Last Updated: June 2026
Introduction
Extreme-Impact Inc., doing business as IntelliEvent (“Company,” “IntelliEvent,” “we,” “us,” or “our”) operates the IntelliEvent platform and related business-to-business software-as-a-service products, websites, applications, APIs, integrations, support services, documentation, portals, and related professional services (collectively, the “Services”).
This Privacy Policy describes how we collect, use, disclose, retain, and protect Personal Information in connection with the Services. IntelliEvent is designed and offered for business, commercial, institutional, and organizational use, and this Privacy Policy is intended to address the commercial information, operational information, account information, Customer Data, usage data, telemetry, support information, and related information processed in that B2B SaaS environment.
This Privacy Policy should be read together with our Terms of Service, Data Processing Addendum, order forms, security documentation, service-level commitments, and any customer agreement that applies to the Services. For Customer Data, the applicable customer agreement and Data Processing Addendum control if they conflict with this Privacy Policy.
1. Scope of This Policy
This Privacy Policy applies to Personal Information and commercial information we process in connection with:
- Visitors to our public websites and online properties;
- Prospective customers, business contacts, sales leads, event participants, referral sources, and marketing recipients;
- Customers, customer administrators, billing contacts, procurement contacts, technical contacts, and authorized users of the Services;
- Developers and users of our APIs, integrations, applications, and support tools;
- Vendors, business partners, implementation partners, integration partners, and professional contacts;
- Personal Information we process as a business, controller, service provider, processor, contractor, subprocessor, or similar role under applicable privacy laws.
This Privacy Policy also explains how we process Customer Data on behalf of our business customers. Customer Data is generally controlled by the customer that uploads, configures, transmits, imports, stores, or otherwise makes the data available through the Services.
This Privacy Policy does not apply to privacy practices of our customers; third-party websites, applications, platforms, or services that are not operated by us; employment, job applicant, contractor, or workforce information covered by a separate workforce privacy notice; or information that is not Personal Information under applicable law, such as properly aggregated, de-identified, or anonymized data.
2. Our Role in a B2B SaaS Environment
2.1 When We Act as a Business or Controller
We act as a business, controller, or similar role when we determine the purposes and means of processing Personal Information, including when we process website visitor information; account registration and authentication information; billing, subscription, and payment information; customer administrator and authorized user account information; product usage, telemetry, diagnostics, security logs, sales, marketing, customer success, and commercial relationship information; support communications; vendor and partner information; and information used for our own security, compliance, legal, analytics, product, renewal, and business operations.
2.2 When We Act as a Service Provider or Processor
We generally act as a service provider, processor, contractor, or subprocessor when we process Customer Data on behalf of a customer to provide the Services. For Customer Data, we process Personal Information only to provide, secure, support, maintain, operate, and improve the Services; in accordance with the customer’s documented instructions; as permitted by the applicable customer agreement or Data Processing Addendum; as required by law; or as otherwise permitted for service providers, processors, contractors, or subprocessors under applicable privacy laws.
Customers control what Customer Data they submit to the Services. Customers are responsible for providing appropriate notices, obtaining required consents, responding to end-user rights requests, maintaining appropriate backup/export processes, and ensuring that their use of the Services complies with applicable law.
2.3 Customer Data Rights Requests
If we receive a privacy request relating to Customer Data, we may direct the requester to the relevant customer unless we are legally required to respond directly. We will reasonably assist customers in responding to privacy requests as required by applicable law and the applicable Data Processing Addendum.
3. Definitions
Personal Information or Personal Data:Information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked with an identified or identifiable individual or household, as defined by applicable law.
Customer Data:Data, files, records, content, Personal Information, commercial information, or other information that a customer or its authorized users submit to, store in, transmit through, import into, configure within, or process through the Services.
Account Data:Information associated with customer accounts, administrators, authorized users, billing contacts, procurement contacts, subscription settings, permissions, credentials, and customer relationship management.
Usage Data:Technical, diagnostic, telemetry, log, performance, device, browser, interaction, feature usage, workflow usage, and activity data generated through use or operation of the Services.
Commercial Relationship Data:Business contact information, account relationship information, subscription information, customer engagement information, support history, usage insights, renewal information, product adoption information, account activity, and related operational or commercial information associated with IntelliEvent’s relationship with current, former, or prospective business customers.
Sensitive Personal Information:Personal Information treated as sensitive under applicable law, such as account credentials, government identifiers, precise geolocation, financial account information, health information, biometric information used for identification, racial or ethnic origin, religious or philosophical beliefs, union membership, genetic data, certain communications content, or information concerning sex life or sexual orientation.
Sell, Share, Targeted Advertising, and Profiling:The meanings given to those terms under applicable privacy laws.
4. Information We Collect
4.1 Information You Provide
We may collect information provided directly by business contacts, customers, customer administrators, authorized users, prospective customers, and other commercial contacts, including name; business email address; business phone number; company name; job title, department, or role; username, password, authentication credentials, and account settings; profile information; billing contact information; communications, support requests, feedback, and survey responses; and information submitted through webforms, demos, sales inquiries, events, webinars, implementation activities, or customer success interactions.
4.2 Customer Account, Subscription, and Commercial Relationship Information
We may collect and process customer organization name; subscription plan, license, usage tier, renewal status, contract information, procurement information, administrator and authorized user details, billing contacts, invoice history, payment status, payment processor tokens, customer configuration, preferences, permissions, access settings, audit logs, administrative activity, customer success records, support history, adoption information, product interest information, and other Commercial Relationship Data.
4.3 Billing and Payment Information
We or our payment processors may collect billing and payment information, such as billing name and contact details, billing address, payment method details, transaction records, invoice and tax information. Where we use a third-party payment processor, we generally do not store full payment card numbers. Payment processors may process payment information under their own terms and privacy notices.
4.4 Customer Data
Customers and authorized users may submit, upload, import, sync, store, manage, transmit, or process Customer Data through the Services. Customer Data may include contacts, customers, vendors, employees, contractors, attendees, or other business records; company and account information; orders, events, projects, assignments, tasks, schedules, and operational data; transaction, billing, fulfillment, and financial records; communications, notes, comments, attachments, documents, custom fields, and data received through customer-enabled integrations, APIs, imports, or connectors.
Customers decide what Customer Data they submit. Customers should not submit Sensitive Personal Information, regulated information, children’s information, protected health information, consumer financial information, biometric information, student data, or other specially regulated data unless the applicable customer agreement expressly permits that data and the parties have entered into any required addendum.
4.5 Automatically Collected Technical and Operational Information
When users access or use the Services, and as part of normal platform operation, we may collect general technical, operational, and log information, including IP address, approximate location derived from IP address, device identifiers, browser type and version, operating system, referring and exit pages, pages viewed and features used, clicks, interactions, navigation patterns, session information, login time, access time, activity logs, API request and response metadata, error reports, diagnostics, performance metrics, security logs, fraud signals, and authentication events. This information is used to aid in security, support, analytics, platform improvement, debugging, troubleshooting, reliability, and normal system operations.
4.6 Cookies, Preferences, Settings, and Application Behavior
Our current cookies and similar technologies are primarily used for user-side preferences, default settings, toggles, interface choices, session continuity, authentication, and similar application behavior. For additional details, see Section 8.
4.7 Integrations, APIs, and Third-Party Sources
When customers or authorized users enable integrations, connect third-party services, or use APIs, we may receive information from those services, such as account identifiers, profile or directory information, calendar, email, document, storage, or collaboration metadata, records, files, or content selected by the customer or authorized user, OAuth tokens, authorization scopes, integration configuration, and synchronization logs and integration status.
We may also receive business contact information from resellers, referral partners, implementation partners, integration partners, event organizers, webinar platforms, professional networking platforms, public websites and directories, marketing, enrichment, or lead-generation providers, and customers that invite authorized users to the Services.
4.8 Support, Communications, and Recordings
We may collect information submitted through support tickets, chats, emails, calls, screen-sharing sessions, surveys, and customer success interactions. We may record calls, meetings, webinars, or training sessions where legally permitted and with notice or consent where required.
4.9 Sensitive Personal Information
We do not seek to collect Sensitive Personal Information except where necessary to provide or secure the Services, process payments, authenticate users, comply with law, or where a customer submits such information as Customer Data. Sensitive Personal Information we may process includes account login credentials, authentication tokens or security codes, payment-related information handled by payment processors, contents of communications submitted to us, and information contained in Customer Data, if submitted by a customer. We do not use Sensitive Personal Information to infer characteristics about individuals unless we provide required notice and choice or obtain consent where required by law.
5. Notice at Collection and Categories of Personal Information
This section provides a category-level notice for Personal Information we collect as a business or controller in a B2B SaaS context. Customer Data may contain additional categories depending on the customer’s use of the Services.
| Category | Examples | Primary Uses | Disclosed To | Sale/Share Status |
|---|---|---|---|---|
| Identifiers | Name, business email, phone, company, username, account ID, IP address, device identifiers | Account creation, authentication, support, billing, security, communications, analytics, customer success | Hosting, identity, support, CRM, email, security, analytics, and subprocessor providers | No sale/share; no targeted advertising use in production SaaS |
| Commercial Relationship Data | Business contacts, subscription status, account history, product interest, usage insights, support history, renewal information | Account management, customer success, adoption, renewals, marketing IntelliEvent services, product opportunity analysis | CRM, customer success, support, email, analytics, professional advisors | No sale/share; used for first-party IntelliEvent business purposes |
| Commercial Information | Subscription history, purchased services, usage tiers, renewal status, transaction history | Contract performance, renewals, customer success, forecasting, accounting | CRM, billing platforms, advisors, support providers | No |
| Internet or Network Activity | Log data, browser/device data, features used, API metadata, telemetry, cookie data | Security, troubleshooting, product analytics, performance, support, platform improvement | Hosting, analytics, security, monitoring, logging providers | No targeted advertising or cross-context behavioral advertising |
| Approximate Geolocation | Approximate location from IP address | Security, fraud prevention, localization, analytics | Hosting, analytics, security providers | No |
| Professional or Employment-Related Information | Company, title, department, role, employer, business contact details | Account administration, access management, sales, support, customer success | CRM, support, email, advisors | No |
| Audio, Electronic, Visual, or Similar Information | Support call recordings, meeting recordings, chat transcripts, screen-share records | Support, training, quality assurance, dispute resolution | Support, recording, storage providers | No |
| Sensitive Personal Information | Login credentials, authentication tokens, payment-related information, Customer Data containing sensitive fields | Authentication, security, payment processing, support, compliance, service delivery | Hosting, security, payment, support, subprocessors | No |
| Customer Data | Records, contacts, orders, events, operational records, attachments, custom fields | Provide, secure, support, maintain, and improve Services under customer instructions and agreements | Subprocessors, customer-enabled integrations, support providers | We do not sell or share Customer Data |
| Regulated Information | PHI, student data, biometric data, consumer financial data, government IDs, if submitted under applicable addendum | Only if expressly permitted by written agreement and required addendum | Authorized subprocessors only | No |
We do not retain Personal Information longer than reasonably necessary for the purposes disclosed in this Privacy Policy, unless a longer period is required or permitted by law, contract, security, backup, dispute resolution, audit, tax, accounting, or compliance obligations.
6. Legal Basis for Processing Where Applicable
Where a legal basis is required, we process Personal Information based on performance of a contract, legitimate business interests, consent, compliance with legal obligations, and protection of rights, safety, and security. For Customer Data, our customer is generally responsible for identifying the appropriate legal basis or other lawful ground for processing.
7. How We Use Information
We use Personal Information, Account Data, Usage Data, Customer Data, telemetry, operational data, Commercial Relationship Data, and related information for legitimate business and operational purposes associated with providing and operating the Services.
- Providing, operating, maintaining, supporting, securing, and improving the Services;
- Creating, administering, authenticating, and securing customer accounts and authorized user access;
- Configuring customer environments, permissions, integrations, APIs, workflows, and operational settings;
- Processing subscriptions, renewals, invoices, payments, support plans, and contractual obligations;
- Providing implementation, onboarding, migration, customer success, training, consulting, and technical support services;
- Monitoring system reliability, uptime, performance, diagnostics, security, abuse prevention, and operational integrity;
- Detecting, investigating, preventing, and responding to fraud, misuse, unauthorized access, security incidents, and malicious activity;
- Maintaining audit trails, logs, telemetry, and system records necessary for platform administration, debugging, troubleshooting, analytics, and compliance;
- Analyzing feature adoption, workflow utilization, customer engagement, system activity, and platform usage trends;
- Improving product functionality, usability, reliability, scalability, integrations, workflows, reporting, automation, and platform performance;
- Identifying product opportunities, operational improvements, customer needs, and potential enhancements to IntelliEvent products or services;
- Supporting account management, customer relationship management, subscription renewals, customer communications, and promotion of IntelliEvent products or services to existing or prospective business customers;
- Sending service communications, operational notices, billing communications, support responses, release notices, security alerts, onboarding communications, product updates, event invitations, and marketing communications where permitted by law;
- Supporting internal business operations, forecasting, analytics, reporting, strategic planning, financial administration, and legal compliance;
- Enforcing agreements, protecting rights and property, resolving disputes, and complying with legal obligations;
- Creating aggregated, anonymized, or de-identified information as described in this Privacy Policy.
Most of the information used for these purposes is derived from data inherently generated through operation of the Services, including account records, application activity, configuration data, audit logs, telemetry, usage data, system events, communications, Customer Data processed within the platform, and customer relationship information.
We do not sell Customer Data. We do not use Customer Data for third-party targeted advertising or cross-context behavioral advertising.
8. Cookies, Analytics, and Online Tracking
8.1 Technologies We Use
We use cookies, local storage, session identifiers, and similar technologies primarily to support operation of the Services and improve user experience within the platform.
These technologies are generally used for:
- User authentication and session management;
- Remembering user preferences, settings, and configuration choices;
- Maintaining application state and workflow continuity;
- Saving interface preferences, toggles, layouts, and default settings;
- Supporting platform functionality and operational performance;
- Security, fraud prevention, abuse detection, and system integrity;
- Diagnosing technical issues and improving reliability;
- Internal analytics associated with operation and improvement of the Services.
We may also collect technical and operational information through these technologies and through normal system operation, including IP address, approximate geolocation derived from IP address, device identifiers and browser information, operating system information, application usage and interaction data, session and authentication records, API usage metadata, log and telemetry data, error reports, diagnostics, and performance metrics.
This information is used primarily for platform administration, customer support, operational analytics, security monitoring, troubleshooting, reliability, product improvement, and legitimate business operations associated with the Services.
We are not currently using cookies or similar technologies for cross-context behavioral advertising, third-party targeted advertising, behavioral advertising profiles, selling Personal Information, sharing Personal Information for advertising purposes, or third-party ad network tracking within the production SaaS environment.
We do not permit advertising cookies, advertising pixels, or third-party behavioral advertising technologies to access Customer Data in the production IntelliEvent platform.
8.2 Internal Business and Commercial Uses
Certain information collected through operation of the Services, including account data, usage data, telemetry, operational records, support history, subscription information, customer relationship data, feature usage, and platform activity data, may be used by IntelliEvent for its own first-party business purposes.
These business purposes may include managing customer relationships and account administration; communicating with existing or prospective customers; supporting customer success and onboarding; identifying feature adoption and workflow utilization trends; improving customer engagement and platform adoption; supporting subscription renewals and commercial account management; identifying operational, product, or service improvement opportunities; developing new IntelliEvent functionality, modules, workflows, or offerings; conducting internal analytics, reporting, forecasting, and business planning; and marketing and promoting IntelliEvent products or services to business customers and prospects where permitted by law.
Most of this information is not maintained as a separate temporary marketing dataset with a fixed purge schedule. Instead, the information is generally derived from operational, account, system, telemetry, support, usage, subscription, and Customer Data inherently generated or maintained as part of operating the platform and supporting customer relationships.
8.3 Cookie Choices
Users may control cookies through browser settings and platform settings where available. Because many cookies used within the Services are operational, authentication, or functionality-related, disabling cookies may affect platform functionality, authentication, saved settings, or user experience.
8.4 Global Privacy Control and Opt-Out Signals
Because IntelliEvent does not currently sell Personal Information or use cookies for cross-context behavioral advertising within the production SaaS environment, opt-out preference signals such as Global Privacy Control generally do not affect core platform operations. Where applicable law requires recognition of opt-out preference signals for website analytics, marketing technologies, or future advertising-related processing, we will honor those signals to the extent required by law.
8.5 Do Not Track and Third-Party Tracking
Some browsers offer “Do Not Track” signals. There is not a uniform industry standard for responding to Do Not Track signals. We do not currently respond to Do Not Track signals. We do, however, honor legally required opt-out preference signals where applicable. Third parties may collect information about online activities over time and across different websites or services when users visit our public website if we enable such technologies; however, IntelliEvent does not currently use production SaaS platform cookies for targeted advertising or cross-context behavioral advertising.
8.6 Session Replay, Chat, and Similar Tools
We may use support chat, diagnostic, or session analytics tools to understand how users interact with our websites or Services, troubleshoot issues, and improve usability. These tools may collect clicks, scrolls, page interactions, device information, and similar usage details. We configure such tools to avoid collecting sensitive fields where feasible, and we provide notice or consent where required by law.
9. Integrations and Third-Party Services
The Services may integrate with third-party platforms, applications, APIs, and services, including providers such as Google, Microsoft, Amazon, payment processors, cloud platforms, authentication providers, customer relationship management tools, accounting platforms, calendar tools, file storage platforms, and collaboration systems.
When integrations are enabled, data may be transmitted between IntelliEvent and the third-party service based on customer or authorized user configuration; customers and authorized users control which integrations are enabled; access may be granted through OAuth, API keys, administrator approval, delegated permissions, or other authorization methods; customers are responsible for ensuring they have authority to connect the relevant third-party service; and integrations may be disabled through account settings or by contacting us, subject to technical and contractual limitations.
Third-party services operate under their own terms and privacy policies. We are not responsible for privacy or security practices of third-party services that are not our subprocessors.
9.1 Google API Data
If the Services access Google APIs or Google Workspace APIs, our use and transfer of information received from Google APIs will comply with the Google API Services User Data Policy, including Limited Use requirements, where applicable. We do not use Google Workspace API data to train generalized AI or machine learning models unless expressly permitted by the applicable policy and customer authorization.
9.2 Microsoft and Similar Integrations
If the Services access Microsoft or similar enterprise platform APIs, permissions are granted by the customer, administrator, or authorized user. Customers should review requested scopes, permissions, and access levels before enabling any integration.
10. Subprocessors and Service Providers
We may engage third-party service providers, subprocessors, contractors, and vendors to support delivery of the Services, including providers of cloud hosting and infrastructure, database storage and backup, content delivery networks, security monitoring, fraud prevention, authentication, identity management, product analytics, diagnostics, customer support, ticketing, payment processing, billing, email, messaging, communications, CRM, customer success tools, logging, monitoring, incident response, professional services, auditors, lawyers, accountants, advisors, AI, automation, or productivity tools where authorized and appropriate.
We require service providers and subprocessors to protect Personal Information through contractual, technical, and organizational safeguards appropriate to the nature of the information and the Services. For Customer Data, subprocessors are required to process data only for permitted purposes, maintain confidentiality, implement reasonable security measures, assist with privacy and security obligations where required, and flow down appropriate obligations to their own subprocessors.
A current list of material subprocessors is available upon request at privacy@intellievent.com. Customers may subscribe to receive notice of material subprocessor changes where provided in the applicable Data Processing Addendum.
11. Data Processing Addendum and Customer Instructions
For Customer Data, we process Personal Information in accordance with the applicable Data Processing Addendum or customer agreement. Our Data Processing Addendum may address processing subject matter, duration, nature, and purpose; categories of data subjects and Personal Information; customer instructions; confidentiality; security measures; subprocessors; international transfers; assistance with privacy rights requests; assistance with security incidents; deletion or return of Customer Data; audits or assessments; and service-provider, contractor, processor, and subprocessor restrictions.
We do not retain, use, or disclose Customer Data outside the direct business relationship with the customer except as permitted by the applicable agreement, Data Processing Addendum, this Privacy Policy, or applicable law. We do not combine Customer Data with Personal Information obtained from other sources except as permitted by applicable law and contract, such as for security, fraud prevention, service improvement, debugging, operational analytics, customer support, platform administration, or where directed by the customer.
12. Data Security
We maintain a written information security program designed to protect Personal Information against unauthorized access, disclosure, alteration, loss, misuse, or destruction. Depending on the nature of the Services and information involved, our safeguards may include encryption in transit; encryption at rest for production systems, backups, or sensitive repositories where appropriate; network security controls; logical access controls; role-based permissions; multi-factor authentication for administrative access; least-privilege access principles; audit logging and monitoring; vulnerability management; malware protection; change management; secure software development practices; segregation of production and non-production environments; vendor and subprocessor security reviews; personnel confidentiality obligations; security awareness training; incident response planning; and backup, recovery, and business continuity processes.
No method of transmission, storage, or processing can be guaranteed to be fully secure. Customers and authorized users are responsible for maintaining the security of their credentials, devices, networks, and account configurations.
13. Access Controls
Access to Personal Information is restricted to authorized personnel, contractors, service providers, and subprocessors who need access to perform their responsibilities. We use access controls designed to limit access based on job function and business need; authenticate users and administrators; assign permissions based on role; log relevant administrative access and activity; review and remove access when no longer needed; and support customer-configured roles and permissions within the Services. Customers are responsible for managing their authorized users, roles, permissions, authentication settings, and access configurations within the Services.
14. Data Segregation
The Services are designed to logically segregate Customer Data in a multi-tenant environment. We implement controls intended to prevent unauthorized access between customer environments. Data segregation may include tenant identifiers, permission boundaries, application-level access controls, database-level controls, logging and monitoring, administrative access restrictions, and customer-configured role permissions.
15. Backup and Disaster Recovery
We maintain backup, disaster recovery, and business continuity processes designed to support availability and integrity of the Services. These processes may include periodic backups, redundancy for critical systems, recovery procedures, restoration testing, incident escalation procedures, and business continuity planning.
Backup retention and deletion may differ from active production data. Deleted Customer Data may remain in backups for a limited period until overwritten or deleted in accordance with our backup lifecycle, unless legal, security, or compliance obligations require longer retention. Customers are responsible for exporting or backing up Customer Data where required by their own policies, legal obligations, or business continuity plans.
16. Security Incidents
A “Security Incident” means an actual or reasonably suspected unauthorized access to, acquisition of, disclosure of, alteration of, loss of, or destruction of Personal Information in our custody or control that compromises the security, confidentiality, or integrity of that information.
If we become aware of a Security Incident involving Customer Data, we will investigate the incident; take reasonable steps to contain, mitigate, and remediate the incident; notify affected customers without undue delay and in accordance with applicable law and contractual obligations; provide information reasonably available to assist customers with their notification obligations; and cooperate with legally required investigations or remediation efforts.
For Personal Information for which we act as a business or controller, we will provide notices to affected individuals, regulators, law enforcement, attorneys general, consumer reporting agencies, or other parties where required by applicable law. Notice may be delayed where permitted or required by law, including where law enforcement determines that notice would impede an investigation.
17. Data Retention
We retain Personal Information, Account Data, Usage Data, telemetry, operational records, support information, logs, subscription information, customer relationship information, and Customer Data for as long as reasonably necessary to provide, secure, maintain, support, improve, and operate the Services and our business.
Retention periods may vary depending on the nature of the information; the operational purpose for which it was collected or generated; customer account status and subscription lifecycle; security, fraud prevention, audit, troubleshooting, and compliance requirements; contractual obligations; legal, tax, accounting, regulatory, or dispute-resolution requirements; backup, disaster recovery, and business continuity processes; and technical feasibility and system architecture.
Many categories of information processed by IntelliEvent are not collected as separate temporary datasets with independent deletion schedules. Instead, such information is often inherently generated, stored, and maintained within account systems, operational databases, telemetry systems, audit logs, support systems, application records, analytics environments, subscription records, and Customer Data repositories as part of operating the Services.
Examples may include account and subscription records; usage and telemetry data; operational logs and audit trails; support communications and troubleshooting records; feature utilization and workflow analytics; system events and security records; customer relationship and renewal information; platform configuration and administrative activity.
Where feasible and appropriate, we may aggregate, anonymize, de-identify, compress, archive, or otherwise minimize retained information. Customer Data retention is generally controlled by the applicable customer agreement, customer configuration, administrative settings, export functionality, and account lifecycle. Deleted information may persist temporarily in backups, archives, logs, disaster recovery systems, or security systems until overwritten or removed in accordance with operational retention cycles.
| Data Type | Typical Retention Approach |
|---|---|
| Account Data | For the active account term plus a reasonable period for administration, legal, security, audit, and commercial relationship purposes. |
| Billing and Tax Records | As required by tax, accounting, audit, and legal obligations. |
| Support Tickets and Communications | As reasonably necessary for support history, troubleshooting, account administration, quality assurance, and dispute resolution. |
| Security Logs and Audit Trails | As needed for security, fraud prevention, investigations, auditability, and platform integrity. |
| Product Usage, Telemetry, and Analytics | As part of normal platform operation, analytics, support, product improvement, customer success, and adoption analysis. |
| Commercial Relationship Data | For as long as reasonably necessary for customer relationship management, marketing IntelliEvent services, renewals, business planning, and legal compliance. |
| Customer Data | As configured by customer or specified in the customer agreement; typically made available for export for a limited period after termination before deletion, anonymization, or archival in accordance with operational processes. |
| Backups | Retained according to backup and disaster recovery cycles unless legal hold, security, or compliance needs require longer retention. |
| Aggregated or De-Identified Data | Retained as long as maintained in aggregated or de-identified form and used in accordance with this Privacy Policy. |
18. Account Termination and Data Deletion
Upon termination or expiration of a customer subscription, access to the Services may be suspended or terminated; Customer Data may remain available for export for a limited retrieval period specified in the customer agreement or administrative settings; after the retrieval period, Customer Data may be deleted, securely overwritten, archived, or irreversibly anonymized; Customer Data may remain in backups until those backups expire under our backup lifecycle; and we may retain information where required or permitted by law, contract, security, fraud prevention, audit, tax, accounting, dispute resolution, commercial relationship management, or compliance obligations.
Customers are responsible for exporting Customer Data before termination where required by their internal policies or business needs.
19. Data Ownership and Customer Controls
Customers retain all rights, title, and interest in and to Customer Data as between the customer and IntelliEvent. We do not claim ownership of Customer Data. We process Customer Data to provide, secure, support, maintain, operate, and improve the Services; comply with customer instructions; fulfill contractual obligations; conduct permitted operational and first-party business activities; and as otherwise permitted by the applicable agreement or law.
Customers may have administrative controls to add, suspend, or remove authorized users; assign roles and permissions; configure integrations; import, export, modify, or delete Customer Data; configure retention or deletion settings where available; access audit logs or activity records where supported; and manage account security settings.
20. Aggregated, De-Identified, and AI/ML Data Uses
20.1 Aggregated and De-Identified Data
We may create and use aggregated, anonymized, or de-identified information from Personal Information or Customer Data where permitted by law and contract. We may use such information to measure Service performance, understand usage trends, improve reliability and features, create benchmarks and reports, develop analytics, enhance security, conduct research and development, and improve products and services.
Where we maintain de-identified information, we will maintain and use it in de-identified form and will not attempt to re-identify it except as permitted by law, such as to test whether de-identification safeguards are effective. We will require recipients of de-identified information to comply with appropriate restrictions where required by law.
20.2 Operational and Commercial Analytics
IntelliEvent may use operational, account, telemetry, usage, and Commercial Relationship Data generated through operation of the Services to support internal analytics, product development, customer success, forecasting, adoption analysis, service optimization, platform improvement, and commercial business operations. Such uses are conducted as first-party business operations associated with IntelliEvent’s operation of the Services and management of customer relationships.
20.3 AI and Machine Learning
We may use artificial intelligence, machine learning, automation, or similar technologies to support the Services, including for security monitoring, fraud and abuse prevention, error detection, anomaly detection, product analytics, support routing, search, classification, recommendation features, internal productivity, feature development, and testing.
We do not use Customer Data to train generalized or foundation AI models unless expressly permitted by the applicable customer agreement, written customer authorization, and applicable law. We do not provide Customer Data to third-party AI model providers for their independent training or improvement purposes unless expressly authorized by the customer and permitted by law. Where AI-enabled features are optional, customers may be provided configuration controls, opt-ins, or opt-outs as described in the applicable product documentation.
20.4 Automated Decisionmaking and Profiling
We do not use automated decisionmaking technology to make decisions that produce legal or similarly significant effects about individuals unless disclosed separately and permitted by applicable law. Security, fraud prevention, abuse prevention, authentication, routing, product analytics, and diagnostics may use automated signals, but these tools are designed to support operations and security rather than to make significant decisions about individuals without appropriate review.
21. International Data Transfers
We are based in the United States, and Personal Information may be processed and stored in the United States and other jurisdictions where we, our affiliates, service providers, or subprocessors operate. If Personal Information is transferred internationally, we use safeguards where required by applicable law, which may include contractual data transfer mechanisms, data processing agreements, transfer impact assessments where applicable, technical and organizational safeguards, customer-approved data-region configurations where available, and subprocessor commitments.
Customers are responsible for determining whether their use of the Services complies with data localization, international transfer, and cross-border data transfer requirements applicable to Customer Data.
22. Legal Requests and Public Authorities
We may disclose Personal Information in response to subpoenas, court orders, warrants, legal process, regulatory requests, government inquiries, law enforcement requests, national security requests, or other lawful requests. Where legally permitted and commercially practicable, we will take reasonable steps to notify the relevant customer before disclosing Customer Data in response to a legal request so the customer may seek protective treatment or object. We may withhold notice where prohibited by law, where notice would create risk of harm, where the request relates to emergency circumstances, or where we are legally restricted from providing notice.
23. Your Rights and Choices
Depending on your location, relationship with us, and applicable law, you may have rights to confirm whether we process your Personal Information; access your Personal Information; receive a portable copy of your Personal Information; correct inaccurate Personal Information; delete Personal Information; restrict or object to certain processing; opt out of sale, sharing, targeted advertising, or profiling where applicable; limit certain uses or disclosures of Sensitive Personal Information where applicable; withdraw consent where processing is based on consent; appeal a denial of a privacy rights request where applicable; and avoid discrimination or retaliation for exercising privacy rights.
23.1 How to Submit a Request
You may submit a privacy request by emailingprivacy@intellievent.comor contacting us through the information in Section 32. For Customer Data, we may direct you to the customer that controls the data.
23.2 Verification, Authorized Agents, and Appeals
We may need to verify your identity before responding to certain requests. Verification may include matching information you provide against information we maintain, asking you to confirm control of an email address, requiring authentication through your account, or requesting additional information where legally permitted. You may designate an authorized agent where permitted by law. If we deny your privacy request and applicable law gives you an appeal right, you may appeal by emailing privacy@intellievent.com with the subject line “Privacy Appeal.”
23.3 Marketing Choices and Account Controls
You may opt out of marketing emails by using the unsubscribe link in the email or contacting us at privacy@intellievent.com. We may continue to send transactional or service-related communications, such as security notices, account messages, invoices, support responses, and updates about the Services. Authorized users may access, correct, or update certain account information through account settings. Customer administrators may control authorized users, roles, permissions, integrations, and Customer Data through administrative tools.
24. U.S. State Privacy Rights
Residents of certain U.S. states may have additional rights under applicable comprehensive state privacy laws. Where applicable, these rights may include access, correction, deletion, portability, opt-out of sale, opt-out of targeted advertising, opt-out of certain profiling, consent or opt-out rights for Sensitive Personal Information, appeal of denied requests, and non-discrimination for exercising privacy rights. We will respond to requests in accordance with applicable law. For requests relating to Customer Data, we may act on the customer’s instructions or direct the requester to the customer.
24.1 Sale, Sharing, and Targeted Advertising
We do not sell Customer Data. We do not use Customer Data for cross-context behavioral advertising, third-party targeted advertising, advertising profiling, third-party ad network monetization, sale of Personal Information, or sharing Personal Information for advertising purposes.
Our cookies and tracking technologies are primarily operational, functional, analytical, security-related, and platform-supporting in nature.
To the extent IntelliEvent engages in marketing its own products or services to business customers or prospects, such activities are conducted using first-party business relationship information, account information, subscription information, usage insights, support history, communications history, and similar commercial relationship data.
Any marketing or commercial outreach conducted by IntelliEvent relates to IntelliEvent’s own services, offerings, product updates, customer success initiatives, renewals, onboarding, adoption, or related business communications. We do not permit third-party advertising networks to use Customer Data from the production SaaS platform for independent advertising purposes.
24.2 Opt-Out Preference Signals
Because IntelliEvent does not currently sell Personal Information or use cookies for cross-context behavioral advertising within the production SaaS environment, opt-out preference signals generally do not affect core platform operations. Where required by applicable law for website analytics, marketing technologies, or future advertising-related processing, we will honor legally recognized opt-out preference signals to the extent required by law.
24.3 Sensitive Personal Information and Profiling
We process Sensitive Personal Information only for permitted purposes, with consent where required, or as otherwise allowed by law. We do not use Sensitive Personal Information to infer characteristics about individuals unless we provide required notice and choice. We do not engage in profiling that produces legal or similarly significant effects about individuals unless disclosed separately and permitted by applicable law.
25. California Privacy Notice
This section supplements the rest of this Privacy Policy and applies to California residents where the California Consumer Privacy Act, as amended by the California Privacy Rights Act, applies. Because IntelliEvent is a B2B SaaS platform, much of the Personal Information we process relates to business contacts, customer administrators, authorized users, commercial accounts, subscriptions, support, telemetry, and Customer Data processed on behalf of customers.
25.1 Categories, Sources, Purposes, and Disclosures
In the preceding 12 months, we may have collected the categories of Personal Information described in Section 5. We collect Personal Information from you; customers and customer administrators; authorized users; employers or organizations that provide access to the Services; devices, browsers, cookies, and system logs; integrations and connected third-party services; payment processors; service providers and subprocessors; business partners; public sources; and internal systems generated through use of the Services.
We collect, use, and disclose Personal Information for the business or commercial purposes described in this Privacy Policy, including service delivery, security, billing, support, communications, analytics, platform administration, customer success, renewal support, first-party marketing of IntelliEvent products and services, legal compliance, and business operations.
In the preceding 12 months, we may have disclosed the categories of Personal Information listed in Section 5 to cloud hosting and infrastructure providers; subprocessors; customer support providers; security and fraud prevention providers; authentication providers; analytics and diagnostics providers; payment processors; email and communications providers; CRM and customer success platforms; integration providers enabled by customers; professional advisors; auditors; legal and compliance providers; government authorities where required by law; and counterparties in business transactions.
25.2 Sale or Sharing of Personal Information
We do not sell Personal Information. We do not share Personal Information for cross-context behavioral advertising. We have not sold or shared Personal Information in the preceding 12 months. Our current cookies are primarily used for user-side preferences, default settings, toggles, authentication, session continuity, application behavior, security, support, analytics, and platform improvement, not targeted advertising or cross-context behavioral advertising.
25.3 Sensitive Personal Information
We may collect Sensitive Personal Information described in Section 5, including account credentials, authentication information, payment-related information, and Sensitive Personal Information contained in Customer Data. We use and disclose Sensitive Personal Information only for permitted purposes, such as providing the Services, securing accounts, processing payments, detecting security incidents, resisting malicious or illegal actions, ensuring physical or digital safety, short-term transient use, performing services requested by the customer or user, quality assurance, legal compliance, or other purposes permitted by law.
We do not use or disclose Sensitive Personal Information to infer characteristics about California residents. Because of this, we do not provide a “Limit the Use of My Sensitive Personal Information” link unless our practices change or applicable law requires it.
25.4 California Privacy Rights
California residents may have the right to know what Personal Information we collect, use, disclose, sell, or share; access specific pieces of Personal Information; delete Personal Information; correct inaccurate Personal Information; opt out of sale or sharing of Personal Information; limit the use and disclosure of Sensitive Personal Information where applicable; opt out of certain automated decisionmaking technology where applicable; access information about certain automated decisionmaking technology where applicable; and not be discriminated or retaliated against for exercising privacy rights.
25.5 How to Exercise California Rights
California residents may submit requests using the methods described in this Privacy Policy. For requests to know, access, delete, or correct, we will verify your identity. For opt-out requests, we will not require identity verification unless necessary or permitted by law. California residents may use an authorized agent to submit a privacy request. We may require proof that the agent is authorized and may require the consumer to verify their identity directly with us, unless prohibited by law.
25.6 Global Privacy Control, Minors, and Financial Incentives
Because IntelliEvent does not currently sell Personal Information or share Personal Information for cross-context behavioral advertising, Global Privacy Control signals generally do not affect core platform operations. If our practices change or applicable law requires recognition of such signals for website or marketing technologies, we will treat legally recognized opt-out preference signals as required by law. We do not knowingly sell or share the Personal Information of consumers under 16 years of age. We do not offer financial incentives or price or service differences in exchange for the collection, retention, sale, or sharing of Personal Information unless described in a separate Notice of Financial Incentive.
25.7 California Shine the Light and Metrics
California residents may request information about our disclosure of certain Personal Information to third parties for their direct marketing purposes. We do not disclose Personal Information to third parties for their own direct marketing purposes without consent. Requests may be submitted to privacy@intellievent.com with the subject line “California Shine the Light Request.” If we are required to publish privacy request metrics, we will make those metrics available in this Privacy Policy.
26. Sale, Sharing, Advertising, and Data Broker Practices
We do not sell Customer Data. We do not disclose Customer Data to data brokers. We do not use Customer Data for third-party advertising, targeted advertising, or cross-context behavioral advertising. We do not knowingly collect and sell Personal Information of consumers with whom we do not have a direct relationship in a manner that would make us a data broker under applicable law, unless we register and comply with applicable data broker obligations.
IntelliEvent may market its own products and services to business customers and prospects using first-party Commercial Relationship Data, account data, usage insights, support history, subscription information, and similar information generated through our business relationship and operation of the Services. This is separate from third-party targeted advertising and does not involve selling or sharing Customer Data for advertising purposes.
27. Children’s and Minors’ Privacy
The Services are designed for business use and are not directed to children under 13. We do not knowingly collect Personal Information directly from children under 13. Customers may submit Customer Data that relates to minors only if permitted by the applicable customer agreement and applicable law. Customers are responsible for obtaining required consents, providing required notices, and complying with laws that apply to minors’ information. If we learn that we have collected Personal Information directly from a child under 13 without required consent, we will take reasonable steps to delete the information or obtain required consent. We do not knowingly sell or share Personal Information of individuals under 16.
28. Regulated and Sensitive Data Use Cases
The Services are general B2B SaaS services and are not intended for all regulated data unless expressly agreed in writing.
Protected Health Information:Customers may not submit protected health information subject to HIPAA unless we have entered into a Business Associate Agreement and the applicable Services are approved for that use.
Financial Information and GLBA:Customers may not submit nonpublic personal information subject to the Gramm-Leach-Bliley Act or similar financial privacy laws unless expressly permitted in writing and appropriate safeguards are in place.
Payment Card Information:Payment card information should be submitted only through approved payment processing workflows. Customers and users should not submit payment card numbers through free-text fields, support tickets, attachments, or unapproved channels.
Student Data and Education Records:Customers may not submit student education records or information subject to FERPA, state student privacy laws, or similar education privacy laws unless expressly permitted in writing.
Biometric Information:Customers may not submit biometric identifiers or biometric information unless expressly permitted in writing and all required consents, notices, and legal requirements have been satisfied.
Consumer Reports and Eligibility Data:The Services are not designed to be used as a consumer reporting agency or to furnish, use, or process consumer reports for credit, employment, insurance, housing, or other eligibility purposes unless expressly agreed in writing.
Government Identifiers and Highly Sensitive Data:Customers should not submit Social Security numbers, passport numbers, driver’s license numbers, tax identifiers, or similar government identifiers unless the applicable agreement expressly permits that information.
29. Communications
29.1 Service Communications
We may send administrative, transactional, support, security, billing, and account-related communications. These communications are part of the Services and may not be fully optional while an account is maintained.
29.2 Marketing Communications
We may send marketing communications about IntelliEvent products and services where permitted by law. Such communications may be based on business contact information, account relationship information, subscription status, product adoption information, support history, feature usage, and other first-party Commercial Relationship Data. You may opt out of marketing emails at any time using the unsubscribe link or by contacting us at privacy@intellievent.com. We may continue to send transactional or service-related communications, such as security notices, account messages, invoices, support responses, and updates about the Services.
29.3 SMS and Telephone Communications
If we offer SMS, telephone, or similar communications, we will provide required notices and obtain consent where required by law. Message and data rates may apply. You may opt out as described in the relevant message or consent flow.
30. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the “Last Updated” date. If changes are material, we will provide additional notice where required or appropriate, such as through the Services, by email, through account notices, or through other reasonable means. Where required by law, we will obtain consent before applying material changes to previously collected Personal Information. Continued use of the Services after an updated Privacy Policy becomes effective means the updated Privacy Policy applies to Personal Information collected after the effective date, except where consent or additional notice is required by law.
31. Accessibility
We are committed to making this Privacy Policy accessible. You may request this Privacy Policy in an alternative format by contacting us using the information below.
32. Contact Us
If you have questions about this Privacy Policy or our privacy practices, you may contact us at:
| Extreme-Impact / IntelliEvent | Attn: Privacy |
|---|---|
| privacy@intellievent.com | |
| Support Email | support@intellievent.com |
| Mailing Address | 560 Fremont St., Monterey, CA 93940 |
| Website | intellievent.com |