Preplex

PREPLEX DATA PROTECTION POLICY

Preplex and California Data Protection Policy

Last Updated: 08/01/2025

At Glenn Tech LLC DBA Preplex (“Preplex,” “we,” “us,” or “our”), we take data privacy and security very seriously. We are committed to complying with all applicable data protection laws, including the California Consumer Privacy Act (CCPA), and to helping our Organizers meet their own compliance obligations.

This policy explains how Preplex approaches CCPA compliance, our roles as a business and service provider, and the rights available to California consumers.

1. Preplex as a “Business” and a “Service Provider”

Preplex as a Business
We are a “business” (as defined in the CCPA) when:

  • An Organizer creates an account on Preplex to manage events or venue bookings and provides personal information during the account setup process.

  • A Consumer creates an account with Preplex and provides personal information directly to us.

As a business, we may collect and use personal information to:

  • Improve our platform and features

  • Conduct analytics and research

  • Provide personalized recommendations and user experiences

Preplex as a Service Provider
We are a “service provider” (as defined in the CCPA) when we process personal information on behalf of an Organizer, including:

  • Processing ticket sales or booking payments

  • Providing attendee lists and event/venue reports

  • Sending communications on behalf of the Organizer

  • Supporting analytics and marketing campaigns requested by the Organizer

Because we may process a Consumer’s personal information in both capacities — directly for our own purposes (business) and on behalf of an Organizer (service provider) — our responsibilities under the CCPA vary depending on the role we are performing for a given dataset.

2. Data Processing Addendum for Organizers

When acting as a service provider to an Organizer, Preplex’s obligations are set out in our Data Processing Addendum (DPA), which is incorporated into our Terms of Service. This DPA outlines our legal duties under the CCPA and other applicable data protection laws.

3. Individual Rights under the CCPA

When acting as a business, Preplex will honor verified requests from California residents concerning their personal information, in accordance with applicable law. These rights include:

  • Access – You may request a summary of the categories and specific pieces of personal information we hold about you, along with details about how we use and share it.

  • Deletion – You may request the deletion of your personal information, subject to certain legal and operational exceptions.

Requests can be submitted via your Preplex account dashboard or by contacting privacy@preplex.app.

If you are an Organizer and a Consumer makes a CCPA request directly to you, you must either fulfill the request or promptly forward it to Preplex for processing.

Where we delete a Consumer’s personal information, related non-personal data (such as aggregated sales figures) may remain in Organizer reports.

4. Security of Personal Information

We employ a range of technical, organizational, and administrative measures to safeguard personal information, including:

  • Encryption in transit and at rest

  • Access controls and authentication requirements

  • Ongoing monitoring for unauthorized access or data misuse

For more details on our current security practices, please see the Preplex Security and Safety Guide (available at www.preplex.app/security).

5. Additional Steps for CCPA Compliance

To align with the CCPA, Preplex has:

  • Updated internal data handling policies and provided staff training on privacy and security requirements.

  • Revised our Privacy Policy to improve transparency about data use.

  • Reviewed vendor and sub-processor agreements to ensure compliance with CCPA requirements.

Glenn Tech LLC DBA Preplex
870 Green St, Iselin, NJ 08830
Email: privacy@preplex.app
Subject Line: “Data Protection Inquiry”