Privacy Policy
This Privacy Policy describes how we collect, use, store, and protect information in connection with our website and platform (“Service”).
EventZero LLC is the data controller for personal data processed through our Service.
EventZero Pty Ltd acts as our licensed local representative and contracting entity for Australian customers.
- EventZero LLC – 312 W 2nd St, Unit #A3044, Casper WY 82601 USA
- EventZero Pty Ltd – ACN 686 382 132 / ABN 21 686 382 132
EventZero LLC is the data controller for personal data processed through our Service.
EventZero Pty Ltd acts as our licensed local representative and contracting entity for Australian customers.
Last Updated: October 7th, 2025
1. Who We Are
2. Scope
This Policy applies to all websites, web apps, and online services operated by EventZero that link to it.
By accessing or using the Service, you agree to this Policy.
3. Information We Collect
a. Information you provide:
b. Automatically collected information:
c. Customer Data submitted to the platform:
- Account registration details (name, business email, organisation name, billing details).
- Support requests or contact-form submissions.
b. Automatically collected information:
- Browser type, IP address, device identifiers, usage logs, cookies (see Section 10).
c. Customer Data submitted to the platform:
- Event and travel data (e.g., number of attendees, flights, venues).
- EventZero does not collect personal information about individual attendees. All event data are aggregated or anonymised.
4. How We Use Information
We use collected information to:
We do not sell personal information.
- Provide, operate, and maintain the Service;
- Process payments and manage subscriptions;
- Respond to inquiries and support requests;
- Improve functionality and performance;
- Comply with legal obligations and enforce agreements.
We do not sell personal information.
5. Credential Storage and Security
When you connect a third-party integration (for example, Cvent), EventZero stores encrypted credentials or tokens solely to authenticate API requests required to provide the Service.
- Credentials are stored exclusively in Amazon Web Services (AWS) Secrets Manager, encrypted using AWS Key Management Service (KMS) (AES-256).
- Access is limited by AWS Identity and Access Management (IAM) roles under the principle of least privilege.
- Credentials are never visible in plaintext or logs and are deleted upon request or termination, subject to backup retention (typically ≤ 30 days).
6. Legal Basis for Processing (EU / UK Users)
Our lawful bases under the GDPR and UK-GDPR include:
- Contractual necessity (to provide the Service);
- Legitimate interests (improving and securing the platform);
- Legal obligation (retaining records or responding to authorities);
- Consent (where required for marketing or cookies).
7. Disclosure and Subprocessors
We use carefully selected subprocessors to host infrastructure and support the Service.
A current list is available at https://www.eventzero.io/subprocessors
We require each subprocessor to implement appropriate technical and organisational measures consistent with Article 28 of the GDPR.
We may also disclose information:
A current list is available at https://www.eventzero.io/subprocessors
We require each subprocessor to implement appropriate technical and organisational measures consistent with Article 28 of the GDPR.
We may also disclose information:
- To professional advisers or service providers acting on our behalf;
- When required by law or valid legal process;
- In the event of a merger, acquisition, or asset transfer.
8. International Data Transfers
All data processed through the EventZero platform is hosted and stored in the United States using Amazon Web Services (AWS) data centres.
We do not replicate or store Customer Data in other regions.
For customers located outside the United States, your information is transferred to and processed in the U.S., where our servers are located.
These transfers are protected using Standard Contractual Clauses (SCCs) and equivalent safeguards designed to ensure your data remains protected under applicable privacy laws (such as GDPR, UK-GDPR, and the Australian Privacy Principles).
We do not replicate or store Customer Data in other regions.
For customers located outside the United States, your information is transferred to and processed in the U.S., where our servers are located.
These transfers are protected using Standard Contractual Clauses (SCCs) and equivalent safeguards designed to ensure your data remains protected under applicable privacy laws (such as GDPR, UK-GDPR, and the Australian Privacy Principles).
9. Data Retention
EventZero retains Customer Data for as long as necessary to provide the Service and meet contractual and legal obligations.
At this time, Customer Data stored within the EventZero platform (such as event or emissions data) cannot be permanently deleted by users.
However, credentials and integration tokens can be removed or expired at any time, and are deleted upon account termination or by request.
EventZero is developing additional tools to allow full data deletion capabilities in future releases.
All data remains securely stored in AWS U.S. data centres and is subject to strict access controls and encryption at rest (AES-256).
At this time, Customer Data stored within the EventZero platform (such as event or emissions data) cannot be permanently deleted by users.
However, credentials and integration tokens can be removed or expired at any time, and are deleted upon account termination or by request.
EventZero is developing additional tools to allow full data deletion capabilities in future releases.
All data remains securely stored in AWS U.S. data centres and is subject to strict access controls and encryption at rest (AES-256).
10. Cookies and Analytics
We use functional and analytics cookies to operate and improve our websites.
You may adjust browser settings to block cookies; some features may then not function properly.
Where required by law, we obtain consent through our cookie banner.
For details, see our Cookie Policy.
You may adjust browser settings to block cookies; some features may then not function properly.
Where required by law, we obtain consent through our cookie banner.
For details, see our Cookie Policy.
11. Accuracy of Analytics and Methodology
EventZero applies current carbon factors, data sources, and accepted methodologies when generating analytical outputs.
These calculations are intended for informational and planning purposes only and should not be interpreted as certified environmental audits.
These calculations are intended for informational and planning purposes only and should not be interpreted as certified environmental audits.
12. Your Rights
Depending on your jurisdiction, you may have rights to:
Requests can be sent to legal@eventzero.io.
We may require verification before fulfilling a request.
- Access, correct, or delete your personal data;
- Restrict or object to processing;
- Withdraw consent (where applicable);
- Lodge a complaint with a supervisory authority.
Requests can be sent to legal@eventzero.io.
We may require verification before fulfilling a request.
13. Data Security
We implement technical and organisational measures including:
More information is available in our Security Overview.
- Encryption in transit (TLS 1.2+) and at rest (AES-256);
- Network isolation and firewalls within AWS;
- Role-based access control and MFA;
- Regular vulnerability scanning and monitoring;
- Daily encrypted backups with tested restoration.
More information is available in our Security Overview.
14. Children
Our Service is not directed to children under 16 years of age.
We do not knowingly collect personal information from children.
We do not knowingly collect personal information from children.
15. Changes to This Policy
We may update this Policy from time to time.
Material updates will be posted on our website with a new “Last Updated” date.
Continued use of the Service after changes take effect constitutes acceptance.
Material updates will be posted on our website with a new “Last Updated” date.
Continued use of the Service after changes take effect constitutes acceptance.
16. Contact Us
Privacy and Data Protection Officer
EventZero LLC
312 W 2nd St Unit #A3044, Casper WY 82601 USA
legal@eventzero.io
EventZero LLC
312 W 2nd St Unit #A3044, Casper WY 82601 USA
legal@eventzero.io
