TISCH PRIVACY POLICY

Last Updated: 14 November 2025

This Privacy Policy explains how Tisch (“Tisch”, “we”, “us”, “our”) collects, uses, discloses, and protects personal data when individuals (“users”, “you”) access or use the Tisch platform, website, apps, and related services (“the Platform”).
We are committed to safeguarding your privacy and processing personal data in accordance with the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018.

By using the Platform, you acknowledge that you have read and understood this Privacy Policy.

1. Who We Are

Tisch is a digital event-management platform providing QR check-in, interactive agenda features, table planning, and attendee engagement tools.

Data Controller:
Tisch
Registered Office: Summers Rd, Liverpool, L3 4BL
Email: info@tischevents.com

If you are using Tisch as part of an event organised by a third party (e.g., your employer or event organiser), that organisation may also be a data controller for certain processing activities.

2. Personal Data We Collect

We may collect and process the following categories of personal data when you use the Platform:

2.1 Data You Provide Directly

  • Name

  • Email address

  • Job title or affiliation (if provided)

  • Seating/table preferences

  • Profile details (optional fields added by the user or organiser)

  • Any information submitted during event interactions (surveys, polls, comments)

2.2 Event-Generated Data

  • Check-in and attendance logs

  • Table assignments or networking interactions

  • Agenda selections, session participation, or in-platform actions

2.3 Technical Data

Collected automatically when you access the Platform:

  • IP address

  • Device type, operating system, browser version

  • Log data (timestamps, pages visited, feature usage)

  • Cookies and tracking technologies (see Section 11)

2.4 Data Provided by Event Organisers

Organisers may upload or provide:

  • Attendee lists

  • Email addresses

  • Company names

  • Ticket or registration references

  • Role or classification data (e.g., VIP, staff)

Organisers are responsible for ensuring they have the legal right to share this information with Tisch.

2.5 Special Category Data

We do not intentionally collect special category personal data (such as health information, religious beliefs, or biometric data).
If such data is provided voluntarily (e.g., dietary requirements), it is processed only with explicit consent and limited strictly to the relevant purpose.

3. How We Use Personal Data

We process personal data for the following purposes and lawful bases:

3.1 To Provide and Operate the Platform

Lawful basis: Performance of a contract

  • User authentication

  • Event check-in via QR

  • Table planning and seating logic

  • Real-time agenda updates and notifications

  • Attendee interaction features

3.2 To Communicate With You

Lawful basis: Performance of a contract / Legitimate interests

  • Service updates, security notices

  • Event-related messages from organisers

  • Support responses and troubleshooting

3.3 To Improve and Develop the Platform

Lawful basis: Legitimate interests

  • Usage analytics

  • Product development

  • Bug detection and diagnostics

3.4 To Comply With Legal Obligations

Lawful basis: Legal obligation

  • Responding to requests from regulatory authorities

  • Record retention obligations

  • Preventing misuse or security breaches

3.5 With Your Consent (where required)

Lawful basis: Consent

  • Optional survey responses

  • Optional profile data

  • Cookies requiring consent

We do not sell, rent, or trade personal data.

4. Sharing Your Personal Data

We may share personal data only with the following recipients:

4.1 Event Organisers and Administrators

To allow organisers to manage attendance, plan seating, and monitor engagement.

4.2 Third-Party Service Providers (Processors)

We use trusted providers for:

  • Cloud hosting

  • Analytics and performance monitoring

  • Email or notification delivery

  • Security and authentication

All processors are bound by written Data Processing Agreements ensuring compliance with UK GDPR.

4.3 Professional Advisers

Lawyers, auditors, or consultants under confidentiality obligations.

4.4 Legal or Regulatory Authorities

Where required to comply with law, enforce agreements, or protect user safety.

5. International Data Transfers

Tisch stores and processes personal data primarily within the UK and EU.
If any data is transferred outside these regions, we ensure adequate protection through:

  • UK adequacy decisions

  • Standard Contractual Clauses (SCCs)

  • Supplementary security measures where required

Details of relevant safeguards are available upon request.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes outlined in this Policy or to comply with legal and regulatory obligations. Typical retention periods include:

  • Event data: deleted or anonymised after [insert timeframe – often 90–180 days] unless the organiser requests extension

  • Account information: retained for the duration of your account

  • Technical logs: retained for security and diagnostic purposes for a limited period

Organisers may request earlier deletion of event data.

7. Your Data Protection Rights

Under the UK GDPR, you have the following rights:

  • Right of access

  • Right to rectification

  • Right to erasure (“right to be forgotten”)

  • Right to restrict processing

  • Right to data portability

  • Right to object to processing

  • Right to withdraw consent (where applicable)

  • Right to lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, contact us at:
[insert privacy contact email]

8. Security Measures

We implement technical and organisational measures to protect personal data, including:

  • Encryption in transit (TLS 1.2+) and at rest (AES-256 or equivalent)

  • Role-based access controls

  • Secure UK/EU hosting with continuous monitoring

  • Regular vulnerability scanning and patching

  • Access logging and auditing

  • Staff confidentiality agreements and training

No system is completely secure, but we maintain industry-standard safeguards to mitigate risks.

9. Children’s Privacy

The Platform is not intended for children under 16 unless part of an organiser-managed event with appropriate consent.
We do not knowingly collect data from children without verified consent from a parent, guardian, or responsible organisation.

10. Third-Party Links

The Platform may contain links to external websites or services. We are not responsible for the privacy practices or content of such third parties.

11. Cookies and Tracking Technologies

Tisch uses cookies and similar technologies to:

  • Enable essential platform functionality

  • Improve performance and reliability

  • Analyse usage patterns

Non-essential cookies are only used where you provide consent.
A full Cookie Policy is available separately.

12. Changes to This Privacy Policy

We may update this Policy from time to time to reflect changes in law, technology, or our services.
Material changes will be communicated where required.

The updated version will always be posted on this page with the “Last Updated” date.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:

Tisch Events
Email: info@tischevents.com
Address: Summers Rd, Liverpool, L3 4BL

Stay Updated

We are continuously monitoring any news around privacy compliance and update our systems and legal commitments accordingly. Watch this space for updates and new information as it becomes available.

If you have any questions or concerns about privacy at Tisch., please contact us at info@tischevents.com, we would be happy to help.