Legal
Privacy Policy
AttendeeX (operating under Promote Global LLC)
Last updated: June 9, 2026
Data Controller and EU Contact
The data controller responsible for personal data processed through AttendeeX services is:
Promote Global LLC
A Florida limited liability company
Founder and EU contact: Dalton Makepeace
Address: 72 rue de la République, 92120 Montrouge, France
Email: privacy@attendeex.com
Promote Global LLC operates from France through its founder, who serves as the company's establishment within the European Union under Article 3 of the General Data Protection Regulation (GDPR). EU residents may contact the EU establishment directly for any data protection inquiries, including requests under Articles 15–22 of the GDPR (rights of access, rectification, erasure, restriction, portability, and objection).
AttendeeX is a trade show contact capture and intelligence app designed with privacy at its core. Your contact data is stored on your device, not in our cloud.
1. Data Stored On Your Device
The following data is created and stored exclusively on your device. We do not have access to this data:
- •Contact information you capture (names, emails, phones, companies, titles)
- •Photos of business cards and notes
- •Voice recordings and transcriptions
- •Event and opportunity information
- •Ratings, notes, and follow-up plans
We cannot access, view, or recover this data. If you delete the app, this data is permanently deleted.
2. Data Processed Through Our Services
When you use enrichment, AI, or CRM features, certain data is sent to our servers for processing:
Our servers process this data in transit but do not permanently store your contact information. Request logs are retained for up to 30 days for error monitoring and contain no personal data.
3. Data We Store on Our Servers
4. Data We Do Not Collect
- ✕User accounts, usernames, or passwords
- ✕Device identifiers, advertising IDs, or tracking data
- ✕Analytics or crash reporting data
- ✕Location data
- ✕Your phone’s contact book, calendar, or photo library
5. Third-Party Providers
AttendeeX uses trusted third-party providers for data enrichment, AI processing, and CRM connectivity. These providers process data under their own privacy policies and applicable data processing agreements.
When you push contacts to a CRM, data flows directly from your device to your CRM provider. Our servers facilitate authentication only.
Sub-Processors
AttendeeX uses the following categories of sub-processors to provide our services. Each is engaged under a Data Processing Agreement that includes appropriate safeguards for international data transfers (Standard Contractual Clauses where applicable). Additional infrastructure and data providers not listed individually are used for enrichment, search, and operational functions under equivalent agreements.
| Sub-Processor | Purpose | Location |
|---|---|---|
| OpenAI | AI processing (reports, analysis) | United States |
| Anthropic | AI processing (reports, analysis) | United States |
| AI processing (OCR, reports) | United States / Multi-region | |
| Mistral | AI processing | European Union |
| Vercel | Hosting and infrastructure | United States / Multi-region |
| Apple | App Store distribution and in-app purchases | United States / Multi-region |
We may add or change sub-processors as our service evolves. Material changes will be reflected on this page.
6. Data Retention
| Data Type | Retention |
|---|---|
| On-device data (contacts, notes, events) | Until you delete them or the app |
| Credit balance | Duration of active credits |
| Server request logs | 30 days (no personal data) |
| CRM authentication | Until you disconnect |
We do not maintain backups of your data.
7. Data Security
- •All data on your device is encrypted at rest.
- •All data in transit uses TLS encryption.
- •CRM credentials are stored in your device’s encrypted Keychain.
- •Team synchronization uses encrypted peer-to-peer connections and does not transit through any server.
8. On-Device Voice Transcription
AttendeeX performs all voice note transcription on your device using Apple's built-in speech recognition framework. Audio recordings are never transmitted to AttendeeX servers, OpenAI, or any third-party service. Transcribed text is stored locally on your device and is never shared without your explicit action.
9. Email Account Connections (Gmail & Outlook)
The AttendeeX app for iPhone and iPad, and the AttendeeX Companion desktop app, let you connect a Gmail or Outlook account so AttendeeX can send your follow-up emails from your own mailbox, after you review and confirm each one. (Saving follow-ups as drafts for you to send yourself is planned for a future update; if added, it will request additional permission and this policy will be updated.) This is optional — the apps are fully usable without connecting an account.
What we access
- •Gmail: gmail.send — to send the follow-up emails you compose, only after you confirm each one. We do not request access to read, search, or modify your existing email.
- •Outlook (Microsoft Graph): Mail.Send (to send the email you composed) plus User.Read to identify your account — never to read your inbox.
What we do with it
- •We send the follow-up emails you compose, from your connected account, only after you review and confirm each one. We never read, search, or delete your existing mail.
- •Message content is sent directly from your device to Google or Microsoft. It does not pass through, and is never stored on, AttendeeX servers.
- •Your sign-in tokens are stored encrypted on your device (Apple Keychain) and are never transmitted to or stored by AttendeeX.
- •We do not read your inbox, contacts, calendar, or any existing email.
You can disconnect an account at any time in Settings → Email, which deletes the stored tokens from your device. You can also revoke AttendeeX's access directly from your Google Account or your Microsoft account security settings.
10. Google API Services — Limited Use
AttendeeX's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Information obtained through Gmail permissions is used solely to provide the in-app email-sending feature, is processed on your device, is not transferred to others except as needed to provide that feature (Google's own API), is not used for advertising, is not sold, and is not used to develop, improve, or train generalized AI or machine-learning models. No humans read this data except where you explicitly request support, where required for security, or to comply with applicable law.
11. Your Rights
Because your data is stored on your device, most privacy rights are exercised directly by you:
| Right | How to Exercise |
|---|---|
| Access | All your data is visible in the app |
| Delete | Delete contacts, events, or the app |
| Export | Use the export features (CSV, CRM) |
| Restrict processing | Don’t use enrichment or AI — the app works fully offline |
| Portability | Export in standard formats |
| Withdraw consent | Disconnect integrations in Settings |
For any request you cannot fulfill through the app, contact privacy@attendeex.com. We will respond within 30 days.
GDPR
AttendeeX is designed for GDPR compliance. We collect only what is necessary, use data only for stated purposes. When data is processed outside the EU, it is covered by Standard Contractual Clauses or equivalent safeguards.
California Consumer Privacy Rights
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with specific rights regarding your personal information.
Categories of Personal Information We Collect
In the past 12 months, we may have collected the following categories of personal information from California residents:
- •Identifiers: Name, email address (if provided), Apple ID-linked purchase identifier
- •Professional or employment-related information: Job titles, company names, business contact information (when captured via the app or imported)
- •Internet or other electronic network activity information: App usage data necessary for credit ledger operations
- •Inferences: Tier classifications and priority scores derived from contact data
We use this information to provide the AttendeeX service, process transactions, maintain the credit ledger, and generate reports as you direct. We do not sell or share personal information with third parties for cross-context behavioral advertising.
Your Rights
- •Right to Know: Request information about the personal information we collect, use, and disclose.
- •Right to Delete: Request deletion of personal information we have collected from you.
- •Right to Correct: Request correction of inaccurate personal information.
- •Right to Opt-Out of Sale or Sharing: We do not sell or share personal information; this right is not applicable.
- •Right to Limit Use of Sensitive Personal Information: We do not collect sensitive personal information as defined under CPRA.
- •Right to Non-Discrimination: We will not discriminate against you for exercising any of these rights.
To exercise any of these rights, contact privacy@attendeex.com. We will respond within 45 days as required by law.
12. Children's Privacy
AttendeeX is a professional business tool. We do not knowingly collect data from children under 16.
13. Cookies and Tracking
The AttendeeX app does not use cookies, tracking pixels, or analytics frameworks.
14. Changes to This Policy
We may update this policy from time to time. Updates will be posted at attendeex.com/privacy. Material changes will be communicated through the app.
15. Contact Us
Email: privacy@attendeex.com
Entity: AttendeeX, operating under Promote Global LLC
Address: Florida, United States