Privacy Policy

The protection and security of your Data is particularly important to Livestorm. This Privacy Policy is an integral part of the Terms of Use and is intended to govern the collection, use and access to your Data in connection with the use of the Website and/or the Livestorm Service, including the organization, management and participation in online events. All capitalized terms are defined in the Terms of Use.

Article 1. Legality of Processing – Access to the Website and Services

This Privacy Policy applies to any User who accesses the Website and/or the Livestorm Services. Each User is responsible for reading and understanding this Privacy Policy, including whenever it is modified.

Article 2. Identification of the Data Controller

The Data Controller of the livestorm.co website is: Livestorm, a simplified joint-stock company (société par actions simplifiée) with a capital of 21 301, 72 euros, whose registered office is at 16 rue Cuvier, 69006 Lyon, registered in the commercial and company register of Paris under the number 820 434 439, represented by its Chief Executive Officer, Mr. Gilles Bertaux.

Article 3. Data collected by Livestorm

Article 4. Data collected by Livestorm as a subprocessor

As a subprocessor, Livestorm collects and processes the following Data in order to provide its Services to webinar participants:

• Name, first name;
• Account name (login);
• Email address;
• IP address;
• Interactions with the platform during a webinar;
• Other Data that you voluntarily share on our platform or with the online event organizer.

NB: The webinar created via the Livestorm Service (webinar videos, comments, polls, etc.) can be downloaded by the Customer (Webinar Administrator).

Article 5. Livestorm integration for Google Calendar

For a better experience and in order to provide our Service, Livestorm may require you to provide us, either directly or indirectly, with certain personally identifiable information, including but not limited to, username, and Oauth credentials.

Livestorm Add-on for Google Calendar allows users to create and associate a Livestorm event and set it as a conference solution from a Google Calendar event. On the other side, Livestorm allows users to connect their account with Google Calendar, so that all events with a Livestorm conference are kept in synchronization.

For this purpose, Livestorm collects the following information:

• Title, description;
• Start and end time;
• Invitees;
• Authentication credentials;
• Calendar names.

The information that we request will be retained by us and used as described in this Privacy Policy.

Livestorm uses third party services that may collect information used to identify you. Livestorm uses Google Calendar services in order to collect Data for the following purposes:

• To access the calendar and set up push notifications;
• To recover changes from Google Calendar and synchronize them into Livestorm’s app;
• To update Google Calendar according to changes made on Livestorm’s app;
• To create Livestorm events from the add-on and set it as the event conference solution.

Livestorm stores the collected Data on its database hosted on Amazon AWS servers based in Ireland. The Data is used by Livestorm merely for interacting with the API. Livestorm do not share Data coming from Google Calendar services with any other third party.

Article 6. Specific provisions for Livestorm Community

Livestorm, as the controller, collects and processes your personal data on its community.livestorm.co website for the purpose of creating and managing your Livestorm Community account.

This processing is based on Livestorm's legitimate interest in promoting and creating a community. The data collected by Livestorm at the time of account creation is necessary and collection is mandatory in order to create an account.

These data are retained for the entire duration of the account's activity and are deleted within thirty (30) days upon explicit request. In the event of account closure, the data are retained for six (6) months. In the case of inactivity, the account is deleted within one (1) year from the last activity.

The data originates from the User's Livestorm account and is intended solely for the Livestorm teams that need to know it for the provision of the service and for the purposes outlined above. These data are stored on servers in Ireland.

You may exercise your privacy rights in accordance with Article 9 of this Privacy Policy. If you believe that your rights have not been respected, you have the right to lodge a complaint with the French Data Protection Authority or your local data protection authority.

Article 7. Current and future subprocessors of Livestorm

Livestorm uses third-party solutions for marketing, statistical and functional purposes. All of our service providers comply with applicable Data protection regulations in accordance with the Data protection agreements we have signed with them.

Livestorm uses subprocessors for the following purposes:

• Error log monitoring;
• Analytics;
• Email analysis;
• Support;
• Task automation;
• Payment;
• Email;
• Sound and video.

Article 8. International Data transfers

Livestorm may transfer Data to service providers located outside the European Union.

Therefore, by using Livestorm, you acknowledge that your Data may be transferred and/or stored outside the European Union, including to the United States where some of our service providers are located. These countries may have laws that are less legislation privacy protectors.

In such cases, Livestorm ensures that the transfer is made in compliance with applicable regulations and provides a sufficient level of protection for the privacy and fundamental rights of individuals. Whenever Livestorm transfers Data to countries that have not been subject to an adequacy decision by the European Commission, Livestorm ensures that the transfer is governed by the European Commission's standard contractual clauses and Data processing agreements. If you would like more information on this subject, you can contact Livestorm's Data Protection Officer at privacy@livestorm.co.

Article 9. Rights of Data subjects

In accordance with the applicable regulations, you may exercise the following rights:

• Right of access: you have the right to access the Data we hold about you and to obtain a copy of it;
• Right of rectification: you may request the rectification of your Data that are inaccurate, and also complete them. You can also modify your Data yourself at any time in your account;
• Right to erasure: in certain cases, you may request the deletion of your Data held by us;
• Right to restrict processing: in certain circumstances, you may request to restrict the processing of your Data (for example, where you believe that your Data held by us is not accurate or lawfully processed);
• Right to object: you may object, on grounds relating to your particular circumstances, to the processing of your Data;
• Right to portability: in certain circumstances, you may request to receive your Data in a structured, commonly used and machine-readable format, or, where possible, that we pass your Data on your behalf directly to another controller.

You may edit, delete and access your Data directly through your Livestorm account. Any deletion made through your Livestorm account will result in the final and irreversible deletion of your Data within one (1) month. If Livestorm is unable to delete your Data within one month, Livestorm will notify you and delete your Data within a maximum of two (2) additional months. The deletion of Data is subject to Livestorm's justifiable need to retain the Data, including its legal obligations.

For requests from webinar participants, they should contact the webinar organizer, who is the Data controller of the participants' Data. The webinar organizer will take care of the final deletion of the participant's Data via his dashboard on the Livestorm platform.

If the right to object is exercised, Livestorm will cease processing the Data, except for legitimate and compelling reason(s), or to ensure the establishment, exercise or defense of its legal rights, in accordance with applicable regulations. If necessary, Livestorm will inform the user of the reasons why the rights he exercises cannot be satisfied in whole or in part.

In accordance with the applicable regulations, the user must provide sufficient information for Livestorm to verify his identity, to ensure that the authors of the requests are the persons concerned or those authorized by them. Upon receipt of a request, Livestorm will determine its admissibility in accordance with applicable regulations.

Livestorm will not be required to respond to requests to exercise rights if:

• They are manifestly abusive in particular by their number, their repetitive or systematic nature;
• The Data are not kept by Livestorm making access impossible.

Article 10. Security and confidentiality of Data

Users are advised that Livestorm takes necessary and reasonable technical and organizational measures to ensure the security of the Data to protect it from unauthorized access, alteration, disclosure, misuse and loss. The Data collected by Livestorm is stored in a secure environment. To ensure the security of the Data, Livestorm has put in place the following measures, among others:

• Access management - authorized persons;
• Access management - affected persons;
• Network monitoring software;
• Computer backup;
• Development of digital certificates;
• Login/password;
• Firewalls.

Livestorm employees respect the confidentiality of your Data and are legally bound by confidentiality provisions. Livestorm is committed to ensuring that adequate levels of protection are in place in accordance with applicable legal requirements and regulations.

In the event of a security breach, Livestorm will notify the "Commission Nationale de l’Informatique et des Libertés"("CNIL"), the Data controller and, where applicable, the Data subject, in accordance with the Data protection regulations.

Article 11. Data Protection Officer (DPO)

Livestorm has appointed a Data Protection Officer (DPO). The DPO is responsible for training and raising the awareness of Livestorm's internal staff to maintain the standards required by the GDPR with respect to privacy. The DPO is also responsible for notifying Data subjects of any activities that do not comply with the applicable regulations.

Article 12. Use of Cookies

The User is informed that during his visits to the livestorm.co website and when using the Livestorm solution, a cookie file may be automatically installed on his browser.

The setting of non-essential cookies can be done at any time during the navigation from the cookie management tool. The user is informed that the refusal of certain non-essential cookies reduces or makes it impossible to access certain features of the Livestorm website or the Livestorm solution.

The user has all the rights mentioned above regarding the Data communicated through cookies and under the conditions indicated in Articles 7 and 11.

Users must refrain, with regard to personal information they access or could access, any collection, any misuse in general, any act likely to infringe the privacy or reputation of persons.

Article 13. Contact and exercise of rights

To exercise any of the rights set forth in Article 7 of this Privacy Policy, or if you have any question, you may write to Livestorm’s DPO at the following address:

• By post:
  Livestorm
  16 rue Cuvier,
  69006 Lyon
• By e-mail: privacy@livestorm.co

After contacting Livestorm, if you feel that your rights are not being respected, you have the right to lodge a complaint with the "Commission Nationale de l’Informatique et des Libertés" ("CNIL") or your local Data Protection Authority.