Privacy and Cookie Policy — Vodafone Fiji Events App

Last updated: 22 April 2026

Bula! Thanks for choosing the Vodafone Fiji Events App. This Privacy and Cookie Policy explains what personal information we collect when you use the App, how we use it, who we share it with, and the choices you have. We've written it to be clear and straightforward — but if anything is unclear, get in touch using the contact details at the bottom of this page.

About this Privacy Policy

This policy applies to the Vodafone Fiji Events App (the "App") and the services delivered through it, including the companion web portal at eventsfiji.cloud. It sits alongside Vodafone Fiji's general Privacy and Cookie Policy, which continues to apply to your wider relationship with us.

By downloading or using the App, you agree to this policy. If you don't agree, please don't use the App.

Who we are

"We", "us" and "our" mean Vodafone Limited, registered in Fiji and operating as Vodafone Fiji. Our registered office is:

Vodafone Fiji
168 Princess Road
Tamavua, Suva
Fiji

Our privacy principles

Whenever we handle your personal information, we follow these commitments:

Openness — we're upfront about what we collect and why.
Choice — where possible, you decide how your information is used.
Security — we take reasonable steps to keep your information safe.
Accountability — we take responsibility for how we look after your information.
Respect — we only use your information for purposes you'd reasonably expect.

Personal information we collect about you

We collect personal information when you register for an event, set up your App account, attend sessions, message other attendees, or otherwise interact with the App. This includes:

Information you give us

Your name, email address, mobile number, organisation, and job title.
A password (stored as a cryptographic hash — we never see your actual password).
Your profile photo, bio, and contact preferences, if you choose to add them.
Messages you send to other attendees through the networking feature.
Responses to polls, Q&A, votes, and feedback during sessions.

Information we collect automatically

Authentication tokens — signed JSON Web Tokens (JWT) with a 7-day lifetime, stored securely on your device to keep you logged in.
Push notification tokens — issued by Apple Push Notification service via Firebase Cloud Messaging, used to deliver event announcements and session reminders.
Device information — device type, operating system version, and App version, used to diagnose issues.
Usage data — session check-ins, feature usage events, and crash reports.

Legal basis for processing

We process your personal information on one or more of the following lawful grounds:

Contract — to deliver the event services you've registered for.
Consent — for optional features like the attendee directory or marketing communications (which you can withdraw at any time).
Legitimate interests — to operate, secure, and improve the App.
Legal obligation — where we're required to process information by Fijian law.

How we use your personal information

To provide you with the event service Authenticating you, delivering the agenda, speaker profiles, sponsor information, session check-ins, networking directory, and attendee-to-attendee messaging.
To communicate with you Sending push notifications for announcements, session reminders, schedule changes, and critical event updates.
To improve our service Diagnosing technical issues, fixing bugs, and making the App easier to use — based on anonymised crash reports and usage patterns.
To keep the App secure Detecting and preventing fraud, abuse, unauthorised access, and breaches of our terms.
To meet legal obligations Responding to lawful requests, regulatory enquiries, or where we're required to retain information by law.

Who we share your information with

We don't sell your personal information. We share it only as described below:

Other attendees — your name, organisation, and job title appear in the networking directory if you opt in. You can opt out at any time in App settings.
Event organisers — the company or body hosting the specific event you've registered for, so they can manage attendance and communications.
Our service providers:
- Apple — for App distribution and push notification delivery.
- Google (Firebase) — for crash reporting, analytics, and push messaging infrastructure.
Authorities — where required by Fijian law, court order, or to protect rights and safety.
Vodafone Group companies — where necessary for operating the App and consistent with this policy.

International transfers

Some of our service providers (notably Apple and Google) process data outside Fiji. These providers maintain their own contractual safeguards for international transfers, and we only use providers that meet recognised data protection standards.

Keeping your personal information secure

We take the security of your personal information seriously. Our measures include:

All data transmitted between your device and our servers is protected using HTTPS/TLS encryption.
Passwords are hashed using industry-standard algorithms (bcrypt) — we never store them in plain text.
Authentication uses cryptographically signed tokens with a strong secret.
Our servers are protected by network-level access controls and kept up to date with security patches.
Rate limiting and input validation guard against common web attacks.
Access to personal information is limited to staff who need it to do their job.

A reminder: no system is completely secure. While we take reasonable precautions, we can't guarantee absolute security. If you suspect your account has been compromised, change your password and contact us straight away.

How long we keep your information

Account and profile data — retained for 12 months after the event concludes, then anonymised or deleted.
Messages — retained for the duration of the event plus 90 days.
Authentication logs — retained for 30 days for security auditing.
Backups — encrypted backups may persist for up to 90 days after deletion from primary storage.

You can request earlier deletion at any time using the contact details below.

Your rights

You have the right to:

Access the personal information we hold about you.
Request correction of information that's inaccurate or incomplete.
Request deletion of your account and associated information.
Withdraw your consent where consent is the legal basis for processing.
Object to or restrict certain uses of your information.
Lodge a complaint with a data protection authority.

To exercise any of these rights, email us at corporate.ict@vodafone.com.fj. We'll respond within 30 days.

Children

The App is not directed at children under 16. We don't knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we'll delete it.

Cookies and local storage

The App and companion web portal use local device storage to keep authentication tokens and cache event data for offline viewing. We don't use tracking cookies for advertising on the App.

Third-party services

The App integrates with the following third-party services. Their privacy practices are governed by their own policies:

Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top will reflect any revisions. We'll notify you of material changes through the App or by email.

How to contact us

If you have any questions about this policy or how we handle your personal information, we'd love to hear from you:

Enquiries: corporate.ict@vodafone.com.fj

Post: Vodafone Fiji, 168 Princess Road, Tamavua, Suva, Fiji

Website: https://www.vodafone.com.fj