Privacy policy.

This Privacy Policy explains how VFX PLANET SUMMIT , operating the VFX Summit in Egypt 2026 website, collects, uses, processes, and protects your Personal Data. We are committed to protecting the privacy of our global visitors and registrants and comply with all applicable data protection laws, including the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), the European Union’s General Data Protection Regulation (GDPR), and the Egyptian Personal Data Protection Law (PDPL).

1. Information About the Data Controller

The entity responsible for the processing of your Personal Data is:

Data Controller: VFX Planet Summit Address: Montreal, Canada Email: info@vfxpsummit.com

2. Personal Data We Collect

We collect Personal Data in two main categories:

A. Information You Provide to Us (Registration & Contact)

This data is collected when you register for the Summit, sign up for a newsletter, or contact us directly. This may include:

  • Identity Data: Full Name, Job Title, Company/Organization Name.

  • Contact Data: Email Address, Telephone Number, Country of Residence.

  • Payment Data: Billing Address, and payment information (Note: We do not store full payment card details; these are processed securely by a third-party provider, [Name of Payment Processor, e.g., Stripe/PayPal]).

  • Interest Data: Questions, comments, or communication preferences you provide.

B. Information Collected Automatically (Website Use)

When you visit our website, we automatically collect certain information:

  • Technical Data: IP address, browser type and version, time zone setting, operating system, and platform.

  • Usage Data: Information about how you use our website, including URLs, page response times, download errors, and page interaction information (e.g., scrolling, clicks, and mouse-overs).

3. How and Why We Use Your Personal Data (Legal Basis)

We will only use your Personal Data when the law allows us to. Below are the purposes and the corresponding legal basis for processing:

Purpose of Processing

Type of Data Used

Legal Basis (GDPR/PDPL/PIPEDA)

Event Registration & Logistics

Identity, Contact, Payment

Performance of a Contract (To fulfil your registration agreement).

Service Communication

Identity, Contact

Performance of a Contract (To send essential updates, confirmations, and security alerts).

Marketing & Promotions

Identity, Contact, Interest

Consent (You explicitly opt-in to receive these).

Website Operation & Security

Technical, Usage

Legitimate Interest (To keep our site secure, prevent fraud, and ensure the site functions correctly).

Internal Analytics & Improvement

Usage, Technical (usually anonymized)

Legitimate Interest (To analyze visitor behavior and improve our Summit offerings).

Note on Consent (PDPL/GDPR Compliance): We require explicit consent for all direct electronic marketing. You have the right to withdraw this consent at any time via the unsubscribe link in the email or by contacting us.

4. Disclosure and Sharing of Your Personal Data

We may share your Personal Data with the following parties for the purposes described above:

  • Service Providers: Third parties who provide services on our behalf, such as payment processors, email communication platforms ([e.g., Mailchimp]), and cloud hosting providers. They only process your data based on our strict instructions.

  • Event Partners & Sponsors (Only with Explicit Consent): If you provide explicit consent during registration, we may share your Identity and Contact Data with our trusted sponsors and partners. This consent is optional and will be clearly requested on the registration form.

  • Legal & Regulatory Authorities: When legally required to do so, we may disclose your data to comply with a subpoena, court order, or similar legal process, or to protect our rights, property, or safety.

5. International Data Transfers

As our company is based in Canada and the event is hosted in Egypt, your Personal Data will be transferred, processed, and stored outside your country of residence.

  • Transfer Mechanism: We transfer data out of Egypt/EU only to countries deemed to have adequate data protection standards (like Canada) or where we have implemented appropriate safeguards (such as standard contractual clauses or legally required permits) to ensure your data receives the same level of protection.

  • Egypt Compliance: We will seek necessary licensing or permits from the Egyptian Personal Data Protection Centre (PDPC) if required for the processing or cross-border transfer of data pertaining to Egyptian residents.

6. Your Data Protection Rights

Under applicable laws, you have the following rights regarding your Personal Data:

Right

Description

Right to Access

You can request a copy of the Personal Data we hold about you.

Right to Rectification

You can ask us to correct or update inaccurate or incomplete data we hold about you.

Right to Erasure

You can ask us to delete your data (e.g., if it is no longer necessary for the original purpose, or you withdraw consent).

Right to Restrict Processing

You can ask us to suspend the processing of your Personal Data in certain circumstances (e.g., if you contest the accuracy).

Right to Object

You can object to the processing of your data where we are relying on a legitimate interest or for direct marketing purposes.

Right to Data Portability

You can request to receive your Personal Data in a structured, commonly used, and machine-readable format.

Right to Withdraw Consent

You can withdraw your consent for future marketing at any time without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please submit a written request to the Data Controller via the email address provided in Section 1. We will respond to all legitimate requests within 30 days.

7. Data Retention

We will only retain your Personal Data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Contract Data: Data related to your registration (contract) will be kept for [X] years after the Summit ends to satisfy auditing and legal defense purposes.

  • Marketing Data: Data used for marketing purposes will be retained until you withdraw your consent or up to [X] years after your last interaction with us, whichever is earlier.

8. Data Security

We have implemented appropriate security measures to prevent your Personal Data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. We limit access to your data to employees, agents, contractors, and other third parties on a "need to know" basis.

In the event of a data breach, we will notify the applicable regulatory body (such as the PDPC in Egypt, or the OPC in Canada) and affected individuals within the legally required timeframe (e.g., 72 hours under GDPR/PDPL).

9. Changes to This Policy

We reserve the right to update this Privacy Policy at any time. When we do, we will revise the "Effective Date" at the top of this policy. We encourage you to review this policy periodically to stay informed about how we are protecting your information.