1. Who We Are

1.1 OUTIN Services
Welcome to OUTIN! We are an events platform dedicated to bringing communities together by showcasing events in your local area. Through our platform and mobile apps, we enable people to discover, share, and register for events happening nearby.
OUTIN's products, features, and offerings are available (a) online through various OUTIN properties including, without limitation, OUTIN Main Site, OUTIN Communities, and OUTIN Tickets ("Sites"); (b) off-platform, including, without limitation, RFID, entry management, sponsorship, marketing, and distribution services; and (c) through mobile applications, webpages, APIs, and subdomains ("Applications"). Collectively, these are referred to as "OUTIN Properties" or our "Services".

1.2 Who's Who
When this Privacy Policy uses the term "Organizer," we mean event creators using the Services "Venues or Acts" to create events for consumers who use our Services to find and attend these events ("Consumers"). Organizers, Consumers, Acts and third parties using our Services are all referred to collectively as "Users", "you," or "your".
OUTIN Limited principal place of business at 10 Steine Street, Brighton, BN21TE ("OUTIN," "us," "we," or "our"). If you have any questions or concerns, please do not hesitate to contact us at the address above or by emailing us at privacy@outin.com.

2. Our Privacy Statement

2.1 Application
This Privacy Policy outlines our approach to handling information that can be associated with or used to identify a person ("Personal Data") collected from Users through our Services. We take the privacy of your Personal Data seriously and have established this Privacy Policy to protect it. Please read this Privacy Policy carefully as it includes important information about your Personal Data and other information.
"Non-Personal Data" refers to any information that does not relate to a person and cannot be used to identify a person. When you interact with the Services, we may collect Non-Personal Data. The limitations and requirements in this Privacy Policy regarding the collection, use, disclosure, transfer, and storage/retention of Personal Data do not apply to Non-Personal Data.

3. Personal Data That We Collect

When you use or interact with us through the Services, we may collect Personal Data. This data can be collected for our own purposes or on behalf of an Organizer using our Services to run an event.

3.1 Information Collected From All Users
Information You Provide to Us: We collect Personal Data when you voluntarily provide it, such as when you register for access, contact us, respond to surveys, register for events, or use certain parts of the Services. This includes your name, address, email address, interests, and other information you choose to provide.
Information We Automatically Collect: We collect technical data automatically from your computer, mobile device, and/or browser, including your IP address, device characteristics, browsing behavior, page visits, clicks, and searches. This data helps us understand how you use our Services and improve your experience.
3.2 Information Collected From Organizers
Information You Provide to Us: We may collect additional Personal Data, such as credit card information, bank account details, and tax information, to facilitate payments and prevent fraud. We may also verify your account via phone number and text message.
Information From Other Sources: We may receive Personal Data from third-party sources, such as websites, marketing partners, banks, payment processors, and credit agencies.
3.3 Information Collected From Consumers
Information You Provide: If you register for a paid event, you will provide financial information (e.g., credit card details, billing address). Organizers can also collect various information through event registration pages. This data may be used by the Organizer in connection with the event.
Information From Other Sources: We may receive Personal Data from third-party sources, including Organizers, other Consumers, social media, your bank, and payment processing partners.
3.4 Information Collected from Sales Clients and Leads
Engagement with Sales Team: We may collect your name, email, address, phone number, and other professional contact information. With your consent, we may also collect audio and/or video recordings of meetings with the sales team. 
 
4. How We Use Your Personal Data

We collect and use Personal Data in accordance with this Privacy Policy and applicable privacy laws. The ways we may use your Personal Data include:

4.1 Specific Purpose
If you provide Personal Data for a specific purpose, we use it for that purpose. For example, if you contact us by email, we use your email address to respond to your inquiry.
4.2 Access and Use
If you provide Personal Data to access or use the Services or specific features, we use it to provide you with access and to analyze your use of the Services. For example, if you provide identity information to use certain parts of the Services, we use that information to grant and manage your access.
4.3 Internal Business Purposes
We use Personal Data for internal business purposes, such as improving our Services, understanding user behavior, protecting against wrongdoing, enforcing our Terms of Service, managing your account, and providing customer service.
4.4 Marketing and Advertising
We may use your Personal Data for marketing and advertising purposes. This includes sending promotional emails, SMS messages, and displaying ads about services or events we think might interest you. We may also share your email address or other contact details with third parties for targeted advertising. You can opt-out of marketing communications by contacting us.
4.5 Organizer Emails
Organizers can use our email tools to contact you about current and past events. If you registered for an event, your email address is available to the Organizer. Organizers may also import external email addresses to send communications. These emails are the responsibility of the Organizer, not OUTIN.
4.6 Interest-Based Data
We may infer your interests from the information you provide and your use of the Services to customize recommendations and target advertising. For example, we might suggest events similar to those you have attended.
4.7 Other Purposes
If we intend to use your Personal Data in a way not covered by this Privacy Policy, we will inform you at the time of collection or seek your consent before using it.
4.8 Aggregated Personal Data
We conduct research on our user demographics, interests, and behavior using aggregated data that does not identify individuals. Aggregated data is treated as Non-Personal Data under this Privacy Policy.

5. How We Disclose And Transfer Your Personal Data

5.1 Background
OUTIN is not in the business of selling your Personal Data. We consider this information vital to our relationship with you and will not sell your Personal Data to third parties, including advertisers. Some interpretations of privacy laws, such as the CCPA, consider the use of third-party cookies or similar technologies for analytics or advertising as a "sale." For more details, please see our State-Specific Supplemental Privacy Notices. There are specific circumstances in which we may disclose, transfer, or share your Personal Data with third parties without further notice to you, as detailed in this Privacy Policy.

5.2 Business Transfers
As we develop our business, we might buy or sell businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution, or similar event, Personal Data may be part of the transferred assets. We may also disclose your Personal Data during due diligence for such events. Any successor or acquirer of OUTIN (or its assets) will continue to use your Personal Data in accordance with this Privacy Policy.

5.3 Parent Companies, Subsidiaries, and Affiliates
We may share your Personal Data with our parent companies, subsidiaries, and affiliates for purposes consistent with this Privacy Policy. These entities are bound to maintain your Personal Data according to this policy.

5.4 Agents, Consultants, and Service Providers
We may share your Personal Data with contractors and service providers who process data on our behalf to perform certain business functions. These include marketing agencies, advertising providers, data service providers, backup and disaster recovery service providers, email service providers, payment processors, customer support, tech support, and hosting companies. When we engage another company to perform such functions, we provide them with the necessary information, including Personal Data, to perform their functions.

5.5 Organizers
When you register for an event, sign up for communications, enter a contest, or provide Personal Data through a web form for an Organizer's event, the Organizer receives that information. Organizers may send you marketing or other communications, which may be subject to their own privacy policies. If you provide your mobile phone number, you may receive SMS messages related to the event or activity.
When you purchase tickets, register for an event, or engage in similar activities, the Organizer and other involved third parties receive your Personal Data. This can include fundraising pages where both the charity and event Organizer receive your information. Some Organizers may use third-party promoters or production companies to manage events, and we may provide your Personal Data to these third parties on behalf of the Organizer.
We are not responsible for the actions of Organizers or their third-party partners concerning your Personal Data. It is crucial to review the applicable policies of the Organizer and their third-party partners before providing Personal Data.

5.6 Interest-Based Data
We sometimes make inferences about your interests based on your use of our Services to help target advertising or customize recommendations for you. This can include suggestions for events you might like based on past attendance.

5.7 Other Purposes
If we intend to use your Personal Data in a manner not covered by this Privacy Policy, we will inform you at the time of collection or seek your consent before using it.

5.8 Aggregated Personal Data
We conduct research on our users' demographics, interests, and behavior using aggregated data that does not identify individuals. Aggregated data is treated as Non-Personal Data under this Privacy Policy.

6. How We Store Your Personal Data
 
We may store Personal Data ourselves or transfer it to third parties in accordance with this Privacy Policy. We take reasonable steps to protect Personal Data collected via the Services from loss, misuse, unauthorized use, access, inadvertent disclosure, alteration, and destruction. However, no network, server, database, internet, or email transmission is ever fully secure or error-free. Therefore, please exercise care when deciding what information you send to us electronically and keep this in mind when disclosing any Personal Data.

7. How You Can Access, Update, Correct, or Delete Your Personal Data

You have the right to access and manage your Personal Data stored by OUTIN.

• Access and Download: You can download a copy of your Personal Data in a machine-readable format by visiting the OUTIN Privacy Center.

• Delete: You can delete your Personal Data through the Privacy Center or by contacting us.

• Edit: You can edit some of your Personal Data directly through your account settings.

• Corrections and Updates: If you need to correct or update any inaccurate Personal Data, contact us using the information below. We will review and respond to your request according to applicable laws.
   

If a Consumer initiates a data deletion request, OUTIN is authorized to delete or anonymize Personal Data from the Services, which may remove its availability to the Organizer. However, even if OUTIN deletes or anonymizes your data, it may still be available in the Organizer's own databases if it was transmitted before the deletion request was processed.
Contact Information for Data Requests
To make requests regarding your Personal Data, please contact us at:
Email: privacy@outin.events
Address: OUTIN, 10 Steine Street, Brighton, BN21TE

8. How Long We Retain Your Personal Data

We retain your Personal Data as long as you are registered to use the Services. You may delete your account through the Account Settings page. We may retain Personal Data for an additional period as permitted or required under applicable laws. Even after deletion, your Personal Data may remain on backup or archival media for legal, tax, regulatory reasons, or legitimate business purposes.
For sales customers and prospects, we retain your data as long as we maintain a relationship with you and for a limited period afterward as necessary to meet business and legal requirements.

9. Cookies, Pixel Tags, Local Shared Objects, Web Storage, and Similar Technologies

For more information about our use of cookies and similar tracking technologies, please refer to our Cookie Statement.

10. Your Choices

You have several options regarding your Personal Data:

10.1 Limit the Personal Data You Provide
You can browse the Services without providing Personal Data (other than Automatic Data, if considered Personal Data under applicable laws) or by limiting the Personal Data you provide. However, some functionalities may be unavailable if you choose to limit the Personal Data you provide. For instance, buying tickets requires your name and email address.

10.2 Opt-Out from Electronic Communications
(a) OUTIN Marketing Communications
If you opt-in, OUTIN may send you marketing communications about our Services or events. You can opt-out by clicking the "Unsubscribe" link in any email or by managing your preferences in your account settings.
(b) Organizer-Initiated Communications
Organizers may send you emails through our system. Although we facilitate these emails, we do not control their content or recipient lists. Each email includes an "Unsubscribe" link to opt-out of future communications from that Organizer.
(c) Social Notifications
If you connect your social media accounts, you may receive social notifications. You can manage these by adjusting your social settings or disconnecting the integration.
(d) Transactional or Responsive Communications
Certain communications are necessary, such as emails for ticket delivery or customer support responses. To stop these, you must contact us, but doing so means you won't receive updates or tickets for events.
(e) Retention
Unsubscribe requests may take up to 48 hours to process. Even after unsubscribing, your Personal Data is retained but not used to contact you. However, Organizers who have received your data may still contact you under their own policies.

10.3 Do Not Track
We do not currently respond to "Do Not Track" signals or frameworks.

10.4 Targeted Advertising
OUTIN may work with advertising partners to show targeted ads based on your interests. To opt-out, use the "Do Not Sell or Share My Personal Information" link in our website footer and submit a request through the OUTIN Privacy Center.

11. Exclusions
 
11.1 Personal Data Provided to Others
This Privacy Policy does not apply to any Personal Data that you provide to another User or visitor through the Services or any other means, including to Organizers on event pages or information you post in public areas of the Services.

11.2 Third-Party Links
This Privacy Policy applies only to our Services. Our Services may contain links to other websites not operated or controlled by us ("Third Party Sites"). Our policies and procedures do not apply to these Third Party Sites. Links from our Services do not imply endorsement or review of these sites. Please contact those sites directly for information on their privacy policies.

12. Children - Children's Online Privacy Protection Act

We do not knowingly collect Personal Data from children under the age of thirteen (13). If you are under 13, please do not submit any Personal Data through the Services. We encourage parents and legal guardians to monitor their children's Internet usage and help enforce our Privacy Policy by instructing children not to provide Personal Data through the Services without permission. If you believe a child under 13 has provided Personal Data to us, please contact us, and we will delete that information from our databases.

13. International Privacy Laws
 
If you are visiting the Services from outside the United States, please be aware that your information (including Personal Data) is being sent to the United States where our servers are located. This information may then be transferred within the United States or to other countries outside of your residence. These countries, including the United States, may not have data protection laws as comprehensive as those in your country of residence. However, our collection, storage, and use of your Personal Data will always be governed by this Privacy Policy.

14. Changes to This Privacy Policy
 
The Services and our business may change from time to time. Consequently, we may need to update or modify this Privacy Policy. We reserve the right to update or modify this Privacy Policy at any time ("Modifications"). Modifications to this Privacy Policy will be posted on the Site with a new "Updated" date at the top. In some cases, we may also provide additional notice of such Modifications, such as via email or in-Service notifications. Modifications will be effective thirty (30) days after the "Updated" date or as otherwise communicated.
Please review this policy periodically, especially before you provide any Personal Data. Your continued use of the Services after any Modifications take effect constitutes your acceptance of those Modifications. If any Modification is not acceptable to you, please cease using the Services.

15. Dispute Resolution
 
If you have a complaint about OUTIN's privacy practices, please write to us at:
OUTIN, Inc.
Attn: Privacy Officer
1234 Main Street, City, State, ZIP Code, USA
Email: privacy@outin.events
We will take reasonable steps to work with you to resolve your complaint. Residents of the EEA, Switzerland, or the UK who believe their information has not been processed in compliance with the applicable data privacy frameworks may raise their complaints in various ways. For further information, please see our Data Privacy Framework Notice.

16. EEA, Switzerland, and UK Only

Legal Grounds for Processing Your Personal Data
Under the GDPR, we must inform you about the legal grounds for processing your Personal Data. These include:

• Consent: You have given consent.

• Contractual Necessity: Necessary for our contractual relationship.

• Legal Obligations: Required to comply with legal or regulatory obligations.

• Legitimate Interests: Necessary for our legitimate interests as an event organizing and ticketing platform.
   

Transfers of Personal Data

As a global company, we may transfer your Personal Data outside the country of origin. This includes intra-group transfers or transfers to third parties located in jurisdictions without strict data protection laws. We ensure appropriate safeguards, such as Standard Contractual Clauses and the UK International Data Transfer Addendum (IDTA). More information is available in the Organizer Data Processing Agreement (DPA).
OUTIN has also certified its compliance with the EU-US Data Privacy Framework, the Swiss-US Data Privacy Framework, and the UK Extension to the EU-US Data Privacy Framework.

Personal Data Retention

We retain your Personal Data as long as necessary to provide our Services or for other important purposes like legal compliance, dispute resolution, and enforcing agreements. Typically, we retain your Personal Data for 90 days after account closure or seven years of inactivity.

Your Rights

You have rights regarding the Personal Data we hold, including the right to request copies, corrections, restrictions, deletions, object to profiling, and unsubscribe from marketing communications. Most rights can be exercised through your account settings or browser cookie settings. For additional requests, contact us using the information in Section 15.

OUTIN as a Data Controller and Data Processor

OUTIN may act as either a data controller or data processor. For instance, as a data controller when you create an account, and as a data processor when you register for an event managed by an Organizer. Direct any questions about your Personal Data to the appropriate data controller, typically the event Organizer.