Home
Introduction & Scope
Data Subjects Covered
Definitions & Legal Basis
Categories of Data We Collect
Purposes of Processing & Use of Data
Cookies & Tracking Technologies
Data Sharing & Transfers
Retention of Data
Your Rights & How to Act
Security & Data Breach Notification
Children & Email Policy
Changes to This Policy
Supervisory Authority & Complaints
Privacy Policy Terms of Use Community Guidlines Event Delegate Terms & Conditions Events Code of Conduct

HYPERIGHT PRIVACY POLICY

Effective Date: 29 September 2025

Data Controller:
Hyperight AB
Org. No. 559010‑7842
Regeringsgatan 70A, lgh. 1103
11139 Stockholm, Sweden
Contact Email: privacy@hyperight.com

  1. Introduction & Scope
    1. Hyperight is an event and media organization dedicated to enabling knowledge sharing, professional development, and innovation.
    2. This Privacy Policy explains how we collect, use, store, disclose, and protect your personal data across our platforms, events, and services.
    3. The Policy applies to all individuals interacting with Hyperight: event participants, visitors, speakers, sponsors, subscribers, and users of our services.
    4. Specific events may require additional consents or stipulations beyond this general Policy.
    5. Each Hyperight event may have a separate Event Data Privacy Policy, which governs data processing, consent, and usage for that particular event. Delegates must review and accept the applicable Event Data Privacy Policy at registration.
  2. Data Subjects Covered

    This policy applies to the personal data of:

    • Event attendees, delegates, registrants
    • Speakers, contributors
    • Subscribers (Free or Premium)
    • Visitors to Hyperight platforms or services
    • Sponsors, exhibitors, partners
    • Press, media contacts
    • Any individuals whose data is collected via Hyperight operations
  3. Definitions & Legal Basis
    1. Personal Data means any information relating to an identified or identifiable natural person (e.g. name, email, IP address).
    2. Sensitive Personal Data (e.g. health, political beliefs) is not collected unless explicitly permitted and with consent.
    3. Under GDPR, our lawful bases for processing your data include:
      • Consent (for marketing, sponsor sharing)
      • Performance of a contract (for membership, event delivery)
      • Legal obligation (e.g. tax, accounting)
      • Legitimate interest (analytics, security, communications), balanced against your rights
  4. Categories of Data We Collect
    1. Data You Provide Directly
      • Registration data: name, company, job title, corporate email, phone
      • Event registration choices and preferences
      • Speaker submissions, bios, presentation materials
      • Survey responses and feedback
      • Profile / interest data
    2. Automatically Collected Data
      • Usage metrics: pages visited, session durations, clicks
      • Device / browser metadata: IP, OS, device type, referrer
      • Cookie tracking and analytic logs
    3. Third-Party Embeds & Tracking
      • Embedded content (YouTube, Dropbox, etc.) may collect data per their policies
      • Advertising platforms (Meta, LinkedIn, Microsoft) may set retargeting pixels
    4. Minimal & Event-Specific Data
      • We do not collect sentiment or health data routinely
      • Dietary preferences or accessibility needs may be collected for events but used solely for that event and not stored beyond what is necessary
  5. Purposes of Processing & Use of Data

    We use your data to:

    • Operate and manage your hyperight.com account and membership
    • Enable event registration, logistics, and attendance
    • Send transactional and informational communications
    • Provide marketing content (where consented)
    • Perform analytics, site improvement, and error diagnosis
    • Share data with sponsors/partners (only with your opt-in)
    • Comply with legal obligations
    • Ensure security, fraud prevention, and resolving disputes
  6. Cookies & Tracking Technologies
    1. We use cookies, pixels, and related technologies to optimize your experience and analyze usage.
    2. Cookie types include:
      • Strictly necessary (core functionality)
      • Performance / analytics (Google Analytics, Mixpanel, Hotjar)
      • Functional (preferences)
      • Advertising / retargeting (Meta, Microsoft, LinkedIn)
    3. You see a cookie banner at first visit. Acceptance or continued use indicates consent. You may adjust or refuse cookies via settings or browser controls, but some features may not work fully.
  7. Data Sharing & Transfers
    1. We share data with:
      • Service providers and subprocessors (hosting, CRM, email) under data processing agreements
      • Event sponsors or partners (if you consent during event registration)
      • Payment processors for transactional data
      • Legal or regulatory authorities when required
      • In business restructuring events (merger, acquisition)
    2. International Transfers
      • Personal data is stored in EU data centers
      • Employees in North Macedonia access data under DPA and secure protocols
      • When data is processed outside the EEA, we enforce safeguards such as contractual clauses
  8. Retention of Data
    1. Transactional or financial data is retained according to Swedish and EU legal requirements (e.g. tax, accounting).
    2. All other personal data is retained until you request deletion or it becomes irrelevant.
    3. We periodically anonymize or purge outdated data.
    4. Event-specific data (recordings, logs, surveys) is retained as per event policy and legal limits.
  9. Your Rights & How to Act

    You have the right to:

    • Access your personal data
    • Correct inaccurate or incomplete data
    • Request deletion (unless legally required to retain)
    • Restrict or object to processing
    • Withdraw consent (for marketing, sharing, etc.)
    • Request data portability

    To exercise these rights, email privacy@hyperight.com or use your account settings (if enabled). We may request identity verification. We aim to respond within GDPR timeframes (e.g. 30 days).

  10. Security & Data Breach Notification
    1. We adopt technical and organizational measures (SSL, encryption, access controls, 2FA) to protect personal data.
    2. Data is stored in systems with 2FA (e.g., Google Drive, HubSpot).
    3. If a personal data breach occurs, we will notify the Swedish Data Protection Authority and affected individuals within 72 hours as required, unless exceptions apply.
  11. Children & Email Policy
    1. You must be at least 18 years old to register.
    2. We do not knowingly collect data from individuals under 18; discovered data will be deleted.
    3. We require corporate email addresses only; use of personal email domains (Gmail, Hotmail, etc.) may lead to rejection or removal.
  12. Changes to This Policy

    We may update this Privacy Policy to reflect changes in legal or operational requirements. For material changes, we will notify users via email or platform notice. Continued use indicates acceptance of the updated policy.

  13. Supervisory Authority & Complaints

    You may lodge complaints with the Swedish Data Protection Authority (“Datainspektionen”) or your local DPA if you believe our processing is unlawful.