ComeTogether Scanner PRIVACY POLICY

The purpose of this Notice

This notice describes how we collect and use personal data about individuals, in accordance with the General Data Protection Regulation(GDPR). You should read the following carefully in order to understand our procedures regarding your personal data and how we treat it.


The General Data Protection Regulation (GDPR) aims to strengthen data protection for people within the European Union, replacing the EU privacy directive known as Directive 95/46/EC. This regulation came into force on 25 May 2018. For more information about the GDPR, please visit: https://ec.europa.eu/info/law/law-topic/data-pro-tection_en


ComeTogether Private Company is registered in Greece and our registered office is located at Tompazi 32 Thessaloniki, 546 44, Greece. Our purpose is to connect individuals and businesses to easily organize, work at, sell products at, invest on, sponsor and attend events(matchmaking between all types of event stakeholders, or any subset of them). For the purpose of the Data Protection Legislation and this notice, we are the “Data Controller”, which means that we are responsible for deciding how we hold and use any personal data about you. We are required under the Data Protection Legislation to notify you of the information contained in this Privacy Notice.


Realm Data Sync

This application is intended for event organizers or authorized people, in order for them to validate the tickets that bought for a specific event through ComeTogether. In order to be able to use scanner with low-bandwidth and keep the device in sync with all the tickets that bought or scanned from other devices, we use Realm Sync (https://www.mongodb.com/realm). The Realm is syncing the tickets data in your device if any change occurs, such as issuance of a new ticket or a ticket invalidation. In order to validate that the user has the right to scan and invalidate tickets of a specific event, we are using JWT Authentication. Each user after the login process gets a JWT token in order to be validated. This JWT Token is used to validate the user in the Realm app and is uploaded to https://eu-central-1.aws.realm.mongodb.com during the validation process. This JWT Token contains user’s email, first name(if exists), last name(if exists), preferred language(if exists) and identification number (see the Information and content you provide section for more details). User’s JWT Token is used only for authentication and User’s private data are not shared with any third party.

Invalidation Process

We are using user’s phone camera in order to scan a ticket and present its status (valid or invalid) to the user. If a ticket is valid, we invalidate it. During invalidation process, the Realm uploads the changes (by setting the ticket status as invalid) in order the other scanning devices to be synced. In order to invalidate the ticket we are using the ticket ID property.


Information and content you provide

In order to register to our services we require the provision of your full name and email address. If you link your Facebook or Google or Apple account or accounts from other third party services to ComeTogether, we also get information from those accounts. The information we get from those services depends on your settings and their privacy policies, so please check what those are.

Information and content collected automatically

By using our website, certain information gets created and logged automatically. For example we collect your IP address. Also, we collect information about you when you subscribe to our newsletter and when you email us through the email address provided in our website. We will process this data on the basis of your consent in signing up to our newsletters.


We use the information that we collect as follows:
● Specific Reason
If you provide personal data for a certain purpose, we may use the personal data solely in connection with the purpose for which it was provided. For instance, if you contact us by e-mail, we will use the Personal Data you provide to answer your question or resolve your problem.
●Fulfill the contract
We use personal data of the services providers, venue holders, event organizers and attendees to connect them with each other, in order to fulfill the purpose of our contract with each of the aforementioned individuals.
● Internal Business Purposes-Legitimate interests
We may use your personal data for internal business purposes, including to help us improve the content and functionality of our services, to better understand our users, to improve the Services, to manage your account and provide you with customer service, and to generally manage our services and business.
● Marketing
We may use your personal data for our marketing and advertising purposes. We do this in order to inform you about services or events we believe might be of interest to you. You can always ”opt out” by sending as an email to [email protected]
●Use of Interest-Based Data
We use the information we have to make suggestions for you, such as events you may be interested in. To create personalized information that is unique and relevant to you, we use your connections, preferences, interests and activities based on the data we collect and learn from you.
●Comply with legal obligation


We use MongoDB atlas, a fully automated cloud service engineered and run by the same team that builds the database to store your details. In the process of working with MongoDBatlas one must choose a cloud provider to store their data. We use AmazonWebServices having selected a database located in Frankfurt, Germany. MongoDBatlas handles automatically the rest as regards to configuring and managing our database. Consequently, your data are transferred to our database in Germany, and are accessed by MongoDBatlas and AmazonWebServices solely for the purpose of the aforementioned storage process. Of course, to fully understand how and with whom the lattertwo are going to use your personal data, you should check out their own Privacy Policies (MongoDBatlas, AmazonWebServices).


We don’t share your personal data with third parties without your explicit consent. We consider this information to be a vital part of our relationship with you.


We use Sentry (sentry.io) in order to find and resolve possible issues and crashes that exist in the app in order to improve it. We don’t use any data that can identify user’s identity. The only data we use that has to do with the user are the mobile device(if mobile is used) and the software version.


As we continue to develop our business, we might sell or buy stores, subsidiaries or business units. In such transactions, customer information generally is one of the transferred business assets but remains subject to the promises made in any pre-existing Privacy Policy, un-less, of course, if you consent otherwise. Also, in the unlikely event that ComeTogether P.C. or substantially all of its assets are acquired, your information will of course be one of the transferred assets.


We keep your information only so long as we need it to fulfill the purposes described in this policy. This is also the case for anyone that we share your information with and who carries out services on our behalf. When we no longer need to use your information and there is no need for us to keep it to comply with our legal or regulatory obligations, we’ll either remove it from our systems or depersonalize it so that we can’t identify you. In any case, we won’t keep your personal data more than ten years.


It is important that any and all personal data we hold about you is accurate and current. Should any of your personal information change, please notify us of such changes immediately by contacting us.
You have several individual rights in relation to your personal data that we collect. In particular, you have the right to:
●Request access to your personal data.
●Request any inaccuracies in your personal information be corrected
●Request erasure of your personal data.
●You may ask to object or restrict the processing of your personal data where there is something about your particular circumstances which makes you want to object to processing even when we are relying on a legitimate interest for that processing.
Additionally, where we collect your personal details for sending you newsletters, campaigns or updates related to our work, you have the right at any time to notify us that you no longer want to receive this information. To withdraw you consent you can use the “Unsubscribe” link present at the bottom of every email communication we send or you can contact us at [email protected].


You can delete your account by following the next steps:
●Login in to the app using the account you want to delete.
●Go to profile tab from the navbar (or from the following link https://cometogether.live/profile).
●Press the “Delete account” button.
●A verification will be sent in your account’s email address.
●Press the containing link in the email sent in order to delete your account.
If you have any problem, please contact us at [email protected].


This Privacy Policy applies only to the services provided by us. The Services may contain links to other websites not operated or controlled by us (the “Third Party Sites”). The policies and procedures we described here do not apply to the Third Party Sites. The links from the services do not imply that we endorse or have reviewed the Third Party Sites. We suggest contacting those sites directly for information on their privacy policies.


Registration and use of our services is not allowed to individuals under the age of 16, unless there is consent of the persons who have their parental responsibility.


We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Services homepages, login screens, or by sending you an email notification. We will also keep prior versions of this Privacy Policy in an archive for your review. We encourage you to review our privacy policy whenever you use the Services to stay informed about our information practices and the ways you can help protect your privacy.


If you have any questions concerns about how we have collected, processed and used your data please contact us by emailing at [email protected]


At ComeTogether, we respect your concerns about privacy and value the relationship that we have with you.
Like many companies, we use technology on our website to collect information that helps us enhance your experience and our services. The cookies that we use at ComeTogether allow our website to work and help us to understand what information and advertising is most useful to visitors. Please take a moment to familiarize yourself with our cookie practices and let us know if you have any questions by sending us an e-mail at [email protected].

Who is collecting it?
Any personal data provided to or collected by ComeTogether via cookies and other tracking technologies is controlled by ComeTogether Private Company. By using our website, you are consenting to our use of cookies in accordance with this Cookie Notice.

What does cookie mean?
Cookies, are files containing small amounts of information which are downloaded to any internet enabled device – such as your computer, smartphone or tablet – when you visit a website.

What purpose do we use cookies for?
We use cookies to make ComeTogether website easier to use, to deliver a personalized experience, and to better tailor our services and websites to your interests and needs. Cookies are used to help speedup your future activities and your experience on ComeTogether website.

What cookies do we use?
Strictly necessary cookies-essential cookies
These are cookies that are strictly necessary for a service requested by the user and are exempt from the consent requirements. Strictly necessary cookies include cookies used for security, page load and remembering previous actions when returning to previously visited pages in the same session.


Session Cookies
These cookies are temporary cookies that remain on your device until you log out of our website.


We may change this cookie policy from time to time. We will post any cookie policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Ser-vices homepages, login screens, or by sending you an email notification. We encourage you to review our cookie policy whenever you use the Services to stay informed about our information practices and the ways you can help protect your privacy.

ReCaptcha Privacy Policy

We use Google’s reCAPTCHA mechanism to verify that you are not a robot. This works by collecting your hardware and software information, such as device and application data and the results of integrity checks and sending them to Google for analysis. reCAPTCHA is subject to the Google Privacy Policy and Terms of Use. Using our services means the acceptance of our sharing your aforementioned personal data with Google in connection with this purpose.