We collect only what we need to provide and secure event operations, support payments and access control, and improve the AtomX service. We share data only with trusted partners and under lawful conditions. You control your personal data and can contact our DPO to exercise your rights.
This Policy applies to:
If you are an organiser or vendor using our services, separate contractual terms will supplement this policy (data processors / controllers responsibilities).
We only collect data necessary to run events and operate our platform. Typical categories:
Identity & Contact
Name, job title, business name, email, telephone, postal address for demo requests, contracts, vendor onboarding, and support.
Event Attendee Data
Wristband/card IDs, optional profile (name, email, phone if provided), top-up history, purchase history, consumption categories, session/check-in timestamps, and QR code validation logs.
Financial & Transactional
Payment instrument token (not raw card data), payer name, transaction amounts, refunds, vendor settlement details. (We use PCI-compliant payment processors; AtomX does not store full card numbers.)
Device & Technical
IP address, browser/device type, cookies and tracking identifiers, geolocation where explicitly provided (for logistics), system logs, and event device telemetry.
Communications
Messages you send to us (email, chat, support tickets), meeting notes, and marketing preferences.
Recruitment / Business
CVs, professional references, billing and company details.
We process personal data for specific, limited purposes:
To Provide the Service
Process payments, handle top-ups/refunds and vendor settlements. Validate tickets and control access at gates. Reconcile transactions and generate vendor/organiser reports.
(Lawful basis: contract performance, legitimate interests)
To Communicate and Support
Respond to demo requests, customer support, onboarding.
(Lawful basis: contract performance, legitimate interests, consent for marketing)
To Improve Products & Safety
Aggregate analytics, fraud detection, operational monitoring and product improvement.
(Lawful basis: legitimate interests; anonymised data used where possible)
To Comply with Law
Retain records for accounting, audit, tax and regulatory purposes; respond to lawful requests.
(Lawful basis: legal obligation)
For Marketing (Optional)
Send product updates, event recommendations and newsletters where you consent to receive them.
(Lawful basis: consent / legitimate interest where allowed)
We use cookies and similar technologies on atomx.in to operate the site and measure usage.
You can manage cookie preferences via the cookie banner or browser settings. Disabling analytics cookies won't prevent you from using the site but will reduce personalised experiences.
We share personal data only as necessary and under strict controls:
Service Providers & Processors
Payment processors (PCI-compliant), cloud hosting, analytics, CRM, email and communications providers. These parties act under contract and only process data to provide their services.
Event Customers
Organisers and vendors receive transactional data for vendor settlement and event reporting. Organisers may receive anonymised attendee insights unless attendees have explicitly consented to share contact details.
Legal & Safety
Where required by law, subpoena, or to protect legal rights, safety, or security.
Business Transfers
In a sale or merger, personal data may be transferred as part of business assets. We will notify affected users where required.
We never sell personal data for third-party advertising.
We retain personal data only as long as necessary for the purpose collected, and to meet legal, accounting and security obligations.
Typical retention periods (may vary by contract / law):
If you request deletion, we will remove your personal data unless we are legally required to keep it.
Depending on local law, you may have the right to:
To exercise any right, contact dataprotection@atomx.in. We will respond within the time frame required by applicable law.
We maintain administrative, technical and physical safeguards to protect personal data from unauthorized access, loss or misuse, including:
No system is 100% secure; in the unlikely event of a data breach that creates risk to rights and freedoms, we will notify affected individuals and relevant authorities as required by law.
AtomX operates internationally. Your data may be transferred and processed outside your country (for example, India ↔ cloud providers or service partners). Where transfers occur, we put safeguards in place (e.g., standard contractual clauses, adequate protections, or other lawful mechanisms) to ensure continued protection.
Our services are not intended for children under 16 (or the age required by local law to consent). We do not knowingly collect personal data from children. If you believe we have collected data from a child, contact us and we will take steps to delete it.
Our site may include links to third-party sites. This Privacy Policy does not apply to third parties — review their privacy notices before using them.
We may update this Privacy Policy to reflect product or legal changes. When we do, we will publish the revised policy on this page with a new "Last updated" date. For material changes affecting your rights, we will provide more direct notification where required.
Questions, requests or complaints: hello@atomx.in
If you are not satisfied with our response, you may also raise your concern with your local data protection authority.
If you are an EU/EEA resident, you may have additional protections under the GDPR (e.g., right to object, automated decision-making restrictions).
California residents: you may have rights under the California Consumer Privacy Act (CCPA); contact dataprotection@atomx.in for details about your rights and how to exercise them.
This policy is a general statement of practice. Local laws may require additional notices — AtomX will provide contractually required and region-specific privacy notices where applicable.