Last Updated July 14, 2023

Your privacy is very important to us. Accordingly, we have developed this Policy in order for you to understand how we collect, use, communicate, disclose, and make use of personal information. The following outlines our privacy policy.

Before or at the time of collecting personal information, we will identify the purposes for which information is being collected. These purposes include but are not limited to event registration, event experience, event logistics, safety and security, payment processing, event related communications, to improve our products and services, fraud prevention, customer and market analysis, and to deliver more personalized services such as marketing and local event recommendations.

We will collect and use personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.

We will only retain personal information as long as necessary for the fulfillment of those purposes.

We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.

Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.

Leap Conventions has strong data protection controls including encryption of data when being transmitted to sub-processors, in order to protect personal information from unintended disclosure or misuse. We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.

In case of a data breach, appropriate authorities and affected individuals will be notified by Leap Conventions via the appointed Data Protection Officer within 72 hours of the breach.

We will make readily available to customers information about our policies and practices relating to the management of personal information.

Camera: Certain Leap Conventions apps may use camera on an iOS or Android device. Any data from camera and other sensors is neither collected nor distributed by Leap Conventions and is used solely for the purposes of ticketing and registration services. Any personal data collected is saved only to the user's device with user consent and action.

The Leap Conventions /Client Relationship

Leap Conventions acts as a data processor for and on behalf of partners and clients in event management related services included but not limited to registration and ticketing, credit card processing, event data management, etc. Personal data processed by Leap Conventions on behalf of clients are not used by Leap Conventions for any purpose other than the fulfillment of contracted services with said clients, or any other purpose outlined in this privacy policy.

Being that Leap Conventions is an event management and ticketing service provider, customers are permitted to create accounts with Leap Conventions that allow them access to their personal data that has been processed by GrowTix. Access to personal data stored by our clients within the Leap Conventions system can be achieved by creating an account with GrowTix.

Tracking Technologies

As is true of most web sites, we gather certain information automatically and store it in log files. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We do link this automatically collected data to other information we collect about you.

GrowTix and its partners use cookies or similar technologies to analyze trends, administer the website, track users’ movements around the website, and to gather demographic information about our user base as a whole. You can control the use of cookies at the individual browser level, but if you choose to disable cookies, it may limit your use of certain features or functions on our website or service.

We partner with a third party to either display advertising on our web site or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests.

To opt-out of interest-based advertising by participating companies in the following consumer choice mechanisms, please visit:

  • Digital Advertising Alliance (DAA)’s self-regulatory opt-out page and mobile application-based “AppChoices” download page‍
  • European Interactive Digital Advertising Alliance (EDAA)’s consumer opt-out page‍
  • Network Advertising Initiative (NAI)’s self-regulatory opt-out page‍‍

Data Deletion Policy

Data stored within the Leap Conventions systems is collected and processed with an end to service Leap Conventions clients and their customers in event related services. This personal data is defined as necessary data in providing contracted services for Leap Conventions clients and their customers.

GrowTix is a data controller in regard to your user account created within GrowTix. Only an email address and name are required to create an account within Leap Conventions and said account is used to access data that has been processed on behalf of our clients. Leap Conventions accounts will remain active within the system with the purpose of accessing data processed by our clients. You can request for your user account to be removed from the Leap Conventions system by submitting a request to privacy@growtix.com.

Sub-Processors

GrowTix engages with sub-processors, subcontractors and content delivery networks to assist it in providing Leap Conventions Services. In this instance, sub-processors are defined as any entity that processes personal data for and on behalf of Leap Conventions and its clients. It is the responsibility of Leap Conventions to determine that your data is securely processed by our sub-processors.

GrowTix sub-processors and their uses are indicated below:

Google: Analytics data, geocoding.
AWS: Data hosting services.
SmartyStreets: Address verification.
Sendgrid: Email communications with client customers and others as deemed necessary functions within GrowTix.
Twilio: SMS communications with client customers, 2FA, and others as deemed necessary functions within GrowTix.
Stripe.com: Merchant Services
Leap Event Technology: Streaming service and meet and greet service.
Logrocket: Admin session replay and tracking.
Pendo: User behavior tracking and analytics.
Epic Photo Ops: Third party photo op company.
Authorize.net: Merchant services.
Stripe.com: Merchant services.
Propay: Merchant services.
PayPal Merchant services.
Bambora: Merchant services.
Square: Merchant services.
Cybersource: Merchant services.
Google: Analytics.

We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.

California, Virginia, and Applicable U.S. State Law Privacy:

This section of our Privacy Policy supplements the information contained throughout the Privacy Policy and applies solely to visitors, users, and others who reside in the State of California, the Commonwealth of Virginia, or other jurisdictions granted similar rights and setting forth similar requirements as the foregoing jurisdictions. We adopt this notice to comply with the California Consumer Privacy Act of 2018, as amended, (“CCPA”) and other California privacy laws; Virginia’s Consumer Data Protection Act, as amended, and any other similarly structured U.S. state laws that requires this notice under applicable law.

Collection. We collect certain categories of personal information about you. We collect the following types of categories of personal information:

  • Identifiers: including but not limited to name, telephone number, address, email address
  • Commercial Information: including but not limited to financial account information, payment card information, purchase and transaction history;
  • Internet or other electronic network activity information: including but not limited to computer and connection information, IP address, and cookies and other tracking technologies described further above; and
  • Inferences: drawn from the above categories of personal information.
  • Sensitive personal information: account login and password information

Purposes. We collect personal information for the business and commercial purposes set forth in the privacy policy above.

Sources. Consistent with the Privacy Policy above, we collect certain categories of personal data directly from you and, in some circumstances, third parties. The categories of sources that we collect personal data from in the prior 12 months includes the following:

  • Information Collected from Event Attendees;
  • Online advertising networks;
  • Third party websites and mobile applicable (e.g., websites that share information with us or our advertising partners);
  • Our websites; and
  • Your communications with us.

Disclosures to Third Parties. Pursuant to and consistent with the purposes for collecting your information as set forth in this Privacy Policy we disclose certain categories of personal data to third parties who are considered “service providers” or “processors” under applicable law. The categories of personal information we may disclose include:

  • Identifiers: including but not limited to name, telephone number, address, email address
  • Commercial Information: including but not limited to financial account information, payment card information, purchase and transaction history
  • Internet or other electronic network activity information: including but not limited to computer and connection information, IP address, and cookies and other tracking technologies described further above; and
  • Inferences: drawn from the above categories of personal information.

As described in this Privacy Policy above, applicable business purposes for such disclosures include, without limitation, product and service fulfillment, internal operations, prevention of fraud and other harm, and legal compliance.

The categories of third party service providers to which we may share the above categories of information, include, without limitation, payment processing companies, data analytics providers, fraud prevention providers, cloud storage providers, IT service providers, delivery partners, and marketing companies.

In the preceding twelve (12) months, we may have sold or shared personal information or used personal information for targeted advertising purposes; however, we do not use your personal information to profile you in furtherance of decisions that produce legal or significantly similar effects (as defined under applicable law). To the extent applicable law grants you the right to opt-out of the sale of your personal information or the sharing of your personal information for targeted advertising purposes, you can opt-out by submitting information via the DO NOT SELL OR SHARE MY PERSONAL INFORMATION form or by exercising the methods set forth under the “Exercising Your Rights” section below.

Your Rights and Choices

California, Virginia, and other applicable U.S. State laws may grant you certain rights—subject to all applicable limitations, exemptions, or exceptions—regarding our collection and use of your personal information. These rights include, to the extent applicable and to the extent granted under applicable law:

  • The right to confirm whether personal information about you is processed and to access such personal information;
  • The right to request the disclosures of (1) what personal information has been collected; (2) the categories of sources from which the personal information was collected; (3) the business or commercial purpose for collection or selling personal information; (4) the categories of third parties with whom we share personal information; and (5) the specific pieces of personal information we have collected about you, also called data portability;
  • The right to request the deletion of your personal information that we have collected;
  • The right to request the correction of your personal information that we collected;
  • The right to opt-out of targeted advertising and the sharing of personal information that is shared for cross-contextual behavioral advertising purposes;
  • The right to opt-out of the automated profiling of your personal information in furtherance of decisions that produce legal or similarly significant effects concerning you;
  • The right to opt-out of the sale of your personal information;
  • The right to limit our processing of sensitive personal information to what is necessary; and
  • The right to not be discriminated against due to your exercise of your rights under applicable law. We do not discriminate against users for exercising the rights granted to them under applicable law.

The above rights are only exercisable by you where applicable law in the jurisdiction in which you reside actually grants you the right being exerted. When exercising your right to deletion (to the extent applicable), please identify the information that you wish to be deleted and whether you would like to delete your account. Please note that the exercising of your right to deletion will result in the deletion of the personal information that we have collected about you. This may result in our inability to further provide services to you in the future.

Exercising Your Rights. To exercise the rights described above only to the extent applicable law grants you such rights, please submit a verifiable consumer request to:

Email us: privacy@growtix.com

Only you or a registered agent (if and only as permitted under applicable law) that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. If you have a registered agent act on your behalf, we have the right to authenticate such agent’s authority to act. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

Response Timing and Format. Your request will be responded to within 45 days, and in any event, we will respond to you within the timeframe required under applicable law. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

If we deny your request, you can appeal such denial by privacy@growtix.com.

Questions

For questions or comments on this policy email privacy@growtix.com or write Privacy Manager, GrowTix, 10675 Perry Hwy, #1316, Wexford, PA 15090



Do Not Sell or Share My Personal Information