This Privacy Policy describes how H Bureau LLC (“Company,” “we,” “us,” or “our”) collects, uses, and protects information through the Mezzo speaker discovery platform (the “Service”).
We are committed to protecting your privacy and being transparent about our data practices. This policy covers two distinct types of data:
User Data: Information you provide when creating an account and using our platform
Speaker Data: Publicly available information about professional speakers that we aggregate to power our discovery service
Company name, phone number, and location (optional profile details)
Payment Information
If you subscribe to a paid plan, payment information is collected and processed by our payment processor, Stripe. We do not store your credit card details. We receive only confirmation of payment status, subscription tier, and billing history.
Usage Data
We automatically collect information about how you use the Service, including:
Shortlists you create and speakers you add to them
Search queries and filter selections
Session data (login times, pages viewed)
Device Information
We may collect device and browser information such as IP address, browser type, and operating system for security and analytics purposes.
3. How We Source Speaker Information
Mezzo aggregates publicly available information about professional speakers from a variety of public sources to help event organizers discover and evaluate potential speakers for their events.
Sources of Speaker Information
We collect publicly available speaker information from:
Conference websites: Speaker listings from events such as TED, Web Summit, SXSW, Cannes Lions, CES, Slush, and similar public events
Video platforms: Publicly available talks on YouTube, Vimeo, and conference video archives
Speaker bureaus: Public listings from professional speaker representation agencies
Professional profiles: Information speakers have chosen to make publicly accessible
Company websites: Public executive bios and speaking pages
What Speaker Information We Collect
Name, professional title, and current company
Biography and professional background
Speaking topics and areas of expertise
Links to publicly available talks and videos
Professional contact information (where publicly listed)
Links to speaker bureau representation
Links to publicly shared professional photos
Links to public social media profiles (LinkedIn, Twitter/X)
What We Do NOT Collect
We do not access private accounts, restricted databases, or information behind authentication
We do not collect personal home addresses, private phone numbers, or personal email addresses
We do not access private social media content or direct messages
We do not collect sensitive personal data (health, religion, political views, etc.)
Images and Visual Content
Where speaker profiles include photos, we link to publicly shared professional images rather than storing copies. These are typically professional headshots that speakers have chosen to make publicly available on conference websites, speaker bureaus, or their own professional sites.
Important Note:
We only aggregate information that speakers have made publicly available in their professional capacity. Our goal is to help event organizers discover speakers while respecting speaker privacy. Speakers can claim their profile, update their information, or request removal at any time.
Enable event organizers to discover and evaluate speakers
Display relevant information to help with booking decisions
Suggest similar speakers based on topics and expertise
5. Information Sharing
We share information only in the following circumstances:
Service Providers
Supabase: Authentication and database services
Stripe: Payment processing (PCI-DSS compliant)
Vercel: Website hosting and edge functions
PostHog: Product analytics to understand how users interact with our platform
Sentry: Error monitoring to identify and fix technical issues
Legal Requirements
We may disclose information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
What We Do NOT Do
We do not sell user data to third parties
We do not share your shortlists or search activity with speakers
We do not provide user data for advertising purposes
6. Speaker Rights (Claim Your Profile)
If you are a speaker featured on Mezzo, we respect your right to control your professional information. You can:
Claim Your Profile
Verify your identity to take ownership of your speaker profile and manage how you're presented.
Update Your Information
Correct inaccuracies, add missing details, or update your bio, topics, and contact preferences.
Manage Visibility
Choose what contact information is displayed and how event organizers can reach you.
Request Removal
If you prefer not to be listed on Mezzo, you can request complete removal of your profile.
Claimed Speaker Accounts
When you claim your speaker profile, you gain additional capabilities:
Add and manage your speaking history (past talks and events)
Review and approve talk suggestions submitted by event organizers or other users
Control which contact information is visible to organizers
Receive notifications when you're added to shortlists (optional)
Talk Suggestions
Users may suggest talks for your profile based on publicly available information. All suggestions require your explicit approval before appearing on your public profile. You can review, edit, or reject any suggested talks through your speaker dashboard.
We aim to respond to all speaker requests within 5 business days. For removal requests, we will remove your profile within 30 days of verification.
7. User Rights
As a user of the Service, you have the right to:
Access: Request a copy of the personal data we hold about you
Rectification: Update or correct your account information
Deletion: Delete your account and associated data
Export: Request an export of your data in a portable format
Objection: Opt out of non-essential communications
For EU/EEA Residents (GDPR)
If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local supervisory authority.
For California Residents (CCPA)
If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect and the right to request deletion.
Account data: Retained until you delete your account
Usage data: Retained for analytics purposes, typically 2 years
Payment records: Retained for 7 years as required by tax and accounting regulations
Speaker data: Retained until a removal request is received and processed
Support communications: Retained for 3 years
When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain certain information by law.
9. International Data Transfers
H Bureau LLC is based in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States.
Our service providers may process data in various locations:
Supabase: Offers regional data storage options
Stripe: Operates globally with appropriate data protection measures
Vercel: Uses edge locations globally for performance
For EU residents, we ensure that any international transfers comply with GDPR requirements through appropriate safeguards.
10. Security Measures
We implement appropriate technical and organizational measures to protect your data, including:
Encryption in transit (HTTPS/TLS)
Encryption at rest for stored data
Secure authentication through Supabase Auth
Access controls limiting data access to authorized personnel
Regular security reviews and updates
While we take reasonable precautions, no internet transmission is completely secure. Please protect your account credentials and notify us immediately if you suspect unauthorized access.
11. Cookies & Tracking
We use cookies and similar technologies for:
Essential Cookies
Required for the Service to function, including authentication and session management. These cannot be disabled.
Preference Cookies
Remember your settings and preferences to improve your experience.
Analytics Cookies
We use PostHog to understand how users interact with the Service, which helps us improve functionality and user experience. PostHog collects anonymized usage data such as pages visited, features used, and session duration. You can opt out of analytics tracking in your browser settings.
We do not use third-party advertising or tracking cookies. We do not sell your data or use it for targeted advertising.
12. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a prominent notice on the Service at least 30 days before the changes take effect.
We encourage you to review this policy periodically. The “Last updated” date at the top indicates when the policy was last revised.
13. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us: