Privacy Policy

1. Introduction

Finders Events, LLC ("Finders Events," "we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, retain, and safeguard your information when you access or use our website, mobile applications, APIs, and related services (collectively, the "Platform"). This policy applies to all users, including event hosts and vendors. By using the Platform, you consent to the practices described herein.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly, including: name, email address, phone number, mailing address, event details and preferences (including Concierge sourcing briefs), vendor business information and claim verification details, billing information (payment cards are tokenized and stored by Stripe, not by us), profile photographs, messages sent through the Platform, reviews and ratings, email subscription/unsubscribe preferences, and any other information you choose to provide.

2.2 Information Collected Automatically

When you use the Platform, we automatically collect: IP address, browser type and version, operating system, device identifiers and type, referring URLs, pages visited and features used, date/time of access, clickstream data, location data (with your consent), and performance data.

2.3 Geolocation Data

With your explicit consent (via your browser's location permission prompt), we may access your device's precise geolocation coordinates. We use this data solely on your device to personalize vendor search results by displaying vendors nearest to your location first. Your geolocation data is never transmitted to our servers, stored in any database, shared with third parties, or used for tracking or profiling. It is processed entirely within your browser session and discarded when you leave the page. You may deny or revoke location access at any time through your browser settings, and the Platform will continue to function normally without location-based personalization. We use the OpenStreetMap Nominatim reverse-geocoding service to convert coordinates into a city/state name; this request is subject to OpenStreetMap's privacy policy.

2.4 Information from Third Parties

We may receive information from: social media platforms (when you sign in via Google OAuth), our payment processor Stripe (transaction status, last four card digits, billing country), identity verification services, public business directories used to seed unclaimed vendor listings, and analytics providers.

3. How We Use Your Information

We use your information to: (a) provide, maintain, and improve the Platform; (b) create and manage your account; (c) match you with relevant vendors using AI algorithms; (d) personalize recommendations and search results; (e) process bookings, inquiries, and transactions; (f) facilitate communication between hosts and vendors; (g) send service-related notifications and updates; (h) send promotional communications (with your consent); (i) detect, prevent, and address fraud, abuse, and security issues; (j) comply with legal obligations; (k) analyze usage trends and improve our AI models; (l) enforce our Terms of Service; (m) respond to customer support inquiries.

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), UK, or Switzerland, we process your personal data on the following legal bases: (a) Contract: to perform our obligations under our Terms of Service; (b) Consent: for marketing communications and certain cookies; (c) Legitimate Interests: to improve our services, prevent fraud, and ensure security; (d) Legal Obligation: to comply with applicable laws and regulations.

5. Information Sharing & Disclosure

We may share your information with: (a) Vendors: when you inquire about or book a vendor, we share your contact details and event information; (b) Service Providers: third parties who help operate the Platform (hosting, analytics, payment processing, email delivery, customer support); (c) Business Transfers: in connection with a merger, acquisition, bankruptcy, or sale of assets; (d) Legal Requirements: when required by law, court order, or governmental request; (e) Protection: to protect the rights, safety, or property of Finders Events, our users, or the public; (f) With Consent: with your explicit consent for purposes not listed here. We do not sell your personal information to third parties for their direct marketing purposes.

6. AI & Automated Decision-Making

Our AI planner processes your event descriptions, preferences, and budget to generate vendor recommendations. This processing is necessary to provide our core service. Event prompts and AI-generated plans are stored in your account and may be used in anonymized, aggregated form to improve our AI models. You have the right to request human review of any AI-generated recommendation. We do not use automated decision-making that produces legal effects without human oversight.

7. Cookies & Tracking Technologies

We use: (a) Essential Cookies: required for authentication, session management, and security; (b) Analytics Cookies: to understand Platform usage and performance; (c) Functional Cookies: to remember your preferences; (d) Marketing Cookies: to deliver relevant advertisements (with your consent). You can manage cookie preferences through your browser settings or our cookie consent tool. Note that disabling essential cookies may impair Platform functionality. We honor Do Not Track (DNT) signals from browsers.

8. Data Security

We implement industry-standard security measures including: encryption in transit (TLS 1.2+) and at rest (AES-256); secure authentication with password hashing; regular security audits and penetration testing; role-based access controls; monitoring and logging of access to personal data; employee security training. However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

9. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. After account deletion, we remove personal data within 30 days, except where retention is required by law (e.g., tax records, dispute resolution), for legitimate business purposes (e.g., fraud prevention), or to comply with legal obligations. Anonymized and aggregated data may be retained indefinitely for analytics and AI improvement.

10. Your Rights

Depending on your jurisdiction, you may have the following rights: (a) Access: request a copy of your personal data; (b) Correction: request correction of inaccurate data; (c) Deletion: request deletion of your data ("right to be forgotten"); (d) Portability: receive your data in a structured, machine-readable format; (e) Restriction: request restriction of processing; (f) Objection: object to processing based on legitimate interests; (g) Withdraw Consent: withdraw consent at any time (without affecting prior processing); (h) Non-Discrimination: exercise your rights without discriminatory treatment (CCPA). To exercise these rights, contact us at connect@findersevents.com. We will respond within 30 days (or as required by applicable law).

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA): the right to know what personal information we collect, use, and disclose; the right to delete personal information; the right to opt out of the "sale" or "sharing" of personal information (we do not sell personal information); the right to correct inaccurate information; and the right to limit use of sensitive personal information. California residents may designate an authorized agent to exercise these rights on their behalf.

12. International Data Transfers

Your data may be transferred to and processed in the United States or other countries where our service providers operate. For transfers from the EEA/UK/Switzerland, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other legally recognized transfer mechanisms. By using the Platform, you consent to the transfer of your data to the United States.

13. Children's Privacy

The Platform is not intended for children under 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal data from a child under 18, we will delete it promptly. If you believe we have inadvertently collected such information, please contact us immediately.

14. Third-Party Links & Services

The Platform may contain links to third-party websites, services, or integrations. We are not responsible for the privacy practices of third parties. We encourage you to review the privacy policies of any third-party services before providing personal information.

15. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Platform, sending you an email notification, or through in-app notification. Your continued use of the Platform after changes constitutes acceptance of the updated policy.

16. Contact Us

For privacy-related inquiries, data access requests, or complaints, contact us at:

• Email: connect@findersevents.com
• Mail: Finders Events LLC, P.O. Box 7621, Warner Robins, GA 31088

If you are in the EU/EEA and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.