Privacy and Data Protection Policy

The Global Email Marketing Summit and its websites are promoted, maintained, and operated by SafetyMails Digital Marketing, CNPJ 22.527.773/0001-63.

We collect, store, process, and use certain personal data belonging to those who use our websites, participate in our event, and who have freely and unequivocally given their consent to this procedure. In doing so, we act as controllers of this data and are subject to the provisions of the main Data Protection Laws.

We take care to protect your personal data and, for this reason, we provide this document containing important information about:

• Who should use our website;
• What information we collect and what we do with it;
• Your rights in relation to your personal data; and
• How to contact us.

With the implementation of this document, the following are guaranteed:

• compliance with laws, regulations, and good practices regarding personal data privacy;
• the protection of natural persons’ data and respect for privacy;
• the protection of SAFETYMAILS’ staff, customers, and partners;
• the principle of transparency of processes and the inviolability of privacy, honor, and image;
• guidelines for the event of personal data breaches;

Data collection

At the time of registration

We collect the following data from our Participants when they register on our website for the Global Email Marketing Summit event, namely:

• Full name
• CPF (mandatory only for residents in Brazil)
• Full address
• Email
• Phone number
• Company
• Company website
• Position
• Number of employees
• Market segment

As some of this data may be considered personal data, it is subject to applicable data protection laws.

This data is collected at the following time: when the Participant registers and purchases a ticket to participate in the Global Email Marketing Summit, from, but not limited to, the website www.globalemailmarketingsummit.com.

The data provided is collected for the following purposes:

• to issue invoices for payments made;
• to grant access to Event content;
• to send informational communications about the event, such as activity schedules and links to access the content made available;
• to make offers and promotions related to the event theme available;
• to enable the Sponsors of this Event to establish relationships, send offers, news, and promotions;
• to enable future communications, informative content, newsletters, and other offers to be provided;

Among the legal bases for the processing of personal data are the following cases:

• when the data subject gives their explicit consent;
• when necessary to comply with legal or regulatory obligations;
• when necessary for the performance of a contract or preliminary procedures related to a contract to which the data subject is a party;
• when necessary to meet the legitimate interests of SafetyMails or third parties, except in cases where the fundamental rights and freedoms of the data subject prevail;
• for credit protection;

To learn more about the specific cases in which we rely on this legal basis, or to obtain more information about the tests we perform to ensure that we can use it, please contact our Personal Data Protection Officer through the contact channel provided in this document.

Sensitive data

NO SENSITIVE PERSONAL DATA WILL BE COLLECTED FROM PARTICIPANTS, UNDERSTOOD AS THOSE THAT REVEAL INTIMATE AND SENSITIVE ASPECTS OF A PERSON’S LIFE. AS SUCH, NO DATA WILL BE COLLECTED ON RACIAL OR ETHNIC ORIGIN, RELIGIOUS BELIEFS, POLITICAL OPINION, MEMBERSHIP IN A TRADE UNION OR RELIGIOUS, PHILOSOPHICAL OR POLITICAL ORGANIZATION, DATA RELATING TO HEALTH OR SEXUAL LIFE, GENETIC OR BIOMETRIC DATA, WHEN LINKED TO A NATURAL PERSON.

Principles of data collection, storage, and processing

All SafetyMails activities related to the Global Email Marketing Summit are conducted in good faith and in accordance with the following principles:

• Have a legitimate, specific, explicit purpose that is communicated to the data subject;
• Adapt the processing of data to the purposes communicated to the data subject;
• Retain personal data only for as long as necessary;
• Collect only the data necessary to fulfill the purposes of the processing, limiting ourselves to minimal and proportionate information;
• Allow data subjects to access their data free of charge and in an easy manner;
• Ensure the accuracy, clarity, relevance, and updating of the data processed;
• Provide clear and accurate information to data subjects about aspects of the processing of their personal data, through easily accessible means;
• Protect personal data processed with measures capable of maintaining the integrity, availability, and confidentiality of the data processed from accidental or intentional interference;
• Prevent damage to data subjects that may be caused by the processing of their personal data;
• Ensure that the processing carried out does not result in discriminatory, unlawful, or abusive acts, reviewing the processing operations whenever necessary to assess whether there is a possibility of discrimination;
• Seek the correct application of these principles in all processing activities carried out;
• Adopt effective measures to demonstrate compliance with data protection standards throughout SafetyMails, allowing for effective accountability regarding the processing of personal data.

Cookies

Cookies are small text files automatically downloaded to your device when you access and browse a website. They are basically used to identify devices, activities, and user preferences.

Cookies do not allow any files or information to be extracted from the hard drive of those who access the website, nor do they allow access to personal information that has not been provided by the user or the way in which they use the website’s resources.

a. Website cookies

Website cookies are those sent to the user’s computer or device exclusively by the website.

The information collected through these cookies is used to improve and personalize the user experience. Some cookies may, for example, be used to remember the user’s preferences and choices, as well as to offer personalized content.

b. Third-party cookies

Some of our partners may set cookies on the devices of users who access our website.

These cookies generally aim to enable our partners to offer their content and services to users who access our website in a personalized manner, by obtaining browsing data extracted from their interaction with the website.

Users can obtain more information about third-party cookies and how the data obtained from them is processed, as well as access a description of the cookies used and their characteristics, by clicking on the following link:

Google Analytics – https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=pt-br

Facebook – https://www.facebook.com/policies/cookies/

As entidades encarregadas da coleta dos cookies poderão ceder as informações obtidas a terceiros.

c. Cookie management

Users may refuse to accept cookies from the website by disabling this option in their browser. More information on how to do this in some of the most commonly used browsers can be found at the following links:

Internet Explorer: https://support.microsoft.com/pt-br/help/17442/windows-internet-explorer-delete-manage-cookies

Safari: https://support.apple.com/pt-br/guide/safari/sfri11471/mac

Google Chrome: https://support.google.com/chrome/answer/95647?hl=pt-BR&hlrm=pt

Mozila Firefox: https://support.mozilla.org/pt-BR/kb/ative-e-desative-os-cookies-que-os-sites-usam

Opera: https://www.opera.com/help/tutorials/security/privacy/

However, disabling cookies may affect the availability of some tools and features on the website, compromising its correct and expected functioning. Another possible consequence is the removal of any user preferences that may have been saved, thereby impairing your experience.

Collection of unspecified data

Eventually, other types of data not expressly provided for in this Privacy Policy may be collected, provided that they are provided with the user’s consent, or that the collection is permitted on another legal basis provided for by law.

In any case, the collection of data and the processing activities resulting therefrom will be communicated to users of the website..

Sharing personal data with third parties

We share some of the personal data mentioned in this section with third parties, event sponsors.

The data shared is as follows: Full name, Email, Phone number, Company, Company website, and Job title.

This data is shared for the following reasons and for the following purposes:

• so that future communications, informative content, newsletters, and other offers may be provided by these third parties from their own structures and for the purpose of establishing a relationship.

In addition to the situations described above, we may share data with third parties to comply with legal or regulatory requirements, or to comply with an order issued by a public authority.

In any case, the sharing of personal data will comply with all applicable laws and regulations, always seeking to ensure the security of our Participants’ data, in accordance with industry standards.o.

International data transfer

SafetyMails collects and transfers personal data collected to countries located in the European Union, Canada, and the United States, countries that provide an adequate level of protection. These transfers occur to SafetyMails Partners who act as personal data processing service providers that demonstrate compliance with best data protection practices and compliance with data protection laws.

By accessing and using SafetyMails’ services, you consent to the processing and transfer of such data to the countries mentioned above.

How long will your personal data be stored?

The personal data collected by the website is stored and used for a period of time that corresponds to what is necessary to achieve the purposes listed in this document and that considers the rights of its owners, the rights of the website controller, and the applicable legal or regulatory provisions.

Once the personal data storage periods have expired, the data is removed from our databases or anonymized, except in cases where storage is possible or necessary due to legal or regulatory provisions.

Legal basis for the processing of personal data

A legal basis for the processing of personal data is nothing more than a legal basis, provided for by law, which justifies it. Thus, each personal data processing operation must have a corresponding legal basis.

We process our users’ personal data in the following cases:

• for the regular exercise of rights in judicial, administrative, or arbitration proceedings
• for the performance of a contract or preliminary procedures related to a contract to which the data subject is a party, at the request of the data subject
• when necessary to meet the legitimate interests of the controller or a third party

a. Contract execution

For the execution of a purchase and sale agreement or service agreement that may be entered into between the website and the user, other data related to or necessary for its execution may be collected and stored, including the content of any communications with the user.

b. Legitimate interest

For certain personal data processing operations, we rely exclusively on our legitimate interest. To learn more about the specific cases in which we rely on this legal basis, or to obtain more information about the tests we perform to ensure that we can use it, please contact our Personal Data Protection Officer through any of the channels listed in this Privacy Policy, in the “How to contact us” section.

c. How can the holder guarantee their rights?

To ensure that the user who intends to exercise their rights is, in fact, the owner of the personal data subject to the request, we may request documents or other information that may assist in their correct identification, in order to protect our rights and the rights of third parties. However, this will only be done if absolutely necessary, and the applicant will receive all related information.

Permission to send emails

By registering as a participant in the Global Email Marketing Summit, you are allowing us to send you periodic emails informing you about aspects that are relevant to the smooth running of the event, use of the transmission platform, notices of completion of procedures, payments, among others.

SafetyMails also reserves the right to send, modify the content and design of these emails in order to improve the quality of the service.

These emails are sent in accordance with best practices in email marketing, which allow emails that are an integral part of the provision of a particular service to be sent.

Security measures in the processing of personal data

We employ technical and organizational measures to protect personal data from unauthorized access and situations of destruction, loss, misplacement, or alteration of such data.

The measures we use take into account the nature of the data, the context and purpose of the processing, the risks that a breach would pose to the rights and freedoms of the user, and the standards currently employed in the market by companies similar to ours.

Among the security measures we have adopted, we highlight the following:

Third-party service providers with ISO 27001 certification, as well as other important certifications, such as PCI – DSS | SOC 1 type II and SOC 2 type II.

We follow the highest technical standards of information security in order to protect the personal and non-personal data of our users.

Although we do everything in our power to prevent security incidents, problems may arise that are solely attributable to third parties, such as hacker or cracker attacks, or to the user’s own fault, for example, when they transfer their data to a third party. Thus, although we are generally responsible for the personal data we process, we disclaim liability in the event of an exceptional situation such as these, over which we have no control.

In any case, if any type of security incident occurs that could pose a risk or significant damage to any of our users, we will notify those affected and the National Data Protection Authority about the incident, in accordance with the provisions of the General Data Protection Law.

Data subject rights

Data subjects have various rights relating to their personal data. SafetyMails is obliged to allow these data subjects to exercise their rights free of charge and in a simplified manner. Among the requests that can be made are:

• confirmation of the existence of processing, 
• access to data, 
• correction of information, 
• restriction of excessive data, 
• portability of data to another provider, 
• refusal to give consent, 
• revocation of previously given consent, 
• deletion of data processed based on prior consent, 
• information about sharing that has already taken place, and 
• review of automated decisions.

Confirmation of personal data processing and access (simple or complete) to this information must be provided within 72 hours of the request. Other rights will be regulated at a later date by the National Data Protection Authority.

The Data Subject understands that making any request that removes or revokes consent related to data stored and processed by SafetyMails will result in the immediate termination of the Participant/Event Owner, without any refund of amounts paid.

Changes to this policy

This version of the Privacy Policy was last updated on: May 8, 2025.

We reserve the right to modify these rules at any time, especially to adapt them to any changes made to our website, whether by making new features available or by deleting or modifying existing ones.

Whenever there is a modification, our users will be notified of the change.

How to contact us

If you have any questions about this Privacy Policy or the personal data we process, please contact our Personal Data Protection Officer through any of the channels listed below:

Data Protection Officer: Rodrigo da Silva
Email: dataprotection@globalemailmarketingsummit.com

Mailing address:
Rua São Francisco Xavier, nº 32 / Sala 901
Tijuca, Rio de Janeiro/RJ – Brasil
ZIPCODE 20550-012
Attn: Global Email Marketing Summit Organization