Eventpros, your data is precious, and we are fully aware of it.
Digitevent lets you import your databases and contacts directly into our event management software, so it's entirely normal to have some questions:
- What happens to my data after import?
- Does Digitevent have access to this data for other purposes?
- Once my data is deleted after my event, is it still stored on the platform?
No need to worry! 😉 At Digitevent, we are completely transparent about the security and protection of our clients' data. You can check out our privacy policy for more information.
🔒 What does GDPR security mean?
GDPR is the European regulation on data protection. Since 2018, the law in force recognizes all data (email, phone number, job title, address, GPS data, IP address, cookies, identifier, etc.) as personal data. It is forbidden to collect and use so-called "sensitive" data (genetic data, or data concerning health or sexual orientation, for example). The use and processing of personal data must serve a specific purpose. Under the CNIL's data minimization principle, data collection is limited to the information strictly necessary to run the event (no need to ask about a participant's social security number or religion in a registration form, for example!).
Digitevent works continuously to build a relationship of trust with its clients, with transparent data traceability. A data protection officer (DPO), whose role is to lead and implement a data security and protection policy, works daily to ensure these key measures are upheld.
👥 Employee training and awareness
Our clients' data passes through the hands of several employees, so it is absolutely essential to raise the whole team's awareness of data protection and respect. Beyond simply calling for best practices and vigilance, we have a strict internal policy:
- Every employee is required to adhere to our security charter and receives periodic training based on the nature of their role
- Employee access to data is limited to what is strictly necessary (by role, geographic area, etc.)
- Frequent checks and reassessments of the relevance of granted access
- Centralized management of permissions granted to employees
🔎 Data ownership: who does it belong to?
It's simple: your data, your property. Our clients are the sole owners of the imported data and contacts, Digitevent's role is only to "store" it, and your data can never be used for any purpose other than the proper use of the software. At any time, it can be exported or deleted from our servers. Without a deletion request from you, your data can be stored for a maximum of three years under current law, a period during which we remain prohibited from using it.
⚠️ User security
On the platform, our clients can directly manage permissions and access rights to certain data or event features. Every change is tracked and a history is kept in the participant record. As for software users' passwords, they are encrypted on our servers, which makes them unreadable, even by the Digitevent team. SSO implementation is possible if you use this method in your organization.
💪 A robust infrastructure
Digitevent, a powerful and complete solution, works with world-class server infrastructure providers that comply with the highest security standards. Data is stored with AWS (Amazon Web Services), in data centers exclusively within the European Union, mainly in France. We use state-of-the-art encryption for all data in transit on networks, which optimizes the availability and security of exchanges (following the HTTPS protocol, TLS 1.2 minimum).
