The protection and security of your Data is particularly important to Livestorm. This Privacy Policy is an integral part of the Terms of Use and is intended to govern the collection, use and access to your Data in connection with the use of the Website and/or the Livestorm Service, including the organization, management and participation in online events. All capitalized terms are defined in the Terms of Use.
Article 1. Legality of Processing – Access to the Website and Services
This Privacy Policy applies to any User who accesses the Website and/or the Livestorm Services. Each User is responsible for reading and understanding this Privacy Policy, including whenever it is modified.
Article 2. Identification of the Data Controller
The Data Controller of the livestorm.co website is: Livestorm, a simplified joint-stock company (société par actions simplifiée) with a capital of 21 301, 72 euros, whose registered office is at 60 rue François 1er, 75008 Paris, registered in the commercial and company register of Paris under the number 820 434 439, represented by its Chief Executive Officer, Mr. Gilles Bertaux.
Article 3. Data collected by Livestorm
Purpose |
Data collected |
Legal basis |
Retention period |
1. Creation and management of your Livestorm account |
• Account Data: password, name, first name, email address;
• Identification Data relating to invoicing: surname, first name and telephone number, postal address enabling a legal entity to be identified;
• Connection Data: IP address, country of connection;
• Bank/payment details: payment card number used for billing or bank details (IBAN);
• Choice of language (English, French or Spanish).
|
Performance of the contract between Livestorm and the User (Article 6.1 b of the GDPR). |
Contract duration plus six (6) months of backup |
2. Improvement of the services offered by Livestorm and audience measurement |
• Connection Data: time, country, ISP, proxies, IP address, UDID, URL, OS resolution;
• Usage and browsing Data.
|
Livestorm’s legitimate interest in analyzing its services in order to provide the best possible user experience (Article 6.1 f of the GDPR). |
Immediate anonymization of Data |
3. Responses to requests from administrative and judicial authorities |
• Technical Data: IP address and user agent. |
The legal obligation of stakeholders defined in Article L. 34-1, II (3) of the French Post and Electronic Communications Code (Article 6.1 a GDPR). |
One (1) year from the date of communication of the Data, and two (2) years in the event of the initiation of legal proceedings (including thirty (30) days of backup) |
4. General security and improvement of the ReCAPTCHA functionality |
• Information about the user’s applications, browsers and devices;
• Information about the user’s activities on the Livestorm service;
• IP address.
|
Livestorm's legitimate interest in securing registration to its services (Article 6.1 f of the GDPR). |
Immediate deletion upon validation by ReCAPTCHA. |
5. Collection of participants' email addresses for marketing purposes
|
• Participants' email addresses ;
|
User consent (Article 6.1 a of the GDPR).
|
Until consent is withdrawn or three (3) years after the last interaction with the user.
|
Article 4. Data collected by Livestorm as a subprocessor
As a subprocessor, Livestorm collects and processes the following Data in order to provide its Services to webinar participants:
- Name, first name;
- Account name (login);
- Email address;
- Interactions with the platform during a webinar;
- Other Data that you voluntarily share on our platform or with the online event organizer.
NB: The webinar created via the Livestorm Service (webinar videos, comments, polls, etc.) can be downloaded by the Customer (Webinar Administrator).
Article 5. Livestorm integration for Google Calendar
For a better experience and in order to provide our Service, Livestorm may require you to provide us, either directly or indirectly, with certain personally identifiable information, including but not limited to, username, and Oauth credentials.
Livestorm Add-on for Google Calendar allows users to create and associate a Livestorm event and set it as a conference solution from a Google Calendar event. On the other side, Livestorm allows users to connect their account with Google Calendar, so that all events with a Livestorm conference are kept in synchronization.
For this purpose, Livestorm collects the following information:
- Title, description;
- Start and end time;
- Invitees;
- Authentication credentials;
- Calendar names.
The information that we request will be retained by us and used as described in this Privacy Policy.
Livestorm uses third party services that may collect information used to identify you. Livestorm uses Google Calendar services in order to collect Data for the following purposes:
- To access the calendar and set up push notifications;
- To recover changes from Google Calendar and synchronize them into Livestorm’s app;
- To update Google Calendar according to changes made on Livestorm’s app;
- To create Livestorm events from the add-on and set it as the event conference solution.
Livestorm stores the collected Data on its database hosted on Amazon AWS servers based in Ireland. The Data is used by Livestorm merely for interacting with the API. Livestorm do not share Data coming from Google Calendar services with any other third party.
Article 6. Specific provisions for Livestorm Community
Livestorm, as the controller, collects and processes your personal data on its community.livestorm.co website for the purpose of creating and managing your Livestorm Community account.
This processing is based on Livestorm's legitimate interest in promoting and creating a community. The data collected by Livestorm at the time of account creation is necessary and collection is mandatory in order to create an account.
These data are retained for the entire duration of the account's activity and are deleted within thirty (30) days upon explicit request. In the event of account closure, the data are retained for six (6) months. In the case of inactivity, the account is deleted within one (1) year from the last activity.
The data originates from the User's Livestorm account and is intended solely for the Livestorm teams that need to know it for the provision of the service and for the purposes outlined above. These data are stored on servers in Ireland.
You may exercise your privacy rights in accordance with Article 9 of this Privacy Policy. If you believe that your rights have not been respected, you have the right to lodge a complaint with the French Data Protection Authority or your local data protection authority.
Article 7. Current and future subprocessors of Livestorm
Livestorm uses third-party solutions for marketing, statistical and functional purposes. All of our service providers comply with applicable Data protection regulations in accordance with the Data protection agreements we have signed with them.
Livestorm uses subprocessors for the following purposes:
- Error log monitoring;
- Analytics;
- Email analysis;
- Support;
- Task automation;
- Payment;
- Email;
- Sound and video.
Article 8. International Data transfers
Livestorm may transfer Data to service providers located outside the European Union.
Therefore, by using Livestorm, you acknowledge that your Data may be transferred and/or stored outside the European Union, including to the United States where some of our service providers are located. These countries may have laws that are less legislation privacy protectors.
In such cases, Livestorm ensures that the transfer is made in compliance with applicable regulations and provides a sufficient level of protection for the privacy and fundamental rights of individuals. Whenever Livestorm transfers Data to countries that have not been subject to an adequacy decision by the European Commission, Livestorm ensures that the transfer is governed by the European Commission's standard contractual clauses and Data processing agreements. If you would like more information on this subject, you can contact Livestorm's Data Protection Officer at privacy@livestorm.co.
Article 9. Rights of Data subjects
In accordance with the applicable regulations, you may exercise the following rights:
- Right of access: you have the right to access the Data we hold about you and to obtain a copy of it;
- Right of rectification: you may request the rectification of your Data that are inaccurate, and also complete them. You can also modify your Data yourself at any time in your account;
- Right to erasure: in certain cases, you may request the deletion of your Data held by us;
- Right to restrict processing: in certain circumstances, you may request to restrict the processing of your Data (for example, where you believe that your Data held by us is not accurate or lawfully processed);
- Right to object: you may object, on grounds relating to your particular circumstances, to the processing of your Data;
- Right to portability: in certain circumstances, you may request to receive your Data in a structured, commonly used and machine-readable format, or, where possible, that we pass your Data on your behalf directly to another controller.
You may edit, delete and access your Data directly through your Livestorm account. Any deletion made through your Livestorm account will result in the final and irreversible deletion of your Data within one (1) month. If Livestorm is unable to delete your Data within one month, Livestorm will notify you and delete your Data within a maximum of two (2) additional months. The deletion of Data is subject to Livestorm's justifiable need to retain the Data, including its legal obligations.
For requests from webinar participants, they should contact the webinar organizer, who is the Data controller of the participants' Data. The webinar organizer will take care of the final deletion of the participant's Data via his dashboard on the Livestorm platform.
If the right to object is exercised, Livestorm will cease processing the Data, except for legitimate and compelling reason(s), or to ensure the establishment, exercise or defense of its legal rights, in accordance with applicable regulations. If necessary, Livestorm will inform the user of the reasons why the rights he exercises cannot be satisfied in whole or in part.
In accordance with the applicable regulations, the user must provide sufficient information for Livestorm to verify his identity, to ensure that the authors of the requests are the persons concerned or those authorized by them. Upon receipt of a request, Livestorm will determine its admissibility in accordance with applicable regulations.
Livestorm will not be required to respond to requests to exercise rights if:
- They are manifestly abusive in particular by their number, their repetitive or systematic nature;
- The Data are not kept by Livestorm making access impossible.
Article 10. Security and confidentiality of Data
Users are advised that Livestorm takes necessary and reasonable technical and organizational measures to ensure the security of the Data to protect it from unauthorized access, alteration, disclosure, misuse and loss. The Data collected by Livestorm is stored in a secure environment. To ensure the security of the Data, Livestorm has put in place the following measures, among others:
- Access management - authorized persons;
- Access management - affected persons;
- Network monitoring software;
- Computer backup;
- Development of digital certificates;
- Login/password;
- Firewalls.
Livestorm employees respect the confidentiality of your Data and are legally bound by confidentiality provisions. Livestorm is committed to ensuring that adequate levels of protection are in place in accordance with applicable legal requirements and regulations.
In the event of a security breach, Livestorm will notify the "Commission Nationale de l’Informatique et des Libertés"("CNIL"), the Data controller and, where applicable, the Data subject, in accordance with the Data protection regulations.
Article 11. Data Protection Officer (DPO)
Livestorm has appointed a Data Protection Officer (DPO). The DPO is responsible for training and raising the awareness of Livestorm's internal staff to maintain the standards required by the GDPR with respect to privacy. The DPO is also responsible for notifying Data subjects of any activities that do not comply with the applicable regulations.
Article 12. Use of Cookies
The User is informed that during his visits to the livestorm.co website and when using the Livestorm solution, a cookie file may be automatically installed on his browser.
The setting of non-essential cookies can be done at any time during the navigation from the cookie management tool. The user is informed that the refusal of certain non-essential cookies reduces or makes it impossible to access certain features of the Livestorm website or the Livestorm solution.
The user has all the rights mentioned above regarding the Data communicated through cookies and under the conditions indicated in Articles 7 and 11.
Users must refrain, with regard to personal information they access or could access, any collection, any misuse in general, any act likely to infringe the privacy or reputation of persons.
Article 13. Contact and exercise of rights
To exercise any of the rights set forth in Article 7 of this Privacy Policy, or if you have any question, you may write to Livestorm’s DPO at the following address:
After contacting Livestorm, if you feel that your rights are not being respected, you have the right to lodge a complaint with the "Commission Nationale de l’Informatique et des Libertés" ("CNIL") or your local Data Protection Authority.