Participate
Participate

Privacy Policy

This document describes the basic aspects of personal security for participants, speakers and partners attending the SplinterCon events and readers visiting this website.

The conference series’ focus on sensitive topics like network censorship, digital sovereignty and various communications technology lead the organizers to prioritize its privacy policy.

SplinterCon prioritize face-to-face communication, sharing experiences and working together. For security reasons, we do not broadcast the events. Individual presentations/speeches, with the speaker’s consent, may be recorded. 

Please note that the event is public, we have taken a number of measures to create a safer space, but we cannot guarantee absolute privacy and security.

Here are a few things that are important to consider when preparing for an event.

Personal safety

  1. This is an open event. Registration is available to everyone. The organizers check all applications for participation. Organizers may ask for identification at the entrance to the event venue or refuse participation at the registration stage.
  2. Conferences are held according to the principles of anonymity of discussions under the “Chatham House Rule” (Chatham House Rule). The “Chatham House” rule stipulates that participants in the discussion have the right to use the information they receive, but that neither the name nor the affiliation of the participant may be disclosed. The principle is intended to preserve the anonymity of speakers, and to encourage openness and information sharing.
  3. While attending the event and when communicating with other guests, you assume possible risks, because we cannot guarantee that all participants have registered under their real identities.
  4. To identify the participants of the conference badges will be provided, with an identifying symbol, possibly without a name.
  5. The organizers reserve the right to refuse entry and/or participation to attendees if:
    1. They have provided misleading information about themselves
    2. Expressed an intention to violate the above rules or Code of Conduct
    3. Attempts to record and publish speeches or discussions or gather information about conference participants in violation of Chatham House rules and this security policy.

Privacy

  1. No photos or videos are allowed at the conference.
  2. Personal data is collected through the registration form. They allow us to optimize the organization of the event. Data is strictly confidential and will be stored for 12 months on servers belonging to the company eQualitie. They are protected by Deflect technology. The data will be used to contact you by email or other contact information you provide in order to invite you to Splintercon in Montreal and subsequent events under the same name. 

Privacy Policy – SplinterCon.net

Last updated: March 2026

1. Controller and Scope

For the purposes of Regulation (EU) 2016/679 (General Data Protection Regulation, “GDPR”), the data controller is:

eQualitie Inc, a corporation constituted pursuant to the Canada Business Corporations Act, R.S.C., 1985 c. C-44.

The Controller can be contacted at: privacy@equalitie.org

2. Categories of Personal Data

The Controller processes only personal data that is necessary and proportionate for the purposes described herein. Such data may include:

  • Identification data (e.g. name, where voluntarily provided)
  • Contact data (e.g. email address)
  • Any information submitted by the data subject via website forms.

No special categories of personal data within the meaning of Article 9 GDPR are intentionally collected. Personal data is collected directly from the data subject through voluntary submission via the website.

3. Purposes of Processing

Personal data is processed for the following specific and explicit purposes:

  • Provision of information relating to SplinterCon events
  • Distribution of newsletters and general communications

Personal data shall not be processed for purposes incompatible with those listed above.

4. Legal Basis

Processing of personal data is based on:

  • Article 6(1)(a) GDPR (Consent) – where the data subject has given clear consent (e.g. newsletter subscription)
  • Article 6(1)(f) GDPR (Legitimate Interests) – namely, maintaining and developing a network of participants and stakeholders interested in SplinterCon-related activities

Where processing is based on legitimate interests, such interests are not overridden by the rights and freedoms of the data subject.

The Controller has carried out a balancing test and considers that its legitimate interests are not overridden by the rights and freedoms of data subjects, given that:

  • processing is limited to basic contact data,
  • data subjects reasonably expect such use in the context of event participation and communications,
  • appropriate safeguards, including the right to object at any time, are in place.

5. Data Minimisation and Purpose Limitation

The Controller adheres to the principles set out in Article 5 GDPR, including data minimisation, purpose limitation, and accuracy. Only data strictly necessary for the stated purposes is collected and processed.

6. Storage and Retention

Personal data is stored on infrastructure operated and secured by eQualitie Inc (Deflect infrastructure).

Data shall be retained in accordance with the principle of storage limitation (Article 5(1)(e) GDPR):

  • Personal data will be retained until the data subject withdraws consent or objects to processing, or
  • In the absence of such request, for a maximum period of 10 years from the last interaction, after which it will be deleted or anonymised

The retention period is determined in light of the long-term nature of community engagement and informational activities.

7. Recipients and Transfers

Personal data is not sold, rented, or otherwise disclosed to third parties for commercial purposes.

Personal data may be processed by service providers acting as data processors on behalf of the Controller (e.g. hosting, email distribution), under appropriate contractual safeguards.

All processors are bound by data processing agreements in accordance with Article 28 GDPR.

Where personal data is transferred outside the European Economic Area, such transfers are carried out in accordance with Chapter V GDPR, including the use of Standard Contractual Clauses (SCCs) or other appropriate safeguards to ensure an adequate level of data protection.

8. Security of Processing

The Controller implements appropriate technical and organisational measures pursuant to Article 32 GDPR to ensure a level of security appropriate to the risk, including:

  • Secure hosting infrastructure
  • Access controls and data minimisation practices
  • Measures designed to prevent unauthorised or unlawful processing

9. Rights of the Data Subject

In accordance with Chapter III GDPR, data subjects have the following rights:

  • Right of access (Article 15)
  • Right to rectification (Article 16)
  • Right to erasure (Article 17)
  • Right to restriction of processing (Article 18)
  • Right to data portability (Article 20)
  • Right to object (Article 21)
  • Right to withdraw consent at any time (Article 7(3))

Requests to exercise these rights may be submitted at: privacy@equalitie.org

10. Automated Decision-Making

No automated decision-making, including profiling within the meaning of Article 22 GDPR, is carried out.

11. Cookies and Technical Data

The website is designed to minimise the use of cookies and tracking technologies.

Where cookies are used, they are limited to those strictly necessary for the operation and security of the website in accordance with applicable law.

12. Right to Lodge a Complaint

Data subjects have the right to lodge a complaint with a supervisory authority pursuant to Article 77 GDPR, in particular in the Member State of their habitual residence, place of work, or place of the alleged infringement.

13. Amendments

The Controller reserves the right to amend this Privacy Policy at any time. Any updates will be published on this page with a revised date.

14. Contact

For any questions relating to this Privacy Policy or the processing of personal data, please contact the Controller via privacy@equalitie.org