Personally Identifiable Information
This policy has been updated to comply with the General Data Protection Regulation 2016 (GDPR) and electronic communication regulations, updated in May 2018. This policy will be updated as needed for operational and legal changes.
GDPR provides the following rights for individuals;
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
What personal information do we collect from people that visit our website?
When registering on our site, you may be asked to enter your name, email address or other details to help you with your experience. If you choose to use the contact form we will obtain your email address and any other personal information you choose to disclose to us.
When do we collect information?
We collect information from you when you:
- Subscribe to our newsletter
- Contact us via the website
- Purchase an event ticket
- Enter a competition
How do we use your information?
- To personalise your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
- To respond to your query, question or comment.
- To send you newsletters via Mail Chimp, providing information and updates on our products.
- To administer additional features on the website.
- To ask for reviews of services.
- To set up ticket holders on the The Ticket system (please note we share ticket holders’ basic details with them in order to facilitate this).
- To issue ticket holders with tickets to events, including both purchased and complimentary tickets to musicians, artists, etc (please note we share ticket holders’ basic details with ticket platform The Ticket Booth in order to facilitate this).
How do we protect your information?
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive information you supply is encrypted via Secure Socket Layer (SSL) technology.
All credit card transactions are processed through a gateway provider (Stripe) and are not stored or processed on our servers. We never actually see or hold on to your credit card information.
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it’s appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising or other uses.
To run a successful event, we currently share ticket holders’ basic details with ticket platform The Ticket Booth GDPR compliant, and understand the importance in holding and using people’s personal information with safety, security and respect.
- When you subscribe to the mailing list or purchase festival tickets, the details you have entered, including name and email address, will be retained in our mailing list system MailChimp. These will be kept until you unsubscribe, or your email address becomes invalid and will be removed.
- When you contact us via the customer contact form, we will keep the email chain for no more than 12 months after the conversation has ended in case of further questions. Then it will be deleted.
- When you order anything from us, we will add you to our mailing list and retain the correspondence relating to the order for 60 months before deleting it.
We do not include or offer third-party products or services on our website.
Please see our Cookies policy.
We use Google Analytics on our website.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users.
We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
To opt out, users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add-on.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via in-site notification. We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Send information, respond to inquiries, and/or other requests or questions.
- Market to our mailing list or continue to send emails to our customers after the original transaction has occurred.
To be in accordance with CAN-SPAM, we agree to the following:
- Not use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services for compliance, if one is used.
- Honor opt-out/unsubscribe requests quickly.
- Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can email us via our contact page. Follow the instructions at the bottom of each email and we will promptly remove you from ALL correspondence.
Access, change, erase or complaints
You may contact us at any time if you wish to access, erase or change the data we hold on you.
If you have a complaint about the use, or retention, of your personal data in relation to any of the above legislation, please contact us in the first instance so we can try to resolve the issue. However you have the right to contact the relevant supervisory authority for the area you are resident in. In the UK this is the Information Commissioner’s Office.