GDPR

GDPR Compliance

How we protect your data under the General Data Protection Regulation

Last updated: January 2025

Our Commitment to Your Privacy

At Drive My Events, we are committed to protecting your personal data and ensuring compliance with the General Data Protection Regulation (GDPR). This page explains your rights and how we handle your data.

Your Rights Under GDPR

Right to Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can ask us to correct any inaccurate or incomplete data.

Right to Erasure

You can request deletion of your personal data ("right to be forgotten").

Right to Data Portability

You can receive your data in a structured, machine-readable format.

Right to Restrict Processing

You can limit how we use your data in certain circumstances.

Right to Object

You can object to processing based on legitimate interests or direct marketing.

Data We Collect

We collect and process the following categories of personal data:

Identity Data

  • Name
  • Email address
  • Phone number
  • Profile photo

Event Data

  • Event details
  • Guest lists
  • Vendor information
  • Budgets

Technical Data

  • IP address
  • Browser type
  • Device information
  • Usage logs

Communication Data

  • Messages
  • Support tickets
  • Feedback
  • Preferences

Lawful Basis for Processing

We process your personal data under the following legal bases:

Contract Performance

Processing necessary to provide our services to you.

Legitimate Interests

Processing for our legitimate business interests (security, improvement).

Consent

Where you have given explicit consent for specific processing.

Legal Obligation

Processing required to comply with applicable laws.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected. Account data is retained while your account is active and for 30 days after deletion request. Event data may be retained longer for legal compliance.

International Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

Data Security

We implement industry-standard security measures including encryption in transit and at rest, regular security audits, access controls, and continuous monitoring to protect your personal data.

Data Protection Officer

For any GDPR-related inquiries or to exercise your rights, please contact our Data Protection Officer:

privacy@drivemyevents.com

Submit a Data Request

You can submit a data access, correction, or deletion request by contacting us. We will respond within 30 days as required by GDPR.

Submit Request