Legal

Privacy Policy

Last updated: April 19, 2026

Your privacy matters to us

We collect only what's necessary, never sell your data, and give you full control over your information. This policy explains what we collect, why, and how you can manage it.

1. Introduction

Welcome to Zivento ("we", "us", "our"), operated by Zivento. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, store, and share your data when you use the Zivento platform at zivento.app.

2. Information We Collect

We collect and process the following types of information:

  • Account Information: Name, email address, password, and optionally your profile picture
  • Event Data: Event registrations, attendance records (via QR code check-in), certificates issued, and feedback submitted
  • Organizer Data: Organization name, event details, attendee lists, and analytics data
  • QR Check-in Data: Timestamp, check-in status, and the device used for scanning (organizer-side only)
  • Usage Data (First-Party Analytics): Pages visited, browser type, device type, screen width, referring URL, and an anonymous session identifier (stored in sessionStorage, cleared when you close the tab). We do not use any third-party analytics services.
  • Communications: Newsletter subscription email, contact form messages, and support requests

3. How We Use Your Information

We use your information to:

  • Provide and maintain our event management services
  • Process event registrations, generate QR codes, and issue certificates
  • Send transactional emails (registration confirmations, certificates, password resets)
  • Send marketing communications (only with your consent; you can opt out anytime)
  • Generate anonymized analytics for event organizers
  • Detect fraud, prevent abuse, and maintain platform security
  • Improve our services based on aggregated usage patterns
  • Comply with legal obligations

4. Information Sharing & Third Parties

We do not sell your personal information. We may share your information with:

  • Event Organizers: When you register for an event, organizers can see your name, email, attendance status, and any custom registration fields you filled in
  • Appwrite (Infrastructure): Appwrite Cloud powers our entire backend — database, authentication, file storage, and web hosting. All data is stored on Appwrite Cloud infrastructure (Singapore region). Appwrite Privacy Policy
  • Brevo (Email): We use Brevo (formerly Sendinblue) to send transactional emails (registration confirmations, certificates, password resets) and marketing communications. Brevo receives recipient name and email address. Brevo Privacy Policy
  • Mapbox (Maps): We use Mapbox to display event location maps. When you view a map, Mapbox receives your IP address and viewport data. Mapbox Privacy Policy
  • Upstash (Rate Limiting): We use Upstash Redis for API rate limiting to prevent abuse. Only your IP address and request counts are stored temporarily. Upstash Privacy Policy
  • Sentry (Error Monitoring): We use Sentry to detect and fix software errors. Sentry may receive error stack traces, your user ID, browser info, and the route where the error occurred. Sentry Privacy Policy
  • Legal Requirements: When required by law, court order, or to protect our rights and safety

5. Data Storage & Transfers

Your data is stored on servers operated by Appwrite Cloud (Singapore region). If you access Zivento from outside this region, your data may be transferred internationally. We rely on our service providers' data protection agreements to ensure adequate safeguards are in place.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • TLS/SSL encryption for all data in transit
  • Secure password hashing using industry-standard algorithms (Argon2)
  • Role-based access controls and device fingerprinting
  • Encrypted QR codes with anti-fraud protections
  • Regular security reviews

No system is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Your Rights (GDPR & CCPA)

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and associated data
  • Portability: Request your data in a machine-readable format
  • Objection: Object to processing of your data for marketing purposes
  • Withdraw Consent: Withdraw consent at any time where we rely on consent as the legal basis
  • CCPA (California): Right to know what data is collected, right to delete, and right to opt-out of sale (we do not sell data)

To exercise any of these rights, email us at support@zivento.app. We will respond within 30 days.

8. Cookies and Tracking

We use cookies and similar technologies (localStorage) to enhance your experience, maintain your session, remember your theme preference, and analyze usage patterns. You can control cookie settings through your browser. Read our full Cookie Policy →

9. Marketing & Communications

If you subscribe to our newsletter, we will send you occasional updates about Zivento features and event tips. You can unsubscribe at any time by clicking the unsubscribe link in any email or by contacting us. Transactional emails (registration confirmations, password resets, certificates) are not marketing and cannot be opted out of while your account is active.

10. Data Retention

  • Account data: Retained while your account is active. Upon account deletion, personal data is removed within 30 days.
  • Certificates: Retained indefinitely for verification purposes, even after account deletion, as they may be required by institutions or employers.
  • Event analytics: Anonymized and retained indefinitely.
  • Security logs: Retained for 12 months.

11. Children's Privacy

Zivento is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have collected data from a child under 13, please contact us and we will delete it promptly.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or through the platform. The "Last updated" date at the top reflects the most recent revision.

13. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us at support@zivento.app.