This Privacy Policy explains how the India Health & Exhibition Summit (IHES) 2026 ("we", "us", "our") collects, uses, stores, shares and protects personal data when you interact with our website, register for the summit, or express interest in any session or exhibition pavilion. We strive to comply with the EU General Data Protection Regulation (GDPR), the India Digital Personal Data Protection Act 2023 (DPDP), and applicable Ethiopian data-protection rules.
1. Data we collect
- Identity & contact data: name, organisation, designation, email, phone, country.
- Submission content: the message or interest you provide via our forms.
- Technical data: minimal request metadata (IP, user-agent, timestamp) processed by our hosting provider for security and abuse prevention. We do not use third-party advertising or cross-site tracking cookies.
2. Purposes & legal bases
- Process your registration / interest — performance of a contract or pre-contract steps (GDPR Art. 6(1)(b)).
- Send event-related communications — your explicit consent (GDPR Art. 6(1)(a)) given via the form checkbox.
- Site security & fraud prevention — our legitimate interests (GDPR Art. 6(1)(f)).
- Legal compliance — where required by law (GDPR Art. 6(1)(c)).
3. Storage & retention
Registration data is stored on our managed cloud infrastructure with access restricted to the IHES organising team. We retain registration data for up to 24 months after the event and then delete or anonymise it, unless a longer period is required by law.
4. Sharing
We do not sell your personal data. We share it only with: (a) our co-organisers and partner authorities listed on the Partners page for the purpose of operating the summit; (b) processors providing hosting, email and analytics, bound by appropriate data-processing terms; and (c) authorities where legally required.
5. International transfers
Because IHES is operated jointly between India and Ethiopia, your data may be transferred and processed outside your country of residence. We rely on appropriate safeguards (Standard Contractual Clauses or equivalent) for transfers from the EEA / UK.
6. Your rights
You have the right to:
- Access, correct, or delete your personal data
- Restrict or object to processing
- Withdraw consent at any time (without affecting prior lawful processing)
- Receive a copy of your data in a portable format
- Lodge a complaint with your local data-protection authority
To exercise any right, email us at privacy@ihes.in.
7. Cookies
We use only strictly-necessary first-party cookies / local storage required to operate the site (e.g. theme preference, dialog state). No advertising or cross-site tracking cookies are set. Because they are essential, no cookie banner consent is required under ePrivacy.
8. Security
We apply industry-standard technical and organisational measures: TLS 1.2+ in transit, access controls, hardened HTTP security headers (HSTS, CSP, X-Content-Type-Options, Referrer-Policy, Permissions-Policy), input validation, and bot-mitigation on public forms. No method of transmission is 100% secure; we encourage you to share only the information necessary.
9. Children
The site and registration are not directed to individuals under 18.
10. Changes
We may update this policy from time to time. Material changes will be highlighted on this page with a new "Last updated" date.