This Privacy Policy was last updated on: 15 March 2024
Who are we?
We are Bash B.V. (Bash). Our address is Leidsegracht 38, 1016 CM Amsterdam. We are registered with the Chamber of Commerce (kamer van koophandel) under number 80666566.
What are you reading?
This policy explains: which data we collect, how we use, store and protect it and which privacy rights you can invoke (the Privacy Policy). We may modify this Privacy Policy. If we substantially modify the Privacy Policy, we shall place a notification on our website. In addition, we shall notify registered users in case of a substantial modification via email.
Questions?
If you have any questions regarding this Privacy Policy, do not hesitate to contact us by sending an email to: info@bash.social.
This Privacy Policy applies to our website https://bash.social (the Website) and any other services or products we provide, most prominently the app (the Services). We process your Personal Data in order to provide our Website and Services to you. We treat your Personal Data in accordance with the General Data Protection Regulation (GDPR) and other relevant laws and regulations on the protection of personal data, such as the Telecommunications Act (Telecommunicatiewet) for the use of cookies (the Relevant Legislation).
We process personal data on the basis of the following grounds of the GDPR:
We ensure that the processing of your personal data is adequate, relevant and limited to what we need for the purposes for which the personal data is processed.
The table below tells you (1) what personal data we process, (2) for what purposes, and (3) on what bases we process it. We will use your personal data for the purposes listed below or for a purpose that is related to these. Thus, your personal data will never be used by us in an unexpected way.
(Personal) Data | Purpose(s) | Legal basis |
Contact Data:
| We use these Data:
| We process these Data on the basis of:
|
Payment Data:
| We use these Data:
| We process these Data on the basis of:
|
Content Data related to the Services:
| We use these Data:
| We process these Data on the basis of:
|
Other Data:
| We use these Data:
| We process these Data on the basis of:
|
Application data:
| We use these Data to:
| We process these Data on the basis of:
|
How do we receive your Personal Data?
We receive Personal Data directly from you when you submit information, log in, or interact on our Website or App.
We shall not store your Personal Data longer than the period in which we need them for the aforementioned purposes. We delete the Personal Data after we no longer need them for the purpose we process them for. Please be aware that all data that your input to and usage of our Services provides us with vital data to enhance our Services and use it in an integral and continuous manner. The following is a list of the categories of Personal Data and the (functionally defined) retention periods:
Category of Personal Data | Retention period |
Contact Data | We retain your contact information for as long as necessary to provide our Services. |
Payment Data | We retain your payment data for as long as necessary to meet our financial and tax requirements and obligations. |
Partner and/or supplier Data | We retain partner or supplier data for as long as it is needed to provide our Services. |
Content data related to our Services | We retain content data for as long as necessary to provide you with our Services in an integral and continuous manner. |
We do our utmost to protect your personal data, by taking technical and organisational security measures to protect your data against manipulation, loss, destruction and access by unauthorised persons. These security measures are constantly improved in line with technological developments.
We constantly check our security measures for effectiveness, and if necessary adjust our process. That way, your Personal Data is always protected and accessible in the event of a failure.
We may share your Personal Data with other parties who process Personal Data for us. These are Processors within the meaning of Relevant Legislation. The Processors will only use your Personal Data in accordance with our instructions and not for their own purposes. We agree with the Processors in a processor agreement that they will treat your Personal Data with care and they will only receive the Personal Data necessary to provide their service to us. We share your Personal Data with the following categories of Processors:
Service Providers | Bash may share personal data with the following service providers, who contribute to our Website, App or Services: Mixpanel, Google Cloud Europe, Amplitude's EU Data Center, and Moneybird. They perform the following tasks for us: data analysis, storage, and processing financial transactions. |
Competent Authorities | Bash discloses personal data to law enforcement authorities and other public authorities to the extent required by law or strictly necessary for the prevention, detection or prosecution of criminal offences and fraud. |
Auditors and advisors | We may engage auditors and professional advisers to meet our legal, regulatory and statutory responsibilities. They have contractual arrangements and security mechanisms to protect data and meet our standards of data protection, confidentiality and security. |
Third-Party Tracking and Advertising Partners | With organiser approval, BASH uses Facebook (Meta) as a data processor to support retargeting, personalised advertising, and engagement analytics for event pages on our platform. Facebook Pixel collects and uses user interaction data in line with our instructions and strictly for analytics and retargeting purposes requested by event organisers. |
Data Transfer
We will only process your Personal Data within the European Economic Area (EEA). Outside the EEA, we will only process your Personal Data if that country provides an adequate level of protection for your Personal Data.
Without your consent, we will never transfer your Personal Data to countries or parties other than those listed above.
Links
Our Services and website may contain links to other websites. We are not responsible for the content or privacy protection of these websites. We therefore advise you to always read the privacy policy of the website in question.
RSVPs
When RSVP'ing on an event, it is essential to BASH as a social event platform that your name and profile picture are shared on the event to all of the public. Because this is essential, there is an "opt-out" option when purchasing a ticket. Therefore, this sharing of personal data falls under a legitimate interest justification as laid out in the GDPR.
You have the following rights, we will do our utmost to apply these rights within a reasonable time period:
A cookie is a small text file that can be sent via the server of a website to the browser. The browser saves this file to your computer. Your computer is tagged with a unique number, which enables our site to recognize that computer in the future.
We use cookies and similar tracking technologies, such as pixels, to enhance user experience and provide organisers with insights on user engagement. Pixels like the Facebook Pixel track specific user interactions on certain event pages, allowing organisers to reach interested audiences with relevant content. You can manage your preferences for cookies and pixels via our app or browser settings.
You can always delete or disable cookies yourself via the browser settings. No more cookies will be stored when you visit our App. However, please note that without cookies, our App may not function as well as it should. For more information you can read our cookie statement: https://bash.social/cookienotice.
For event pages that use tracking technologies like the Facebook Pixel, users will be prompted to consent to data collection and tracking for analytics and marketing purposes. This consent can be managed or withdrawn at any time through browser privacy settings.
Third-Party Tools and Pixels on Event Pages
Certain event pages may include third-party tracking tools, such as the Facebook Pixel, implemented at the organiser's request. These tools help organisers understand audience engagement on BASH and provide personalised content. By interacting on event pages, users may agree to data sharing with third-party platforms as described here. Please review individual event pages or consult your privacy settings for more information.
In the event that you wish to exercise these rights, or in the event of other questions or remarks regarding our Privacy Policy, you can contact us via the following contact details.
BASH
Leidsegracht 38
1016 CM Amsterdam
KVK: 80666566
Contact: