Last update: May 8, 2024
The activities of Showcare (“Showcare”, “we”, “us” or “our”) require users to provide certain Personal Data. The procedures for collecting and processing your Personal Data must therefore respect certain rules, in the spirit of fairness and transparency and in compliance with the applicable privacy laws. Showcare commits to collecting, processing, or storing your Personal Data solely to carry out defined, legitimate, and relevant purposes.
We intend to protect our customers, clients of our customers, website visitors and all other users from any fraudulent conduct. This Privacy Policy applies to Showcare and its subsidiaries and sets out our practices regarding data collected through any of our transactional online platforms or through other web-based or mobile services (our “Websites”), as well as data collected otherwise.
When Showcare collects and processes personal information in order to provide our services to clients, we will only process such personal information on behalf of the particular client in order to provide our services to that client. Our collection, use, disclosure and other processing of personal information on behalf of clients is subject to the privacy policy of our respective clients.
We may update this Policy at any time. Please review this Policy periodically.
Personal Data: Any information relating to an identified or identifiable natural person, whether directly or indirectly, and allows that person to be identified.
Other Data: Other information collected about an individual or a business that does not permit to identify a person, whether the information is taken individually or in aggregate with other data.
Processing: Any operation or set of operations which is performed, whether or not by automated means, and applied to Personal Data or sets of Personal Data (such as collection, recording, storage, modification, consultation, disclosure, reconciliation, erasure or destruction, etc.)
Data Controller: The natural or legal person, public authority, service or other organism which, alone or jointly, determines the means and the purposes of Processing. Data Controller must ensure protection of Personal Data processed by Sub-Processors.
Data Processor or Sub-Processor: The natural or legal person, public authority, service or other organism which processes Personal Data or Other Data, whether or not they are a third party. A Processor or Sub-Processor must act in accordance with instructions received from the Data Controller.
Data Subject: A natural person, identified or identifiable by the Personal Data.
Showcare will seek your consent for the collection, use or disclosure of your Personal Data before or at the time of collection, except as otherwise authorized by law. Your consent to the collection, use or disclosure of your Personal Data must be manifest, free and enlightened. Depending on the nature and sensitivity of your Personal Data, your consent can be express or implied. If you gave your consent to our customer, we may also collect your Personal Data from them.
Your consent can be withdrawn at any time, subject to legal and contractual restrictions and reasonable notice. You may revoke your consent by contacting Showcare’s Data Protection Officer (see Contact Us section below). Please note that if you choose to withdraw your consent, we may not be able to provide you with certain services.
Personal Data may be collected on our corporate website, www.showcare.com, via our lead retrieval platform www.showlead.com and via our registration platform www.mylibralounge.com or www.showcare.io. Such Personal Data can include your name, email address, home address, telephone number, date of birth, username, IP address, payment and billing information, professional contact information, products or services purchased, use histories, browsing history, clickstream data, search history, access logs, geolocation data, disability information and medical conditions. Showcare only collects Personal Data that is necessary for the purposes of establishing, managing and maintaining our relationship with you.
For example, we may use your Personal Data for the following purposes:
For the purpose of engaging in a sales dialog, Showcare may also use your Personal Data for the following purposes:
Showcare recognizes that, except in the cases and under the conditions described hereinafter and as authorized or required by law, the communication of your personal information requires your consent when your personal information is communicated to a third person.
According to the applicable legislation, for example, personal information about you may be communicated by Showcare, without your consent, to the following persons:
Access within Showcare also does not require your consent but is strictly limited to the persons for whom such information is necessary for the performance of their functions and duties. Unauthorized access to or disclosure of your personal information by a Showcare employee is strictly prohibited.
All data processed via the online registrations platforms, registration forms, through the assistance phone numbers is collected on behalf of our customers for the purpose of registering attendees to an event. Similarly, all data processed via the virtual event platform is collected on behalf of our customers for the purpose of assisting to a virtual event. For these services, Showcare acts as a Data Processor and is bound to instructions or codes of conduct laid out by the event organizers, which are acting as Data Controllers.
Showcare may share your information with Sub-Processors only for the purpose of fulfilling its contractual obligations. These transfers of information are subject to the provisions of this Privacy Policy, as well as the instructions provided by the Data Controller. Occasionally, organizers may share Personal Data to Showcare in the form of attendee or exhibitor lists, or from an export of their system.
Showcare is a Data Processor in the lead retrieval services as it does not determine the purpose of processing the information gathered during events and is solely a provider and facilitator of information exchange between attendees and exhibitors. Exhibitors should always ask for consent before gathering leads from attendees and respect attendees’ choice to opt out of transferring their Personal Data. In the same way, attendees agreeing to have their badges scanned are deemed disclosing their Personal Data consenting to the use intended by the exhibitors and are free to deny such access to their information.
Showcare uses “cookies” (i.e. small pieces of data that are saved to your device) on its corporate website as well as on its online platforms. Cookies may include Personal and Other Data such as your Internet Protocol (IP address), geolocation area, language preference, operating system, Internet service provider, the date and time you accessed the website, the previous website which allowed you to link with the website and the content viewed and downloaded. Cookies used are the following:
To opt out of any cookie or for more information on these cookies, please visit our Cookie Widget on the bottom left of the website you are visiting.
Event organizers’ tracking cookies may be used on the registration platforms hosted by Showcare. In these cases, Showcare does not process information gathered by the cookies and cannot guarantee how the organizers use them. Their privacy policies should be consulted to know more about their use of tracking cookies.
Cookies are not the only way to recognize or track visitors to a website. We employ a software technology called clear gifs (a.k.a. Web Beacons/Web Bugs), that help us better manage the Website by informing us what content is effective. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users. In contract to cookies, which are stored on a user’s computer hard drive, clear gifs are embedded invisibly on Web pages or in emails and are about the size of the period at the end of this sentence. We use clear gifs or pixels in our HTML-based emails to let us know which emails have been opened by recipients. This allows us to gauge the effectiveness of certain communications and the effectiveness of our marketing campaigns. We tie the information gathered by clear gifs in emails to our customers’ Personal Information.
We will destroy, erase or make anonymous your Personal Data that are no longer required to fulfill the identified purposes or to comply with legislative requirements or government orders. Personal Data is classified based on the risk associated with it. Depending on the sensitivity of the information, it can be retained in our database for a period not exceeding three years from the last known use subject to applicable laws. Various techniques are used in order to destroy Personal Data, such as pseudonimization of Personal Data. Specific data may be stored for one year if they relate to payment information, in order to be able to fulfill claim, refund or credit requests, subject to applicable laws.
Data security is one of Showcare’s priorities. Your Personal and Other Data are stored in a secured data center, protected and monitored 24 hours and seven days a week with limited, internal only user access. Data is also secured when transferred as Showcare uses the industry’s recommended encryption technologies. Hardware is also encrypted and protected against breaches. Software updates and hardware replacement are performed periodically at Showcare to ensure latest protection against intrusions. Our security safeguards include physical, organizational and technological measures. Showcare also takes the necessary measures to ensure that its employees or agents are trained on the contents of this Policy
However, no electronic system is entirely secure. If required, Showcare will report to the applicable supervisory authority and individuals concerned any breaches of security safeguards involving Personal Data that poses a real risk of significant harm to the Data Subjects.
Your Personal Data may be stored and processed in any country where we have facilities or in which we engage third party service providers. By using the Websites, you consent to the transfer of information to countries outside your country of residence, or for individuals in the Province of Quebec outside of your province of residence, which may have different data protection rules than in your country. While such information is outside of Canada, it is subject to the laws of the country in which it is held, and may be subject to disclosure to the governments, courts or law enforcement or regulatory agencies of such other country, pursuant to the laws of such country. However, our practices regarding your Personal Data will at all times continue to be governed by this Privacy Policy and, if applicable, we will comply with the GDPR requirements providing adequate protection for the transfer of Personal Data from the EU/EEA to third country. Please see the section “Processing of Personal Data of individuals in the European Economic Area (EEA)” below for further details.
Our websites may contain links to social medias, other websites as well as social media features and widgets such as the Like, Follow and Share buttons. These features may set cookies in order to be used and may be hosted by third parties. Interactions with these social media links or features are under the conditions of the privacy policy of such third parties and Showcare is not responsible for collection and processing of these organizations.
If you are redirected to other websites via links on any of our websites, your interactions are governed by the policies of these websites, and any Personal Data disclosed on those sites will be treated under said policies. Showcare is providing these links to you only as a convenience and Showcare is not responsible for the content of such websites or their data collection policy. The inclusion of a link on our Websites does not indicate endorsement by Showcare.
Our websites are not directed to children under the age of 16, and we do not knowingly collect Personal Data from children under the age of 16 without obtaining parental consent, unless required by our customers. If you are under 16 years of age, then please do not use or access the Websites at any time or in any manner. If we learn that Personal Data has been collected on the Websites from persons under 16 years of age and without verifiable parental consent, then we will take the appropriate steps to delete this information. If you are a parent or guardian and discover that your child under 16 years of age has provided Personal Data, then you may alert us as set forth in the “Contact Us” section and request that we delete that child’s Personal Data from our systems.
You have the right to consult and obtain communication of your Personal Data which is contained in a file held by Showcare. On written request and subject to proof of identity, you may access the Personal Data that we hold and ask that any necessary corrections be made. Showcare will respond to every request for access and rectification within 30 days of receiving a written request. If we cannot provide access or rectify your Personal Data, we will inform you of the reasons why and will provide you with any recourse available.
You are responsible for ensuring that the Personal Data we maintain about you is accurate and up to date. Please inform us immediately of any change in your Personal Data by mail or e-mail.
All questions or concerns regarding this Policy, or about the collection, use and disclosure of your Personal Data, including requests for access or rectification should be made in writing to our Privacy Officer. You can find the coordinates in the “Contact Us” section below.
For individuals that are from the EEA or other regions that stipulate a lawful basis for processing personal information (such as under GDPR Article 6), our legal basis for collecting and using their personal information will depend on the nature and circumstances of the processing activity. Where we are the processor for our customers, our legal basis may be fulfilment of a contract or consent. Where we are the controller, our legal basis will be consent or legitimate interest where the processing is in our legitimate interests and not overridden by the individual’s data protection interests, or fundamental rights and freedoms. These interests are to provide individuals with access to our platforms and features of our platforms; to send them information they have requested; to ensure the security of our platforms by trying to prevent unauthorized or malicious activities; or to enforce compliance with our terms of use, contracts and other policies.
Under the General Data Protection Regulation (“GDPR”), you may be entitled to additional rights. This section only applies to the processing of Personal Data in the EEA, to the extent that such processing occurs while the individuals concerned are in that area and where the processing activities are related to offering goods or services or the monitoring of their behavior that takes place in the EEA. The provisions of this section shall take precedence over other provisions of the Privacy policy, insofar as they deviate from each other.
A. Consent
If your consent is given in a written declaration that relates to other matters, Showcare will make sure that the request for consent to the processing of Personal Data is clearly distinguishable. We are required to obtain your explicit consent for the processing of Personal Data relating to ethnic origin, a person’s sex life or sexual orientation, political opinions, religious or philosophical beliefs or trade union membership, data concerning health or genetic or biometric data.
B. Collection, Retention and Use of Personal Data
As stated above, Showcare will not keep Personal Data for longer than necessary to achieve the purposes for which it was collected and we will make reasonable efforts to specify in advance the time period during which Personal Data will be retained, or the criteria used to determine that period.
C. Automated Decision-Making
Showcare recognizes that you have the right to know if your Personal Data is being processed by an automated decision-making process. Upon request, we will provide you with information about the reasoning behind the automation. Unless otherwise required or authorized by law, you have the right not to be subjected to a decision based solely on automated decision-making process, if said decision produces legal effect on you.
D. Privacy Impact Assessment
Showcare will carry out a data protection impact assessment prior to using new technologies if it is likely to result in a high risk to the rights and freedoms of individuals, including the right to privacy.
E. Right to Erasure
If the law so authorizes, you have the right to obtain from Showcare the erasure of your Personal Data without undue delay.
F. Accuracy and Safeguards
Showcare will implement, before the collection of Personal Data, appropriate technical and organizational measures such as pseudonymisation and data minimisation.
Showcare only shares Personal Data with outside agents, mandataries, consultants, data processors, sub-processor or service providers which provide sufficient guarantees that appropriate safeguards are in place to protect individuals’ Personal Data. The processing of Personal Data by sub-processor or outside agents, mandataries, consultants, data processors or service providers is governed by a contract or another legal document.
G. Accountability
Showcare ensure it can account for and demonstrate compliance with the GDPR in its processing of Personal Data. This is notably achieved by maintaining a record of processing when applicable, and training its employees on data protection compliance.
H. Complaint Procedures, Right of Access and Rectification
We will facilitate your right to access, rectify and obtain your Personal Data. You can always obtain from Showcare a confirmation as to whether or not your Personal Data is being processed. Any rectification or erasure of your Personal Data shall be communicated to each third party to whom the Personal Data has been disclosed. As Showcare is a Data Processor to the event organizers in the registration process, data-related requests related to registration to an event should be made to the organizers. They would in turn transfer the request to Showcare and any other Processors involved in the registration process.
I. Data Breach
In the event of a Personal Data breach, Showcare will assess the risk for the Data Subjects and, if there is a risk, will notify the competent supervisory authority in accordance with applicable laws. Under applicable laws, if the risk assessment indicates a high risk for the Data Subjects, Showcare will communicate the breach of Personal Data to the Data Subjects. A specific procedure concerning the management of security incidents has been formalised.
If a data breach affects information gathered as performing Data Processor duty, Showcare will notify the Data Controller as soon as practicable in accordance with applicable laws. If Showcare is informed of a data breach from one of its own Sub-Processors, Showcare will notify in turn the Data Controller, if Personal Data held on its behalf is breached, as soon as practicable, in accordance with applicable laws.
J. Data Transfers
We are headquartered in Canada. As such, we and our service providers may transfer your Personal Information to, or access it in, jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction. We will take steps to ensure that your Personal Information receives an adequate level of protection in the jurisdictions in which we process it. If you are located in the European Economic Area (“EEA”) or Switzerland, we provide adequate protection for the transfer of Personal Information to countries outside of the EEA or Switzerland through a series of intercompany agreements based on the Standard Contractual Clauses. We may also need to transfer your information to other group companies or service providers in countries outside the EEA. This may happen if our servers or suppliers and service providers are based outside the EEA, or if you use our services and products while visiting countries outside this area.
If you are a resident of a country other than Canada, you acknowledge and consent to our collecting, transmitting, and storing your Personal Information out of the country in which you reside.
A. Data Privacy Rights
Pursuant to the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act (collectively, the “CPRA”), California residents have additional data privacy rights, including (i) the right to be notified about what personal information is collected about you, and our intended use and purpose for collecting your personal information, (ii) the right to know and access personal information we have collected, used, disclosed, or sold about you over the past twelve (12) months, including the categories of personal information we have collected, used, disclosed, or sold about you, the categories of sources from which the personal information is collected, the business or commercial purpose for which your personal information was collected, used, disclosed, or sold, and the categories of third parties with whom we have shared your personal information, (iii) the right to request Showcare to transfer, to the extent feasible, personal information in certain forms and formats, (iv) the right to request that we delete/erase your personal information under certain circumstances, and (v) the right not to be subject to discrimination for asserting your rights under the CPRA. The personal information we collect from you, the purposes for which it is used, the source of such personal information, and the parties to whom we share your personal information is set forth in this Privacy Policy. To exercise any of the CPRA’s data privacy rights set forth herein, please contact us in accordance with the “How to Contact Us” section listed below. If you would prefer, you may designate an authorized agent to submit a CPRA privacy request on your behalf. An authorized agent must be registered with the California Secretary of State to conduct business in California.
B. Privacy Request Verification Process.
If you (or your authorized agent) make any request related to your personal information under the CPRA, Showcare will ascertain your identity (and the identity of the authorized agent, to the extent applicable) to the degree of certainty required or permitted under the law before addressing your request. Showcare will, to the extent required or permitted by law, require you (or your authorized agent) to verify your request via email or other means and match at least two or three pieces of personal information we have previously collected from you before granting you access to, or erasing, specific pieces or categories of personal information, or otherwise responding to your request. We may require written documentation that demonstrates a third party is authorized to serve as your agent for the purposes of submitting the requests set forth herein, unless you have provided the authorized agent with power of attorney pursuant to California Probate Code §§ 4121 to 4130. None of the CPRA’s rights are absolute and are subject to legal and regulatory exceptions and exemptions. For more information about the CPRA, please see: https://oag.ca.gov/privacy/CCPA.
C. Opt-Out Rights / Do Not Sell My Personal Information.
California residents have the right to opt-out of the sale of their personal information. Showcare has shared your internet or other electronic network activity information collected via cookies and other tracking technologies with our data analytics providers, cookie providers, and ad networks to provide targeted advertising. Such sharing may be deemed a sale or sharing under the CPRA. To opt-out of this sale/sharing, please visit Do Not Sell or Share My Personal Information in our Cookie Widget.
If you have any questions or comments about this Privacy Policy or your Personal Data, to make an access or correction request, to exercise any applicable rights, to make a complaint, or to obtain information about our policies and practices with respect to any service providers, our Privacy Officer (or Data Protection Officer) can be reached by mail, email or phone using the following contact information:
Showcare
1200 G. St. NW, Suite 800
Washington, DC, 20005-6705
United States
1-800-255-0522
privacy@showcare.com