CONSENT: By using the Platform and related services, or allowing or directing someone to use the Platform and related services on your behalf, you are voluntarily consenting to our collection, use, disclosure, transfer and storage of any Personal Data, and other related information received by us as a result of such use. We may share your Personal Data with third parties for third party marketing purposes. You can elect for us not to do so by emailing us at email@example.com. For more information, see “Our Disclosure of Information We Collect”, below.
- registered users who are event managers and planners (“Managers”)
- users who want to purchase event entry, register for or donate to events (whether free or paid) listed by Managers on the Platform (“Registrants”), and
- other non-Manager users, or visitors, to the Platform (“other non-managers”).
Information We Collect:
When you interact with us through the Platform, we may collect Personal Data and other information from you or someone on your behalf, as further described below:
1. Personal Data
Managers: We collect Personal Data from you when you voluntarily provide such information to the Platform, such as when you register for access to the Platform as a Manager, contact us with inquiries, or use the Platform to manage an event or activity. The Personal Data we may collect includes without limitation your name, address, email address and other personally identifiable information. In some cases we may collect your credit card information (e.g., your credit card number and expiration date, billing address, etc.), some of which may constitute Personal Data, to secure certain payments. In addition, if you use our payment processing services, we will collect financial information from you (e.g., your bank account information or an address ) as necessary to facilitate payments and information required for tax purposes (e.g., your taxpayer identification number).
2. Non-Personal Data:
Non-Identifiable Data: When you interact with the Platform, we collect certain personally non-identifiable information (“Non-Personal Data”). The Non-Personal Data we collect includes without limitation Internet Protocol (IP) addresses, Internet browser type, other characteristics of your device and software, domain names of your Internet Service Provider, your approximate geographic location, a record of your usage of the Platform, the time of your usage and aggregated Personal Data that cannot be used to specifically identify you. Such information, which is collected passively using various technologies, cannot, in and of itself, be used to specifically identify you. We also collect Non-Personal Data (including, without limitation, of the type set forth above) from third parties. The information we collect from third parties may be combined with the information we collect.
- receive notifications when you are receiving new cookies
- disable cookies, and/or
- delete cookies
Please refer to your web browser’s help section for information on how to do this. We recommend that you leave cookies turned on because they allow you to take advantage of some of the features of the Platform.
The following first-party cookies may be placed on your computer or device:
|Name of Cookie||Purpose||Strictly Necessary|
|Session Cookie||Stored in temporary memory and is not retained after the browser is closed. Session cookies do not collect information from the user’s computer. Information is stored in the form of a session identification that does not personally identify the user.||Yes|
|Language Cookie (also referred to as a permanent or stored cookie)||Stored on a user’s hard drive until it expires or until the user deletes the cookie. Language cookies are used to store user data relating to their language preference.||Yes|
The following third-party cookies may be placed on your computer or device:
|Name of Cookie||Purpose||Strictly Necessary|
|To enable Facebook to offer the Facebook Products to you and to understand the information they receive about you, including information about your use of other websites and apps, and whether or not you are registered or logged in.||Yes|
|To deliver, measure, and improve the Twitter services in various ways.||Yes|
|Amazon||Associating a user’s session to a specific EC2 instance behind the load balancer.||Yes|
|Stripe||To identify and protect against fraud.||Yes|
In addition to the types of cookies described above, we may also use local shared objects, also known as “Flash cookies,” and HTML5 Local Storage for various purposes, including fraud prevention, ticketing queue management, and to display content (both on and off the Platform) based upon what you view on the Platform. Local shared objects and HTML5 Local Storage are different from cookies described above. Cookie management tools provided by your browser may not remove local shared objects or HTML5 Local Storage.
Our Use of Information That We Collect:
1. Personal Data
Specific Reason: If you provide Personal Data for a certain reason, we may use the Personal Data in connection with the reason for which it was provided. For instance, if you contact us by email, we will use the Personal Data you provide to answer your question or resolve your problem and will respond to the email address from which the contact came. If you provide credit card information, or other financial account information, we will use it to process payments through payment processing providers. Payment processors will comply with payment card industry (“PCI”) standards for data security and privacy.
Access and Use: If you provide Personal Data in order to obtain access to or use of the Platform or any functionality thereof, we will use your Personal Data to provide you with access to, or use of, the Platform or functionality, and to monitor your use of such Platform or functionality. For instance, if you supply payment information (e.g., bank account or credit card information) to the Platform for the purpose of registering as a Registrant, or processing payments as a Manager, we will use that information to facilitate such purchase, or process such payments, as well as determine whether to provide our services to you.
Internal Business Purposes: We may use your Personal Data for internal business purposes, including without limitation, to help us improve the content and functionality of the Platform, to better understand our users, to improve the Platform, to protect against, identify or address fraudulent or inappropriate activities, to enforce our Terms of Service, to manage your account and provide you with customer service, and to generally manage the Platform and our business.
Manager Emails: We allow Managers to use our email system and tools, as well as Registrants’ email addresses, to contact Registrants for their current and past events, and other communications as described above, so you may receive emails from our system that originate with such Managers, as well as directly from such Managers. The Manager, and not Race Roster, is responsible for the content and sending of these emails. A Registrant will always be provided with the ability to Opt Out from Electronic Communications.
2. Non-Personal Data:
Because Non-Personal Data cannot be used to personally identify you, we may use non-personal data for any lawful purpose.
Our Disclosure of Information That We Collect:
1. Personal Data
In jurisdictions where permissible, we may sell or share your Personal Data to third parties, including third party advertisers, whom we think may provide products or services that may be of interest to you. If we do so, we will always ask such third parties to provide you an opportunity to opt out from receiving such communications.
|Categories of third parties with which we may share personal data|
|Athletic apparel brands||Health &fitness brands|
|Smartphone applications||Other consumer brands|
Some web browsers may transmit “do-not-track” (DNT) signals to the websites with which the user communicates. Because of differences in how web browsers incorporate and activate this feature, it is not always clear whether users intend for these signals to be transmitted, or whether they even are aware of them. We currently do not change our tracking practices in response to DNT settings in your web browser.
Our third party partners, such as web analytics companies and third party ad networks, collect information about your online activities over time and across our Site and other online properties. We utilize Google Analytics for our web analytics and you can opt out of your Site usage data being included in our Google Analytics reports by visiting https://tools.google.com/dlpage/gaoptout.
Additionally, there are additional circumstances in which we may disclose, transfer or share your Personal Data with certain third parties without further notice to you, as set forth below:
Agents, Consultants and Related Third Parties: We, like many businesses, sometimes engage other companies to perform certain business-related functions. Examples of such functions include mailing information, maintaining databases and processing payments. When we engage another company to perform such functions, we may provide them with information, including Personal Data, in connection with their performance of such functions.
Legal Requirements: We may disclose your Personal Data if required to do so by law (including, without limitation responding to a subpoena or request from law enforcement, court or government agency) or in the good faith belief that such action is necessary to:
- comply with a legal obligation
- protect or defend our rights, interests or property or that of other customers or users
- act in critical circumstances to investigate wrongdoing in connection with the Platform
- protect the personal safety of users of the Platform or the public, or
- protect against legal liability.
2. Non-Personal Data
Because Non-Personal Data cannot be used to personally identify you, we may disclose, transfer or share Non-Personal Data for any lawful purpose.
You have several choices available when it comes to your Personal Data:
Limit the Personal Data You Provide: You can use the Platform without providing any Personal Data or with limiting the Personal Data you provide. If you choose not to provide any Personal Data or limit the Personal Data you provide, you may not be able to use certain functionality of the Platform. For instance, in order to open an account, or register for events your name and email address and other Personal Data is required.
Children – Children’s Online Privacy Protection Act (COPPA):
Links to Other Websites:
Storage and Security:
We may store Personal Data itself, or such information may be included in databases owned and maintained by our affiliates, agents or service providers. We take what we believe to be reasonable steps to protect the Personal Data provided via the Platform from loss, misuse, unauthorized access, inadvertent disclosure, alteration, and destruction. However, no Internet or e-mail transmission is ever fully secure or error free. In particular, e-mail sent to or from the Platform may not be secure. Therefore, you should take special care in deciding what information you disclose or send to us via e- mail, or any other means. Please keep this in mind when disclosing any Personal Data via the Internet, or any other means.
Use of the website from outside the United States or Canada
EEA, Switzerland and UK – EU General Data Protection Regulation (“GDPR”)
The GDPR requires Race Roster and Managers and Related Parties using the Platform to provide Registrants with more information about the processing of their Personal Data.
Legal grounds for processing your Personal Data:
The GDPR requires us to tell you about the legal grounds we are relying on to process any Personal Data about you. The legal grounds for us processing your Personal Data for the purposes set out above will typically be because:
- you provided your consent;
- you provided your consent to use “cookies”
- it is necessary for our contractual relationship;
- The processing is necessary for us to comply with our legal or regulatory obligations; and/or,
- the processing is in our legitimate interest as an event organizing platform (for example, to protect the security and integrity of our systems and to provide you with customer service,etc.)
Transfers of Personal data:
As we operate a global company, we may need to transfer your Personal Data outside of the country from which it was originally provided. This may be intra-group or to third parties that we work with who may be located in jurisdictions outside the EEA, Switzerland and the UK which have no data protection laws or laws that are less strict compared with those in Europe. Whenever we transfer Personal Data outside of the EEA, Switzerland or the UK, we take legally required steps to make sure that appropriate safeguards are in place to protect your Personal Data. Feel free to contact us as set forth for more information about the safeguards we have put in place to protect your Personal Data and privacy rights in these circumstances.
Personal Data Retention:
We retain your Personal Data for as long as necessary to provide you with our Services, or for other important purposes such as complying with legal obligations, resolving disputes, and enforcing our agreements. If you have an account with us, we will typically retain your Personal Data for a period of 90 days after you have requested that your account is closed or if it’s been inactive for 7 years.
Data protection law provides you with rights in respect of Personal Data that we hold about you, including the right to request a copy of the Personal Data, request that we rectify, restrict or delete your Personal Data, object to profiling and unsubscribe from marketing communications. For the most part, you can you can exercise these rights by logging in and visiting the My Account page or changing the “cookie settings” in your browser (see our Cookie Statement for more information). If you can’t find what you’re looking for in the My Account page, please contact us. Please note that requests to exercise data protection rights will be assessed by us on a case-by-case basis. There may be circumstances where we are not legally required to comply with your request because of the laws in your jurisdiction or because of exemptions provided for in data protection legislation. If you have a complaint about how we handle your Personal Data, please get in touch with us. If you are not happy with how we have attempted to resolve your complaint, you may contact the relevant data protection authority.
Race Roster as a Data Controller and Data Processor:
EU data protection law makes a distinction between organizations that process Personal Data for their own purposes (known as “data controllers”) and organizations that process personal data on behalf of other organizations (known as “data processors”). If you have a question or complaint about how your Personal Data is handled, these should always be directed to the relevant data controller since they are the ones with primary responsibility for your Personal Data.
Race Roster may act as either a data controller or a data processor in respect of your Personal Data, depending on the circumstances. For example, if a Manager or Registrant or Related Party creates an account with us to organize your events, we will be a Data Controller of the Personal Data that we have obtained related to Registrants, managers and Related Parties. We use this to conduct research and analysis to help better understand and serve users of the Platform as well as to improve our platform and provide more targeted recommendations about events we think may be of interest to Registrants.
If you register for an event as a Registrant, we will process your Personal Data (making Race Roster the Data Processor) to help administer that event on behalf of the Organizer (for example, sending confirmation, promotional and feedback emails, processing payments, etc.) and to help the Manager and Related Parties plan and manage their event (for example, providing event reports, using analytics to gain insights into the effectiveness of various sales channels, marketing the event, etc.). In these circumstances, Race Roster is the Data Processor, and only provides the “tools” for Managers and Related Parties; Race Roster does not decide what Personal Data to request on registration forms, nor is it responsible for the continued accuracy of any Personal Data provided. Any questions that you may have relating to your Personal Data and your rights under data protection law should therefore be directed to the Manager or Related Party as the data controller, not to Race Roster.
Australia Privacy Principles (“APP”):
Additional Privacy Disclosures applicable to Australian Residents
New Zealand Privacy Principles (“NZPP”):
ACCESS TO INFORMATION; CONTACTING COMPANY