Privacy Policy

Brand Safety Summit Series / 614 Group Events LLC

Last Updated: March 2026

Introduction

Welcome to the Brand Safety Summit Series of Websites and Demonstration Rooms (www.brandsafetysummit.com and www.614group.com, collectively the "Website"), operated by or on behalf of The 614 Group Events LLC d/b/a the Brand Safety Summit Series, a Delaware limited liability company located at 160 Eagle Rock Avenue, Unit 171, Roseland, NJ 07068 ("Brand Safety Summit," "614 Group Events," "614E," "we," "our," or "us").

This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit our Website, register for our events, or use our services. We are committed to transparency and to honoring the rights you hold under applicable law.

This Policy is prepared in compliance with the requirements of the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable U.S. state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the comprehensive consumer privacy laws effective across twenty U.S. states as of 2026. Where a provision applies to a specific jurisdiction, we have made that clear. Our designated contact for data protection matters is A. Brush at gdpr@614group.com.

Note Regarding the EU Digital Omnibus Package

In November 2025, the European Commission published its Digital Omnibus Package proposing targeted amendments to the GDPR, including clarifications to the definition of personal data, a streamlined single-entry-point for breach notification, and updated rules on automated decision-making. These proposals are currently proceeding through the EU legislative process and are expected to be finalized in mid-to-late 2026. We will update this Policy upon adoption of any changes that affect our operations.

Topics Covered in This Policy

Who is the Data Controller?
How does the Website work?
What personal data do we collect and how do we use it?
Why do we collect your personal data?
Under what circumstances may we share your personal data?
Your rights regarding your personal data
Opting out of communications
Cookies and other tracking technologies
How do we store and secure information?
Do we transfer information internationally?
Links to other websites
Children's privacy
U.S. state-specific privacy rights
Data retention
How to contact us or file a complaint
Name, business title, and employer identity
Personal and business address
Email address and phone number
Age and gender (where voluntarily provided)
Location data
Financial information (credit or debit card details for transactions)
Consent: Where you have provided clear and informed consent.
Contract performance: Where processing is necessary to fulfill a contract with you, such as event registration or a product purchase. If you fail to provide required information, we may be unable to perform the contract.
Legal obligation: Where we are required to process your data to comply with applicable law.
Legitimate interests: Where processing is necessary for legitimate interests pursued by us or a third party, provided those interests are not overridden by your rights and freedoms.
Document management, email, calendaring, and invoicing systems
Disaster recovery and data hosting services
Contact management and event registration systems
Electronically stored information platforms
Right of access: You may ask us to confirm whether we are processing your data and request a copy of it, including information about any international transfers and the safeguards in place.
Right to rectification: You may ask us to correct inaccurate data or complete incomplete data. We will notify relevant third parties of corrections where applicable.
Right to erasure ("right to be forgotten"): You may request deletion of your data where it is no longer necessary for the purposes for which it was collected, where you withdraw consent, or on other statutory grounds. We reserve the right to retain data for legitimate legal or statistical purposes.
Right to data portability: You may request your personal data in a structured, commonly used, machine-readable format for your own use or transfer to another service.
Right to restriction: You may ask us to restrict processing of your data in defined circumstances, such as while we verify its accuracy or consider an objection you have raised.
Right to object: You may object to processing based on legitimate interests, including for direct marketing purposes.
Right not to be subject to automated decisions: You have the right not to be subject to decisions based solely on automated processing that produce significant legal effects, except where permitted by law.
Right to know: You may request details about the categories and specific pieces of personal data we collect, the sources of that data, our purposes for collecting it, and the categories of third parties with whom we share it.
Right to access: You may request a copy of the personal data we have collected about you.
Right to correction: You may request that we correct inaccurate personal data.
Right to deletion: You may request that we delete your personal data, subject to certain exceptions.
Right to opt out of sale or sharing: We do not sell your personal data. However, if applicable law defines sharing for cross-context behavioral advertising as a "sale," you may opt out. To do so, contact us at optout@614group.com.
Right to non-discrimination: We will not discriminate against you for exercising your privacy rights.
Universal Opt-Out Mechanism (UOOM): Connecticut, Oregon, and several other states now require businesses to recognize browser-based universal opt-out signals. We are in the process of implementing UOOM recognition and will honor such signals as required by applicable law.
Right to know third-party recipients: Under Minnesota's law and upcoming Connecticut amendments, you may request the identities of specific third parties to whom we have disclosed your personal data.
Monitor Website usage and analyze trends
Customize Website features for your device and preferences
Identify your operating system and browser type
Facilitate and record transactions
The nature, sensitivity, and volume of the data
The potential risk of harm from unauthorized use or disclosure
The purposes for which the data is processed and whether those purposes can be achieved by other means
Applicable legal requirements

Who Is the Data Controller?

The Data Controller is The 614 Group Events LLC, which determines the purposes and means of processing your personal data. We process data in accordance with: (i) the General Data Protection Regulation (EU) 2016/679 and implementing laws across EU member states; (ii) the Swiss Federal Act on Data Protection; and (iii) applicable U.S. federal and state privacy laws.

How the Website Works

The Website offers visitors the opportunity to browse our content and use certain features, including registering for events, accessing demonstration rooms, and subscribing to newsletters. By using the Website, you consent to the collection and use of your personal data as described in this Policy.

We reserve the right to update this Policy at any time to reflect changes in our practices or applicable law. Material changes will be communicated to you directly. The version displayed on our Website is always the most current, accompanied by the date of the most recent update.

What Personal Data We Collect and How We Use It

To access certain Website features, register for events, receive updates, participate in promotions, or make purchases, you may be asked to provide personal data including:

We collect only the data necessary to deliver our services. We do not collect sensitive categories of personal data (such as health data, biometric data, or precise geolocation) unless you voluntarily provide it in a context where it is relevant.

We also use Google Analytics to gather aggregated, non-identifiable audience measurement data, including the referring web domain, device and browser type, date and time of visits, and general usage patterns. We have disabled Google's data-sharing, remarketing, and demographics features, anonymized the final octet of all IP addresses collected, and set analytics retention to 14 months. For more information, or to opt out, please visit: https://support.google.com/analytics/answer/9940393.

Why We Collect Your Personal Data

We process your personal data on the following lawful bases:

We do not use your personal data for automated individual decision-making or profiling that produces legal or similarly significant effects without your consent.

When and How We Share Your Personal Data

By clicking "I consent" upon registration on our event platform (Eventbrite) or by accessing our demonstration rooms, you agree that 614E may share your personal data with service providers and technology partners who support our operations, including:

These entities are authorized to use your data only to the extent necessary to support our services. We require all third-party processors to maintain appropriate security and data protection standards.

We may also share your data with our parent, subsidiary, and affiliated companies, or with entities acquiring any portion of our assets or operations.

We may share your data with event sponsors and partner organizations where you have opted in to such sharing or where we have a legitimate interest in facilitating professional connections at our events.

From time to time, and with your consent where required, we may share your data with third parties for special features such as our 614 Connect demonstration rooms, which enable direct messaging between registered attendees.

We may also disclose your data if required by law, to protect our legal rights or property, or in connection with a corporate transaction such as a merger or asset sale.

We do not sell your personal data to third parties for their own marketing purposes.

Your Rights Regarding Your Personal Data

Regardless of your location, you may submit a written request to access, correct, or delete your personal data at any time by contacting us at: optout@614group.com or The 614 Group Events LLC, 160 Eagle Rock Ave, Unit 171, Roseland, NJ 07068, Attn: Legal.

Rights for EU-Based Individuals (GDPR)

If you are located in the European Union, the following rights apply:

To exercise any of these rights, contact us using the details in the Contact Us section below. We will respond as soon as reasonably practicable at no charge to you. You also have the right to lodge a complaint with your national data protection authority.

Rights for U.S. State Residents

The U.S. privacy landscape has expanded significantly. As of 2026, twenty states have enacted comprehensive consumer privacy laws, including California, Colorado, Connecticut, Virginia, Texas, Indiana, Kentucky, Rhode Island, and others. Several new laws and amendments took effect on January 1, 2026. Depending on your state of residence, you may have some or all of the following rights:

To exercise any of the above rights, please submit a verified request to optout@614group.com. We will respond within the timeframe required by your applicable state law (typically 45 to 60 days, with a permissible extension where notice is provided).

Opting Out of Communications

You may opt out of our email communications at any time by clicking "unsubscribe" in any of our email messages or by emailing optout@614group.com.

Please note: if you opt out of event-related communications, you may miss important notifications about changes in dates, times, or venues. In that case, you agree that 614 Group shall not be liable, directly or indirectly, for any damages or losses caused by your lack of notice. No refunds or other compensation will be provided to individuals who opt out.

We will process your opt-out request promptly, but it may take a brief period to take full effect. Even after opting out, we may retain your name and certain information in our records to honor your request and manage your account. If we have already shared your data with a third party prior to receiving your opt-out, we will notify that third party of your request but cannot guarantee their compliance.

Cookies and Other Tracking Technologies

We use cookies, action tags, pixel tags, and similar technologies to operate and improve our Website, including to:

An action tag (or pixel tag) is a small image embedded in a webpage that allows us or a third party to monitor page visits and associate that data with other information. Such technologies may collect your IP address, the URL of the page visited, and the date and time of your visit.

Cookie Controls and Universal Opt-Out

You can configure your browser to warn you before accepting cookies or to refuse cookies altogether. Please note that some Website features may not function properly if cookies are disabled.

Several U.S. states now require that websites recognize Global Privacy Control (GPC) or similar universal opt-out signals transmitted by browsers. We are implementing the technical infrastructure to honor these signals and will provide an update in this Policy when compliance is confirmed.

How We Store and Secure Your Information

We take commercially reasonable measures to protect your personal data, including the use of Secure Sockets Layer (SSL) encryption during data transmission. However, no system of data security is impenetrable, and we cannot guarantee absolute security against unauthorized access or accidental disclosure.

In the event of a personal data breach, we will notify you and relevant regulatory authorities in accordance with applicable law. Under the GDPR, breach notification to supervisory authorities is generally required within 72 hours of becoming aware of the breach (a proposed GDPR amendment would extend this window to 96 hours if the Digital Omnibus Package is adopted). We will use our best commercial efforts to notify affected individuals promptly and in accordance with all applicable requirements.

International Data Transfers

We may transfer personal data collected from you to recipients located outside your country of residence, including to the United States. Any such transfer will be conducted in accordance with applicable data protection law and subject to appropriate safeguards.

If you are based in the EU or European Economic Area (EEA), your personal data may be transferred to the United States or other third countries. We ensure such transfers comply with the GDPR by relying on appropriate transfer mechanisms, which may include Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other lawful transfer tools. We will update our transfer mechanisms as required following finalization of the EU Digital Omnibus Package.

Links to Other Websites

Our Website may contain links to third-party websites. This Privacy Policy applies only to the 614 Group Events Website and services. We are not responsible for the privacy practices of third-party websites and encourage you to review their policies independently.

Children's Privacy

You must be at least eighteen (18) years of age to use our Website. We do not knowingly collect personal data from individuals under the age of 18. If you are based in the EU, the minimum age of digital consent is generally 16, though this may vary by member state.

We note that children's privacy has become a significant legislative priority in the United States. Enhanced federal COPPA regulations, including new consent requirements and data security standards for digital advertising directed at minors, became enforceable in April 2026. Additionally, Connecticut, Oregon, and several other states have enacted or amended laws restricting the collection and sale of personal data related to individuals under 16. We do not direct our services at minors and do not knowingly collect their data. If we become aware that we have collected personal data from an individual under 18, we will delete that data promptly.

U.S. State-Specific Privacy Rights

California Residents

California residents may submit requests under the CCPA/CPRA by contacting us at info@614group.com with the subject line "CALIFORNIA PRIVACY DISCLOSURE REQUEST." In addition to the rights described above, California residents have the right to know whether we disclose personal data to third parties for direct marketing purposes. We do not sell personal data.

The California Privacy Protection Agency (CPPA) has been active in enforcement, including actions addressing inadequate opt-out mechanisms and unauthorized data sharing. We are committed to full CCPA/CPRA compliance, including honoring Global Privacy Control (GPC) signals.

Connecticut, Colorado, Oregon, Utah, and Other States

Residents of Connecticut (effective July 1, 2026), Arkansas, Utah (effective July 1, 2026), Oregon, and other states with active comprehensive privacy laws have rights substantially similar to those described in the "Your Rights" section above. Connecticut has lowered its in-scope threshold to 35,000 consumers effective July 1, 2026, and has expanded its Universal Opt-Out Mechanism requirements. Utah has added a right to correction and social media data portability rights effective July 2026.

Indiana, Kentucky, and Rhode Island Residents

Comprehensive privacy laws in Indiana, Kentucky, and Rhode Island took effect on January 1, 2026. Residents of these states are entitled to rights of access, correction, deletion, portability, and opt-out of sale or targeted advertising. Enforcement in each state is administered by the respective state Attorney General.

Texas Residents

The Texas Data Privacy and Security Act and the Texas Responsible AI Governance Act (effective January 1, 2026) both impose obligations on organizations operating in Texas. The Texas Attorney General has been active in enforcement, including large-scale settlements with major technology companies. We are committed to compliance with Texas law, including data minimization, opt-out rights, and AI governance documentation requirements where applicable.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting obligations. When determining the appropriate retention period, we consider:

For specific retention periods applicable to your data, please contact us at gdpr@614group.com.

Artificial Intelligence and Automated Processing

We do not use automated systems that make legally significant decisions about individuals based solely on automated processing without human involvement. Where we use AI-assisted tools in our operations (such as for content recommendations or event personalization), those systems involve human review of outcomes that affect individuals. We monitor developments in AI governance regulation, including the EU AI Act and state-level AI laws such as the Texas Responsible AI Governance Act, and will update our practices as applicable requirements evolve.

Acceptance

By using our Website, you acknowledge that you have read, understood, and agreed to this Privacy Policy and our Terms of Service.

Contact Us

If you have questions or concerns about our privacy practices, or to exercise any of your rights under applicable law, please contact us:

Email (opt-out and data requests): optout@614group.com

Email (GDPR and data protection): gdpr@614group.com

Mailing address: The 614 Group Events LLC, 160 Eagle Rock Ave, Unit 171, Roseland, NJ 07068, Attn: Privacy Policy

We will respond to all privacy-related requests promptly and in accordance with the timeframes required by applicable law.