Introduction

We are committed to protecting your privacy and ensuring that your personal data is collected and processed responsibly, transparently, and in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website, register for the Amber Rally event, or communicate with us in any way.

1. Information We Collect

We collect information in two primary ways:

a. Information collected automatically

When you visit our website, certain data may be collected automatically through cookies, analytics tools, and other technologies. This may include:

• IP address

• Browser type and version

• Device type and operating system

• Date, time, and duration of website visits

• Pages viewed and navigation paths

• Referral source (how you arrived at our website)

• General location data (non-identifiable)

This information is collected to ensure the smooth technical functioning of the website, improve performance, enhance security, and generate anonymous statistical insights about user behavior.

b. Information you provide voluntarily

When interacting with us, you may choose to provide personal information voluntarily, including:

• Full name

• Email address

• Phone number (if provided)

• Event registration details (e.g., vehicle information, travel preferences)

• Any additional details you submit via contact forms, surveys, or email communication.

2. How We Use Your Data

We may use your personal data for the following purposes:

• To process and manage event registrations

• To communicate with participants regarding event updates, confirmations, or changes

• To provide customer support and respond to inquiries

• To analyze website traffic and usage patterns for improving our services

• To maintain the website’s technical functionality and security

• To send newsletters or marketing communications (only when you’ve consented to receive them)

• To comply with legal obligations and regulations applicable to event organization

3. Legal Basis for Processing

We process your data based on the following legal grounds:

• Your consent (when you voluntarily provide personal information)

• Performance of a contract (e.g., event registration and participation)

• Legitimate interests (e.g., website maintenance, service improvement, communication with participants)

• Legal obligations (e.g., record keeping, invoicing, or compliance with authorities).

4. Cookies and Analytics

Our website uses cookies and similar technologies to:

• Ensure proper website functionality

• Enhance user experience

• Collect aggregated statistical data to improve performance

• Support marketing and communication efforts (where applicable).

You can manage or disable cookies through your browser settings at any time. Note that disabling cookies may affect some website features.

5. Data Storage and Retention

We store personal data only as long as necessary for:

• Event organization and administration,

• Legal and accounting obligations, and

• Improving our services and user experience.

We regularly review our data retention periods and securely delete or anonymize data that is no longer required.

6. Data Sharing and Disclosure

We do not sell or rent your personal information.
We may share your data with:

• Authorized event staff and partners directly involved in event organization,

• Service providers (e.g., website hosting, analytics, email delivery platforms),

• Legal authorities when required by law.

All partners and service providers are required to handle data in compliance with GDPR and maintain appropriate security measures.

7. Data Security

We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, misuse, or disclosure.
These include:

• Secure encrypted connections (SSL/TLS)

• Limited access to personal information

• Regular system updates and monitoring.

8. Your Rights

Under GDPR, you have the right to:

• Access the personal data we hold about you

• Request correction of inaccurate or incomplete information

• Request deletion of your data (“right to be forgotten”)

• Withdraw consent at any time (where applicable)

• Object to or restrict certain types of processing

• Receive a copy of your data in a structured format (data portability).

9. International Data Transfers

If any data is transferred outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place to protect your privacy in accordance with GDPR.

10. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal obligations.