1BusinessWorld® Global Privacy Policy

Effective: September 25, 2025 • Last Updated: September 25, 2025
Controller: 1BusinessWorld Inc., 285 Fulton Street, Fl 85, New York, NY 10007, USA
Email: pr*****@************ld.com

Purpose. This Policy explains how 1BusinessWorld Inc. (“1BusinessWorld,” “we,” “us”) collects, uses, shares, transfers, secures, and retains personal data across our websites, applications, event platforms, and related services (the “Platform”). It also explains your choices and rights, and how we meet global legal requirements.

Scope & Roles
Categories of Personal Data We Collect
Sources of Personal Data
How We Use Personal Data (Purposes & Legal Bases)
Cookies, Consent & “Do Not Sell/Share”
Advertising, Analytics & Anti‑Fraud
Payments & Financial Information
Events, Recordings & Media Rights
User‑Generated Content & Takedown
How We Share Personal Data
International Transfers
Security Measures
Data Retention & Deletion
Your Rights & How to Exercise Them
Automated Decision‑Making & Profiling
Children’s Privacy
Changes to this Policy
How to Contact Us
Annex A — California Notice at Collection (CPRA)
Annex B — Data Retention Schedule
Annex C — Regional Supplements (EU/UK, Brazil, India, China, Canada/Australia/Singapore)
Annex D — Definitions

1) Scope & Roles

Scope. This Policy covers personal data processed by 1BusinessWorld in connection with the Platform, including accounts, business listings/profiles, marketplace pages, events (virtual and in‑person), speaker content and recordings, communications, support, payments, and advertising/analytics. It does not cover third‑party sites/services we do not control—review their policies before sharing data.

Roles. 1BusinessWorld is generally a controller of personal data. Where we process personal data on behalf of an enterprise customer (e.g., a private event workspace), we act as a processor under a written Data Processing Addendum (DPA); in such cases, the customer’s privacy notice governs.

2) Categories of Personal Data We Collect

Identifiers & Contact: name, email, phone, account ID, IP address, postal address.
Professional Profile: company, title, bio, headshot, industry focus, links/handles.
Business Listing Data: company name, logos/marks, descriptions, categories, locations, contacts.
Transactions & Billing: order details, invoices, billing address, VAT/GST/Tax IDs (we do not store full payment card numbers).
Usage & Device Data: device identifiers, browser/OS, language, time zone, pages viewed, clicks, session duration, approximate location (city/region from IP).
Cookies/Ad IDs: consent‑based identifiers for analytics/ads (see §5–6).
Communications & Support: inquiries, preferences, consent records.
Event & Media: registrations, attendance, session choices, Q&A/chat, recordings, media releases.
User‑Generated Content (“UGC”): text, images, audio/video, slides, comments, live‑stream interactions you upload.

Sensitive data. We do not intentionally collect special/sensitive categories (e.g., precise geolocation, biometric templates, health, government ID) unless you voluntarily provide them for a specific purpose; if so, we apply heightened safeguards or remove the data where appropriate.

3) Sources of Personal Data

Directly from you: account creation, profile updates, listings, event registrations, communications, purchases.
Automatically: cookies, SDKs, server logs, security systems.
From service providers/partners: payment processors, analytics/ads vendors, anti‑fraud/spam defense, email delivery.
From public/professional sources: information you direct us to include in listings/profiles.

4) How We Use Personal Data (Purposes & Legal Bases)

Purpose	Examples	Legal Basis (GDPR/UK GDPR & analogues)
Operate the Platform	accounts, profiles, listings, hosting, support	Contract; Legitimate interests (run & secure services)
Transactions & billing	orders, invoices, refunds, tax/VAT, fraud checks	Contract; Legal obligation; Legitimate interests
Service communications	confirmations, operational & security notices	Contract; Legitimate interests
Marketing	newsletters, updates, event invites	Consent where required; Legitimate interests with easy opt‑out
Personalization	content/event recommendations	Consent where required; Legitimate interests
Analytics & improvement	performance, debugging, quality	Legitimate interests; Consent for non‑essential cookies
Safety & compliance	abuse prevention, terms enforcement, legal process	Legitimate interests; Legal obligation
Recordings & media	capture/publish events per releases/agreements	Consent; Contract; Legitimate interests

You may withdraw consent at any time via our preference tools or by contacting us; withdrawal does not affect prior lawful processing.

5) Cookies, Consent & “Do Not Sell/Share”

We use a Consent Management Platform (CMP). On first visit, you can Accept, Reject, or Customize non‑essential cookies (analytics/advertising). You can adjust choices anytime via Privacy/Opt‑Out Preferences in the footer. We honor Global Privacy Control (GPC) signals where applicable.

U.S. “sell/share.” We do not sell personal information for money. We may “share” limited online identifiers with advertising partners for cross‑context behavioral advertising only if allowed by your choices/consent. Use the Do Not Sell/Share link to opt out at any time. See our Cookie Notice for categories, vendors, and durations.

6) Advertising, Analytics & Anti‑Fraud

We work with reputable providers for:

Analytics/Measurement: site performance, usage, conversions.
Advertising: ad placement/measurement and (where permitted) personalization.
Security/Anti‑Abuse: bot detection, rate limiting, fraud scoring, spam defense.

Non‑essential tags/pixels are blocked until consent. We support Google Consent Mode and, where applicable, IAB TCF. You can disable categories via the CMP.

7) Payments & Financial Information

Payments are processed by third‑party payment processors (e.g., Stripe). We receive transaction confirmations and limited billing data; we do not store full payment card numbers. Payment processors apply their own PCI DSS controls. Refunds and taxes are handled per law and our posted terms.

8) Events, Recordings & Media Rights

We process event registrations, attendance, Q&A/chat, and interactions to operate events. Sessions may be recorded and distributed consistent with speaker/participant releases and event terms. Where consent is the basis, you may withdraw it as permitted by law and applicable releases.

9) User‑Generated Content & Takedown

UGC may be public or shared as you choose. You must have the rights to post it (including third‑party likenesses/music). We act on privacy, copyright, or trademark complaints via our Notice‑and‑Takedown Policy and applicable laws (e.g., DMCA, EU DSA). We may remove UGC that violates law or our terms.

10) How We Share Personal Data

Service providers (processors): hosting, CDN/security, email delivery, analytics, advertising, payments, anti‑fraud, spam defense—each bound by contract to use data only on our instructions.
Affiliates: entities under common control to deliver unified services under this Policy.
With your direction: publishing listings/directories, exhibitor scans, or integrations you connect.
Legal/safety: to comply with law, respond to lawful requests, enforce terms, or protect rights.
Business transactions: merger, acquisition, financing, or sale; successors must honor this Policy.

We do not allow service providers to use your data for their own unrelated purposes.

11) International Transfers

We operate globally. When transferring personal data internationally (including from the EEA/UK/Brazil to the U.S.), we use lawful mechanisms such as EU Standard Contractual Clauses (2021) and the UK IDTA/Addendum, with supplementary measures as appropriate. Where applicable, we may participate in recognized transfer frameworks (e.g., EU‑US/UK‑US Data Privacy Framework). We perform Transfer Impact Assessments and can provide summaries to regulators upon request.

12) Security Measures

We implement reasonable administrative, technical, and physical safeguards appropriate to the data and risks, including HTTPS/TLS, access controls (least‑privilege), logging/monitoring, vulnerability management, and vetted vendors. No method is 100% secure; we maintain incident‑response procedures and will provide breach notifications as required by law.

13) Data Retention & Deletion

We retain personal data only as long as necessary for the purposes in this Policy, to comply with legal, tax, and accounting obligations, or to establish/defend legal claims—then we delete or irreversibly de‑identify it. Typical periods appear in Annex B. Backups purge within 30 days after primary deletion unless subject to legal holds.

14) Your Rights & How to Exercise Them

Depending on your location, you may have rights to access, correct, delete, restrict, port, object (including to direct marketing), opt out of sale/sharing and targeted advertising, limit use of sensitive data (if collected), withdraw consent, and appeal a denied request.

How to exercise:

Privacy Center / Legal Hub: https://1businessworld.com/legal-hub (or site Contact form)
Email: pr*****@************ld.com
Cookie/Ads Preferences: footer link Privacy/Opt‑Out Preferences; we honor GPC.
Do Not Sell/Share (U.S. states): link in the footer.

We verify identity before acting and respond within legal timelines. We will not discriminate for exercising rights. Regional details appear in Annex C.

15) Automated Decision‑Making & Profiling

We do not engage in solely automated decisions that produce legal or similarly significant effects about you. We may use limited profiling (e.g., to recommend content/events) consistent with your choices and applicable law.

16) Children’s Privacy

The Platform is not directed to children under 16 (or the age defined by local law). We do not knowingly collect children’s personal data. If you believe we have, contact us for deletion.

17) Changes to this Policy

We may update this Policy. Material changes take effect 30 days after posting; we will notify registered users by email or in‑product notice. Prior versions are archived.

18) How to Contact Us

Email (privacy): pr*****@************ld.com
Postal: 1BusinessWorld Inc., Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
EU/UK Representative (GDPR Art. 27): Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
Brazil Encarregado (LGPD): Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
We will route your request to the appropriate team/representative.

19) Annex A — California Notice at Collection (CPRA)

We do not sell personal information for money. We may share online identifiers for cross‑context behavioral advertising only per your choices/consent. Typical retention periods appear in Annex B.

Category	Examples	Business Purposes	Sold?	Shared for Targeted Ads?
Identifiers	name, email, phone, account ID, IP	accounts, support, security, communications	No	Possibly (IP/device IDs)
Customer Records	billing name/address, transaction IDs	purchases, invoices, refunds, tax	No	No
Commercial Info	purchase history, event registrations	deliver/improve services, support	No	No
Internet Activity	device data, pages viewed, cookies	analytics, security, (consented) ads	No	Yes (if consented)
Geolocation (coarse)	country/city from IP	localization, fraud prevention	No	Possibly (if consented)
Professional Info	job title, company, industry	profiles, listings, curation	No	No
Inferences	preferences derived from use	personalization (where allowed)	No	Possibly (if consented)
Sensitive PI	generally not collected	n/a	No	No

Your choices: Use Privacy/Opt‑Out Preferences (CMP); we honor GPC; unsubscribe via email links; submit rights requests via the Privacy Center.

20) Annex B — Data Retention Schedule (Typical)

Category	Typical Retention	Rationale
Account & Profile	Life of account + 90 days	Account integrity, disputes
Business Listings	While listing is live + 90 days	Service continuity
Transactions/Invoices	7 years	Tax/audit obligations
Event Recordings	5 years (or earlier on valid request)	On‑demand access, archives
Marketing Consents	Until opt‑out + 2 years	Compliance proof
Support Tickets/Comms	2–3 years after resolution	Quality, disputes
Web Logs/Analytics	12–24 months (non‑essential only if consented)	Security, performance

We may retain longer where required by law or to establish/defend legal claims; we apply shorter periods where feasible. Backups purge within 30 days after primary deletion.

21) Annex C — Regional Supplements

A. European Union / United Kingdom (GDPR/UK GDPR)

Controller: 1BusinessWorld Inc. Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
Legal bases: see §4; we conduct Legitimate Interests Assessments where required.
Transfers: SCCs (2021) + UK Addendum; supplementary measures as needed; TIAs documented.
Rights: access, rectification, erasure, restriction, portability, objection, withdraw consent.
Complaints: contact your supervisory authority (ICO in UK; see EDPB for EU list).

B. Brazil (LGPD)

Controller: 1BusinessWorld Inc. Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
Rights: confirm processing; access; correction; anonymization/block/deletion of unnecessary/excessive data; portability; information on sharing; withdraw consent; review automated decisions.
Transfers: contractual safeguards per LGPD; assessments available upon request by ANPD.

C. India (DPDP Act, 2023)

Data Fiduciary: 1BusinessWorld Inc. Attn: Privacy Office, 285 Fulton Street, Fl 85, New York, NY 10007, USA
Rights: access, correction, erasure, grievance redressal; ability to withdraw consent.
Safeguards: reasonable security practices; purpose limitation and data minimization observed.

D. China (PIPL)

We assess PIPL applicability for users in China. Where cross‑border transfer mechanisms are required (e.g., CAC standard contract/certification), we will implement lawful measures before transfer and minimize collection. The authoritative legal text is in Chinese; any English translation is for reference only.

E. Canada (PIPEDA), Australia (Privacy Act), Singapore (PDPA)

We honor access/correction rights, purpose limitation, reasonableness, and safeguards as required by local law. Use the channels in §14 to exercise rights; we respond within statutory timelines.

22) Annex D — Definitions

“Personal data / personal information”: information that identifies or can reasonably be linked to an identified or identifiable person.
“Processing”: any operation performed on personal data (collection, use, disclosure, storage, deletion, etc.).
“Sale/Share” (U.S.): as defined by CPRA and similar laws; includes cross‑context behavioral advertising.
“Controller/Processor”: as defined by GDPR/UK GDPR (and analogues).
“UGC”: User‑Generated Content you submit to the Platform.

Important Legal Notes

This Policy is truthful and conservative—we do not claim certifications or practices we cannot consistently perform.
The Terms of Use govern your use of the Platform; if a conflict arises, the stricter applicable rule and our Terms/Policy control for our processing.
External regulator links are maintained by those authorities; 1BusinessWorld is not responsible for their content.

My Account

Welcome to 1BusinessWorld_®

Privacy Regulations & Rights