Privacy Policy

Last updated: October 20, 2025

This Privacy Policy for eenvita (hereinafter "we", "us", or "our"), describes how and why we might collect, store, use, and/or share ("process") your information when you use our services ("Services"), such as when you:

  • Visit our website
  • Sign up for an account and use our event management platform

1. Identity and Domicile of the Data Controller

Controller: eenvita

Privacy Contact: privacy@eenvita.com

2. What Information Do We Collect?

We collect personal information that you voluntarily provide to us and data that is collected automatically.

Information you provide to us:

  • Identification and Contact Data: Name, email address, phone number.
  • Account Credentials: Usernames and encrypted passwords.
  • User Content: Profile pictures, details of events you create (including descriptions and announcements), and messages you send through the platform.
  • Sensitive Information: If you are an event organizer, you may choose to provide your home address for a private event. We collect this information with your explicit consent for the sole purpose of sharing it with the confirmed attendees of your event.

Information collected automatically:

  • Usage and Log Data: IP address, browser type, operating system, and information about how you interact with our Services.

3. How and Why Do We Process Your Information?

We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with the law.

To facilitate account creation and authentication

We process your information to allow you to create and access your account.

GDPR Legal Basis: Performance of a contract.

To provide the core Services

  • If you are an organizer, we process your event details to display them on the platform. If you provide a home address, we share it with confirmed attendees with your explicit consent.
    GDPR Legal Basis: Performance of a contract; Explicit consent for sensitive data.
  • If you are an attendee, we process your registration information to confirm your attendance and share your basic data (name, profile picture) with the organizer of the event you sign up for.
    GDPR Legal Basis: Performance of a contract.

To enable user-to-user communication

We facilitate the sending of messages between organizers and attendees.

GDPR Legal Basis: Performance of a contract.

To send marketing communications (with your consent)

We may use your email to send you information about new products or events, if you have given your consent to do so.

GDPR Legal Basis: Consent.

4. Who Do We Share Your Personal Information With?

We share information in specific situations and with the following categories of third parties:

  • Other Users of the Services: We share your name and profile picture with the organizers of the events you sign up for. Contact information (email, phone) is only shared if you consent.
  • Service Providers: We may share your data with vendors who provide services on our behalf, such as payment processors, cloud hosting providers (Microsoft Azure), and email communication services. We contractually require these providers to protect your information.

5. International Data Transfers

Your information is stored and processed on our servers located in Mexico. If we use service providers located in other countries, we will ensure that there are adequate safeguards to protect your information, such as the use of Standard Contractual Clauses approved by the European Commission.

6. How Long Do We Keep Your Information?

We keep your personal information only for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as for tax or accounting reasons). Generally, we will retain your profile data as long as your account is active.

7. What Are Your Privacy Rights?

You have certain rights regarding your personal information. Depending on your location, these may include:

  • Right of Access/To Know: Request a copy of the personal information we hold about you.
  • Right to Rectification/Correction: Request that we correct inaccurate or incomplete information.
  • Right to Erasure/Deletion: Request the deletion of your personal information, subject to certain exceptions.
  • Right to Object/Restrict Processing: Object to our processing of your personal information for certain purposes.
  • Right to Data Portability (for EU residents): Request that we transfer the information you have provided to us to another organization, or to you.
  • Right to Withdraw Consent: If we process your information based on your consent, you can withdraw it at any time.

Specific Section for California Residents (CCPA/CPRA)

You have the right to:

  • Know what personal information we collect, use, disclose, and sell.
  • Request the deletion of your personal information.
  • Opt-out of the "sale" or "sharing" of your personal information.
  • Limit the use and disclosure of your sensitive personal information.
  • Not be discriminated against for exercising your privacy rights.

8. How Can You Exercise Your Rights?

The easiest way to exercise your rights is by visiting the "Privacy Center" in your account settings. You can also contact us at privacy@eenvita.com.

We are committed to responding to your request within the timeframes established by applicable law (usually 30 days or less).

Do You Have Questions or Concerns?

If you have questions or comments about this privacy notice, you can write to us at privacy@eenvita.com.