Start free
Home/Legal/Privacy
Legal

Privacy policy.

How ConfDay collects, uses, and protects your information.

Unified privacy policy for the ConfDay website, organizer portal, and mobile application. Drafted for U.S.-focused operations as of March 20, 2026.

1. Scope of This Privacy Policy

This Privacy Policy applies to the ConfDay website, any ConfDay-branded organizer or customer portal, public event pages powered by ConfDay, and any ConfDay mobile application that references this Privacy Policy (collectively, the "Service").

This Privacy Policy applies to information collected online and through digital interactions with the Service, including when users browse the website, create accounts, manage organizer/company settings, publish event content, use mobile app features, contact support, or otherwise interact with ConfDay.

This Privacy Policy does not apply to third-party services, websites, applications, or payment pages that are not operated by ConfDay, even if linked from the Service. Organizers may also provide their own event-specific notices, disclosures, or policies. When organizer customers control event registration or participant data, those organizer customers are responsible for the notices and permissions applicable to their events.

2. Who We Are and How Roles Work

ConfDay is intended to operate as an organizer-first conference management platform. Depending on the context, ConfDay may act in different roles with respect to personal information.

For website operations, account administration, organization setup, service security, billing operations, support, product administration, and similar business functions, ConfDay generally acts as the business responsible for those processing activities.

For organizer-controlled event data entered into the platform by a customer - such as attendee, speaker, sponsor, exhibitor, schedule, session, and public event content data - ConfDay generally acts as a service provider or processor on behalf of the organizer/customer, subject to the organizers instructions, platform settings, and applicable law.

If an organizer chooses to publish conference details, schedules, speaker profiles, sponsor logos, venue details, or similar content through public pages or the mobile app, that content may become publicly accessible at the organizers direction.

3. Information We Collect

  • Account and profile information, such as name, company or organization name, email address, login credentials, role, administrative permissions, and related business contact details.

  • Organization and conference setup information, such as conference names, event descriptions, dates, locations, schedules, speaker/session content, sponsor information, exhibitor information, links, uploaded materials, and similar event-management content.

  • Billing and commercial information needed to support organizer purchases, such as company billing contacts, plan selections, subscription details, one-time per-conference purchase details, credits, invoices, and limited transaction metadata returned by the payment processor.

  • Communications and support content, such as messages sent to ConfDay, customer support requests, implementation questions, bug reports, and administrative correspondence.

  • Mobile app or participant profile details that a user chooses to submit, such as display name, schedule preferences, saved sessions, speaker favorites, profile photo, or similar optional settings, if those features are enabled.

  • Participant, speaker, sponsor, exhibitor, volunteer, or staff data that organizer customers or their authorized users enter into the Service.

  • Public event content such as conference descriptions, schedules, session abstracts, speaker bios, speaker photos, venue information, sponsor logos, sponsor links, exhibitor listings, and promotional materials.

  • Organizer-directed notifications and other event communications delivered through the Service where such functionality is enabled.

  • Technical and device information such as IP address, browser type, mobile operating system, device identifiers permitted by the operating system, app version, referral URLs, and general regional information derived from IP address.

  • Operational log data such as sign-in events, session activity, time stamps, navigation events, security events, configuration changes, error logs, and troubleshooting records reasonably necessary to run, secure, and support the Service.

  • Essential cookies and similar technologies used for authentication, session continuity, security, fraud prevention, load balancing, and user preferences. ConfDay may also use similar technologies in the mobile app or web experience to preserve settings or ensure core functionality.

  • Payment processor information from third-party payment providers such as Stripe, including limited payment status, transaction identifiers, and similar confirmation details. ConfDay does not intend to store full payment card numbers.

  • Platform and marketplace information from Apple, Google, browser vendors, and hosting or delivery providers to support app distribution, notifications, account security, and service delivery.

  • Information from organizer customers or publicly available sources when needed to populate or validate organizer-created public event content.

4. How We Use Information

  • To provide, operate, host, secure, maintain, and improve the Service and its core organizer, website, public event, and mobile functionality.
  • To create and administer accounts, organization workspaces, administrator permissions, event configurations, and organizer billing relationships.
  • To publish and display organizer-directed public event content, including conference pages, schedules, speaker information, sponsor information, and related materials.
  • To process organizer subscriptions, one-time per-conference purchases, credits, invoices, renewals, and related commercial operations through third-party processors.
  • To send transactional or service communications, such as password resets, verification messages, account notices, billing notices, service announcements, event-related notifications, and support responses.
  • To troubleshoot performance, investigate misuse, protect against fraud or unauthorized access, enforce policies and agreements, and comply with legal obligations.
  • To maintain internal business records, resolve disputes, protect rights and property, and support corporate transactions or reorganizations.

5. How We Disclose Information

ConfDay does not sell personal information and does not share personal information for cross-context behavioral advertising in the current MVP model. ConfDay also does not use targeted advertising for the current MVP model.

ConfDay may disclose personal information in the following circumstances:

  • Service providers and vendors that support hosting, infrastructure, authentication, payment processing, email delivery, push notifications, monitoring, support, and related operational functions, subject to appropriate contractual restrictions.
  • Organizer customers and their authorized users when the information relates to their event operations, organization workspace, or participant data they control through the Service.
  • Publicly, when an organizer or authorized user chooses to publish event content, schedules, speaker bios, sponsor information, venue information, logos, links, or similar materials on public event pages or in the mobile app.
  • Professional advisors, auditors, insurers, payment processors, and financing, legal, tax, or accounting counterparties where reasonably necessary for business operations or rights protection.
  • Government authorities, courts, law enforcement, or other parties where required by law, subpoena, court order, or where reasonably necessary to detect, prevent, or respond to fraud, security incidents, unlawful conduct, or threats to rights, property, or safety.
  • Potential buyers, investors, lenders, or transaction counterparties in connection with an actual or proposed merger, acquisition, financing, asset sale, restructuring, or similar corporate transaction, subject to customary confidentiality protections.

6. Public Event Content and Organizer-Controlled Data

ConfDay is designed to support organizer-managed conference information. Organizers may choose to make certain content publicly visible, including event descriptions, schedules, speaker names and bios, speaker photos, sponsor logos, sponsor links, exhibitor content, venue information, and similar event materials.

Organizer customers are responsible for determining what content to publish, obtaining necessary rights and permissions, providing any required privacy notices, and obtaining any required consents for participant, speaker, sponsor, exhibitor, or minor-related data used in connection with their events.

If a user believes public event content is inaccurate, unauthorized, or infringes rights, the user may contact ConfDay at privacy@confday.com or legal@confday.com. ConfDay reserves the right to remove or restrict content where appropriate.

7. Cookies, Similar Technologies, and Do Not Track

ConfDay uses essential cookies and similar technologies needed to authenticate users, secure sessions, maintain preferences, support load balancing, and provide core website and portal functionality. ConfDay may use comparable technologies in the mobile app to preserve settings, sign-in state, or event selections.

The current MVP draft is intentionally narrow and does not assume targeted advertising technologies or expanded analytics beyond what is reasonably necessary to operate, secure, and troubleshoot the Service. If ConfDay later adds broader analytics, advertising, or optional tracking technologies, ConfDay may update this Privacy Policy and related cookie disclosures.

Because there is not a universally accepted standard for how to interpret browser-based Do Not Track signals, the Service may not respond differently to all such signals. ConfDay does not currently use the Service for cross-context behavioral advertising in the MVP model.

8. Payments and Financial Information

Organizer payments are expected to be processed by a third-party payment processor such as Stripe. ConfDay may receive limited payment-related information, such as transaction status, subscription status, billing contact details, partial payment method descriptors, invoice references, and similar metadata needed for account administration.

ConfDay is not intended to store full payment card numbers, full bank account numbers, or similarly sensitive payment credentials. Payment information submitted through a third-party processor is subject to that processors own terms and privacy practices.

9. Mobile Application and Notifications

If ConfDay provides a mobile application, the app may allow users to view conference information, schedules, speakers, sponsors, public event content, and personalized features such as saved sessions or notifications, if enabled. The app may also collect device and service-operation data reasonably necessary to provide the app, maintain sign-in, secure the Service, and deliver notifications.

ConfDay may send transactional or event-related push notifications, such as account alerts, event updates, or organizer-directed notifications where enabled. Users can typically control device-level push notification settings through their operating system. Turning off notifications may limit certain app functionality.

10. Childrens Privacy and Age Restrictions

ConfDay is not directed to children under 13. ConfDay does not intend to knowingly collect personal information directly from children under 13 through the Service in the ordinary course of its MVP operations.

Organizer accounts, company administrator accounts, and similar portal management roles are intended only for individuals who are at least 18 years old and able to enter into binding agreements on behalf of themselves or their organizations.

Organizer customers may, depending on the event and applicable law, use the Service in connection with participant, speaker, or attendee roles involving minors. In those cases, the organizer is responsible for determining whether participation is permitted, obtaining required notices and consents, and complying with applicable law. If ConfDay learns that personal information has been collected from a child in a manner inconsistent with this Privacy Policy or applicable law, ConfDay may take steps to delete or restrict that information.

11. Sensitive Data Restrictions

ConfDay is not designed for the storage of highly sensitive or regulated personal information such as Social Security numbers, government-issued identification numbers, full payment card data, full bank account details, drivers license numbers, passport numbers, medical or health information, biometric information, or other similarly sensitive categories unless ConfDay expressly states otherwise in writing.

Organizer customers and users should not upload, submit, or store such data in the Service unless and until ConfDay expressly supports that use case under separate documentation and controls.

12. Security

ConfDay uses administrative, technical, and physical safeguards that are reasonably designed to protect personal information appropriate to the nature of the information and the Service. These safeguards may include access controls, authentication protections, role-based permissions, encryption in transit where appropriate, vendor management, logging, and incident response processes.

No system or transmission method is completely secure. Users and organizer customers are also responsible for using strong credentials, safeguarding account access, limiting administrator access appropriately, and promptly notifying ConfDay of suspected unauthorized activity.

13. Data Retention

ConfDay retains personal information for as long as reasonably necessary to provide the Service, maintain the business relationship, secure and support the platform, comply with legal obligations, resolve disputes, and enforce agreements.

For organizer/customer accounts that cancel or do not renew, ConfDays intended default model is to maintain the account through the end of the paid term, then provide a 30-day read-only export or retrieval window where feasible. After that window, ConfDay intends to delete or de-identify customer content from active systems within approximately 60 days, subject to technical constraints, backups, legal holds, disputes, security needs, and legitimate business recordkeeping.

Deleted information may remain in secure backups for a limited additional period and will then age out through normal backup rotation. ConfDay may retain limited billing, tax, accounting, fraud-prevention, support, and legal-enforcement records as reasonably necessary.

14. Your Choices and U.S. Privacy Rights

Users may update certain account information through their account settings or by contacting ConfDay. Organizer customers may also control much of the event-related information they enter, publish, or remove through administrator functionality, subject to the Service design and retention practices.

Users may opt out of non-essential marketing emails if ConfDay later offers them. For the current MVP model, ConfDay assumes only transactional or service communications such as security, billing, support, and event-related service notices.

Depending on where a user lives, state privacy laws may provide rights such as the right to request access to personal information, request correction, request deletion, or appeal certain request outcomes, subject to lawful limitations. ConfDay will evaluate verified requests in accordance with applicable law. To submit a request, contact privacy@confday.com.

ConfDay does not sell personal information and does not share personal information for cross-context behavioral advertising in the current MVP model. If that changes, ConfDay expects to update its disclosures and any required rights mechanisms.

15. Changes to This Privacy Policy

ConfDay may update this Privacy Policy from time to time to reflect changes in the Service, legal requirements, business practices, or technical operations. ConfDay will post the updated version with a revised effective or last-updated date and may provide additional notice when changes are material.

Continued use of the Service after an updated Privacy Policy becomes effective means the user acknowledges the revised policy to the extent permitted by law.

16. Contact Information

ConfDay, LLC (planned legal entity) PO Box 612 Hatboro, PA 19040 United States

Privacy requests and questions: privacy@confday.com

General support: support@confday.com

Legal notices: legal@confday.com