for the lawful transmission of Personal Data referring to End-Users to Lively. Clients shall inform such Data Subjects accurately about the intended data transfer and collect their prior explicit consent, if needed. In particular, Clients shall inform their users about profiling activities possibly performed through recourse to services provided by Lively. In case such profiling activities take place, Clients are solely liable for the fulfilment of the notification, if required, to the competent Data Protection Authority, as well as to comply with any requirements prescribed by the applicable privacy laws which are relevant to the aforesaid data processing activities.

Therefore, Clients are bound to inform the End-Users correctly about the data treatment performed with recourse to services provided by Lively according to applicable law, i.e. providing a privacy policy including information about data treatment performed by Lively on their behalf.

To the same extent, Clients are solely liable for the enforcement of consent revocations or other requests received by Data Subjects. Clients shall inform Lively accurately and without undue delay about the revocation of consent or the request and about the Data to be deleted, amended, rectified etc. Clients are solely liable for any damage possibly arising to third parties (e.g. their users or other Users) due to an unlawful processing of Personal Data transferred to Lively.

Detailed information on the processing of Personal Data

Given the information above, Personal Data can be collected by using some of the following services:

Unique device identification, Hosting and backend infrastructure, Push notifications

Additional information about Data collection and processing

Legal action

The Data Subjects' Personal Data may be used for legal purposes by the Client, in Court or in the stages leading to possible legal action arising from improper use of this Lively Event Platform or the Services. The Data Subject declares to be aware that the Client may be required to reveal Personal Data upon request of public authorities.

Additional information about Data Subject's Personal Data

In addition to the information contained in this privacy policy, Lively may provide the Data Subject with additional and specific information concerning particular services or the collection and processing of Personal Data upon request.

System logs and maintenance

For operation and maintenance purposes, the Lively Event Platform and, where applicable, third party services may collect files that record interaction with the Lively Event Platform (System logs) or use for this purpose other Personal Data (such as IP Address).

Children Under the Age of 13

The Service is directed to the general public. Client and Lively do not knowingly collect information from children under 13 years of age or have any reasonable grounds for believing that children under the age of 13 are accessing the Service. If Client or Lively  learn that they have inadvertently collected Personal Data from a child under age 13, that Data will be deleted as quickly as possible. If you believe that we might have any information from a child under age 13, please contact us at privacy@lively.agency

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from Lively at any time at privacy@lively.agency

The rights of Data Subjects

Data Subjects have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller or Lively to learn about their contents and origin, to access, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons or to request data portability. Requests should be sent to the Data Controller (the Client) at the contact information provided in its privacy policy or to Lively at privacy@lively.agency Data Subjects can lodge a complaint with the competent supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the alleged infringement of GDPR in relation to the processing of their Personal Data.

In the case of a personal data breach of data where Lively is the data processor, but not data controller, Lively will notify the Data Controller without undue delay after becoming aware of a personal data breach. In the case of a personal data breach of data where Lively is the data controller, Lively will without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority competent in accordance with Article 55 GDPR, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. If the notification to the supervisory authority is not made within 72 hours, it will be accompanied by reasons for the delay. In the data breach notification, Lively will describe the nature of the personal data breach including where possible, the categories and approximate number of data subjects concerned and the categories and approximate number of personal data records concerned, and communicate the name and contact details of the data protection officer or other contact point where more information can be obtained and describe the likely consequences of the personal data breach; describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effects. Lively will document any personal data breaches, comprising the facts relating to the personal data breach, its effects and the remedial action taken.

Questions on data protection and contact / information, correction, deletion and blocking

You are always entitled to request information about any of your data that Lively has stored, as well as their origin and recipient and the purpose it was stored for. If you have any questions about data protection or if you wish to access, request data portability, correct, block or delete your profile or any of your personal data, or if you would like, at any time, to revoke a granted authorization regarding the use of your customer data or e-mail address, please contact the following: Lively, The Retreat, 406 Roding Lane South, Woodford Green, Essex, England, IG8 8EY or by email at privacy@lively.agency

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to its End-Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If an End-User objects to any of the changes to the Policy, the End-User must cease using Lively Event Platform and can request that the Data Controller remove the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about End-Users.

Additional information about Data collection and processing

For any further information about the Data processing by Lively as regards the provision of the Service, Users can write an email to the following address privacy@lively.agency

 Definitions and legal references

Latest update: 5 November 2020