Who we are
The Priddy Folk Festival is an independent charity registered in England (No. 1186707) and a Registered Company, No. 05847393. Our registered office is: Rose Farm Wells Road, Priddy, Wells, England, BA5 3AZ
Our principles regarding user privacy
- We believe user privacy and data protection are basic rights
- We will only collect and process data when it is necessary, and when we do, we will make it clear why we are doing so and how it will be used
- We will not send you regular email newsletters that you have not subscribed to. We will always give you the choice to unsubscribe.
Data Protection Regulations
The purpose of the UK General Data Protection Regulation (UK GDPR) and UK data protection laws is not to prevent the processing of personal data but to ensure that it is done fairly and without adversely affecting the rights of the Data Subject (i.e. you)
UK GDPR allows the processing of Personal Data for specific purposes, namely, where it is needed:
- for the performance of a contract
- to comply with a legal obligation
- in order to pursue our legitimate interests (or those of a third party) and where the interests and fundamental rights of the Data Subject do not override those interests
- to protect the Data Subject’s vital interests
- in the public interest, or
- in situations where the Data Subject has given explicit consent.
Personal Data we collect via this website
Personal Data, or personal information, means any information about an individual from which that person can be identified, including Personal Data that you provide by filling in forms on our website. It does not include data where the individual’s identity has been removed (anonymous data).
We will process all Personal Data lawfully, fairly and in a transparent manner.
We will take all steps reasonably necessary to ensure that your Personal Data is processed securely, in compliance with data protection laws and in accordance with this privacy notice.
How we use it
We use personal information held about you:
- As part of our efforts to keep our website safe and secure
- To administer the website and for troubleshooting, data analysis, testing and research purposes
- To personalise and optimise your experiences as part of our provision of our service
- To provide you with our service and to communicate with you in respect of your use of the service
- To allow you to participate in interactive features of our service, when you choose to do so, such as responding to surveys or registering to receive email updates from us.
Should you complete a form on our site, none of the data that you supply will be stored by this website or passed to/be processed by any third-party data processors, apart from our email service provider and our ticketing service provider.
Your details will remain within EmailOctopus’ database for as long as we continue to use EmailOctopus’ services for email marketing or until you specifically request removal from the list. You can do this by using the unsubscribe links contained in any email newsletters that we send you.
We embed invisible gifs, also known as web beacons, in our HTML-based email newsletters through third-party data processor EmailOctopus. This is the industry standard for email tracking and allows us to see which emails are opened and which links are clicked by recipients. The information helps us improve our newsletters.
Because it relies on a hidden graphic, you can block any tracking by turning off automatic image loading in your email. Alternatively, you can use the update preference link at the bottom of any of our emails and choose plain text as your preferred email format.
Website cookies and tracking
Cookies may be set and accessed by third-party data processors, including Google Analytics (GA). We use this data to monitor how many people are using our site and to better understand how they use the site, in order to improve the experience we provide. Although GA records information such as your geographical location, device, internet browser and operating system, none of this data personally identifies you to us.
Disabling cookies on your internet browser will stop this site from tracking any part of your visit to this website. Further information on how to enable and disable cookies is available from aboutcookies.org.
You can set your browser not to accept cookies and the above websites tell you how to do this. However, some of our website features may not function correctly as a result.
Clicking any link on our website is taken as implied consent to our placing cookies on your device, unless you have disabled them in your browser as described above.
Photographs and video recording
Please note that there will be photographers and videographers filming at times during our event, as is stated when you purchase a ticket. These activities allow us to capture the event for use in future promotion on our website and social media and also to provide a lasting memory of our festivals. The images are generally crowd shots but may include photos of individuals. If this is the case, we will always try to ask your permission beforehand, but this may not always be possible.
About this website’s server
This website is hosted by 34sp.com within a data centre located in Manchester.
Our third-party data processors
We use a number of third-party service providers who process Personal Data on our behalf. The third-party service providers are required perform the tasks undertaken on our behalf solely for the purposes described. They are not permitted to disclose or use the information for any other purpose.
Our website contains many links to and from other websites. If you follow a link to any of these websites, please note that they will have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Community and social networks
The Priddy Folk Festival is on several third-party community and social networks and our website contains links to these networks. These companies also process Personal Data and have their own privacy policies, and you should review their privacy policies before sharing personal information:
Website data breaches
In the event of an unlawful data breach of this website’s database or the database(s) of any of our third-party data processors, the breach will be assessed and if appropriate reported to any and all affected persons and relevant authorities without undue delay, and if feasible, within 72 hours of the discovery of the breach.
Requesting your Personal Data
Individuals have the right to the Personal Data that organisations hold on them. You can request your Personal Data by making a subject access request. There is no fee for making a subject access request. You will need to provide us with the necessary information needed to deal with your request.
The right of access extends to all information held on an individual and includes databases and emails referring to the individual.
However, there are also a number of exemptions which effectively allow Personal Data to be withheld. To consider and apply an exemption will be dependent on the purpose for which the Personal Data is being processed, and will be considered and undertaken on a case-by-case basis. There is more detailed guidance from the Information Commissioner’s Office.
The data controller is required to communicate to the data subject information it holds in an intelligible form within up to two months if the request is complex. This timeframe starts from the date that the data controller receives the request, and when the data subject has provided sufficient information for the data controller to locate the requested information.
This website and our business and internal computer systems are designed to comply with the following national and international legislation with regard to data protection and user privacy:
- Privacy and Electronic Communications Regulations (PECR) 2003
- EU General Data Protection Regulation 2016 (GDPR)
- Data Protection Act 2018
This website’s policy and our compliance with the above legislation (all of which is stringent in nature) means that this site is likely compliant with the data protection and user privacy legislation set out by many other countries and territories as well. If you are unsure about whether this site is compliant with your own country of residence’s specific data protection and user privacy legislation you can contact our data protection lead for clarification
The data controller of this website is Priddy Folk Festival Registered Company No. 05847393
2024-02-04: Email newsletter service provider switched to EmailOctopus. Policy and links updated accordingly.
How to contact us
Questions, comments and requests regarding how we use your personal information or comply with data protection legislation, please email us at: firstname.lastname@example.org