Privacy Notice

Controller and purpose

This privacy notice describes the technical processing for the SNOSTORM 2027 website. The website provides event information and accepts registrations for the SNOSTORM 2027 scientific meeting.

Data processed during registration

The registration form stores first name, last name, email address, institution, country, professional role, attendance selection, optional message, timestamp, IP address and user agent. This data is required to manage participation, communicate with participants and protect the form against abuse.

Technical storage and mail delivery

Registration data is stored as JSON Lines in the local server filesystem. Notification and confirmation emails are sent through SMTP when configured. If SMTP is not configured or fails, the message is written to a local mail log so no registration is lost.

Spam and security measures

The form uses a CSRF token, a hidden honeypot field, a minimum form completion time and a per-session rate limit. Admin access is protected by Grav Admin authentication when the Admin plugin is installed.

Retention

Registration data should be deleted after the event and after legal or organisational retention needs have ended. Log files should be reviewed and removed regularly.

Rights

Participants may request information, correction or deletion of their registration data. Final controller details, contact addresses and legal basis must be reviewed before publication.