Privacy Policy
Last Updated: 31/07/2025
Omnifest Events Managing (“Omnifest”, “we”, “our”, or “us”) respects your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal data when you access or use Festilinx, our Event Management System (EMS).
By using the Festilinx platform, you agree to the practices described in this Privacy Policy.
-
1. WHO WE ARE
-
2. DATA WE COLLECT
-
3. PURPOSE OF PROCESSING
-
4. LAWFUL BASIS FOR PROCESSING
-
5. DATA SHARING & THIRD PARTIES
-
6. DATA STORAGE AND SECURITY
-
7. COOKIES AND TRACKING
-
8. INTERNATIONAL DATA TRANSFERS
-
9. DATA RETENTION
-
10. YOUR RIGHTS
-
11. CHILDREN’S DATA
-
12. UPDATES TO THIS POLICY
-
13. GOVERNING LAW
1. WHO WE ARE
Omnifest Events Managing is a company incorporated in the United Arab Emirates, and the data controller of the Festilinx platform.
Contact: legal@omnifest.com
2. DATA WE COLLECT
We may collect and process the following types of information:
- Account Data: Name, email, phone number, company, role
- Usage Data: Log files, access timestamps, device information, browser types
- Event Data: Information entered into the Festilinx system by users (e.g., guest lists, session info, venue details)
- Support Data: Any information you voluntarily provide via support requests or contact forms
- Cookies & Tracking: IP address, geolocation, user interaction on the platform (see Section 7)
3. PURPOSE OF PROCESSING
Your data is processed for the following purposes: - To provide access to the Festilinx platform - To administer your account and fulfill our contractual obligations - To improve and secure the system - To respond to your inquiries or support requests - To generate anonymized analytics for internal product improvement
4. LAWFUL BASIS FOR PROCESSING
We process personal data under one or more of the following lawful bases: - Contractual necessity (to provide you with the Service) - Legitimate interest (platform maintenance, security, analytics) - Consent (for optional features or marketing communications) - Legal obligation (to comply with laws and regulations)
5. DATA SHARING & THIRD PARTIES
We do not sell your personal data.
We may share your data with: - Subprocessors: Reputable service providers who help operate our infrastructure (e.g., cloud hosting, analytics). A list of subprocessors is available upon request. - Legal Authorities: Where legally required or necessary to protect our legal rights - Event Organizers: If you are invited to or participate in an event managed on Festilinx, the organizer may access your relevant data as per their role
All third parties are bound by confidentiality and data protection obligations.
6. DATA STORAGE AND SECURITY
- Data is stored on secure servers in geographically redundant data centers
- All data is encrypted in transit (HTTPS/SSL) and at rest (AES-256)
- Daily, weekly, and monthly backups with RPO = 24h / RTO = 24h
- Access is role-restricted, audited, and requires encrypted authentication
7. COOKIES AND TRACKING
Festilinx uses cookies and similar technologies to: - Maintain session state - Analyze system usage - Improve performance and usability
You may opt out of non-essential cookies through your browser settings.
8. INTERNATIONAL DATA TRANSFERS
Your data may be processed in or transferred to countries outside the UAE. In such cases, we ensure appropriate safeguards (e.g., contractual clauses, encryption) are in place.
9. DATA RETENTION
We retain personal data for the duration of your active subscription and up to 30 days after termination, unless otherwise required by law or agreed contractually.
You may request early deletion or export of your data by contacting legal@omnifest.com.
10. YOUR RIGHTS
Subject to applicable law, you may: - Access your personal data - Request correction or deletion - Object to processing - Withdraw consent (where applicable) - Request data portability
Requests can be submitted to: privacy@omnifest.com
11. CHILDREN’S DATA
Festilinx is not intended for children under 16. We do not knowingly collect data from minors.
12. UPDATES TO THIS POLICY
We may update this Privacy Policy from time to time. Material changes will be communicated within 30 days’ notice. Please make sure that you review any updates of this Policy. Changes to our Privacy Policy are effective when they are posted on this page
13. GOVERNING LAW
This Policy shall be governed by the laws of the United Arab Emirates. Disputes shall be handled by the courts of Dubai, or optionally resolved via DIAC arbitration as agreed.