Privacy Policy, Cookie Policy & GDPR Compliance
Every event website generated by EventHex includes auto-generated legal and privacy pages to help organizers meet data protection requirements.
Auto-Generated Legal Pages
Section titled “Auto-Generated Legal Pages”Each event website automatically includes these pages:
| Page | URL | Content |
|---|---|---|
| Privacy Policy | /privacy-policy | How attendee data is collected, stored, and used |
| Cookie Policy | /cookie-policy | Information about cookies and tracking technologies |
| App Privacy | /app-privacy | Privacy policy specific to the mobile app, with sub-sections for different data categories |
These pages are pre-populated with standard language covering EventHex’s data practices and can be customized by the organizer.
Cookie Consent Management
Section titled “Cookie Consent Management”EventHex event websites include cookie consent management:
- Cookie banner — shown to first-time visitors asking for consent
- Cookie preferences — configurable through the website integrations settings
- The Cookies Management toggle in Website Integrations controls whether the cookie consent banner is displayed
GDPR Compliance
Section titled “GDPR Compliance”EventHex provides GDPR-related features:
- Data access API — a GDPR endpoint (
/api/gdpr) allows attendees to request access to their stored data - Consent checkboxes — registration forms include configurable consent checkboxes for terms, privacy policy, and refund policy acceptance
- Data minimization — form fields are configurable, so organizers only collect what they need
Consent During Registration
Section titled “Consent During Registration”When attendees register for an event, they must accept:
- Terms & conditions — event-specific policies
- Privacy policy — data handling consent
- Refund policy — if applicable
These are configured in Checkout Settings and appear as mandatory checkboxes before payment.
Best Practices
Section titled “Best Practices”- Review auto-generated content — while the default privacy and cookie policies are comprehensive, review them to ensure they match your organization’s specific data practices
- Enable cookie consent — if your event targets EU attendees, enable the cookie management banner through website integrations
- Only collect necessary data — use the Form Builder to request only the information you actually need
- Set data retention policies — consider how long you need to keep attendee data after the event
What’s Next
Section titled “What’s Next”- Website Integrations — configure cookie management and analytics
- Checkout Settings — configure consent checkboxes
- Registration Experience — the attendee registration flow