Privacy Policy

Privacy Notice End of the Road Festival Limited’s Website

With the adoption of the General Data Protection Regulation (GDPR) (EU) 2016/679, we have amended our Privacy Policy to ensure that we are compliant with the latest data protection requirements. We take data security seriously and want our customers to be assured that we are protecting any personal data that we hold in full compliance with the law. This Privacy Notice details what data we handle, why and what steps we’ve taken to ensure all data is adequately protected.

1. Identity and Contact Details

This privacy notice details how we use information collected by our website:

www.endoftheroadfestival.com

and also via our ticket purchase website:

https://eotr.festivalprosoftware.com/?showBookEvent1&EVENTID=5061&TID=41

These sites are managed in accordance with the relevant data protection legislation in the UK. The data controller is End Of The Road Festival Ltd of Studio 14 Hackney Downs Studios, 5 Amhurst Terrace, London E8 2BT (“EOTR”).

The ticket purchase website is controlled by End of the Road Festival Ltd but hosted and managed by Festival Pro Ltd, RAD Labs, 64 Cropley Street, N1 7GX . Festival Pro are contracted to EOTR as a Data Processor as defined with the GDPR regulations.

You can contact our privacy officer at the address above or by emailing info@endoftheroadfestival.com – please use “DPO” as a reference in the subject line to ensure your enquiry is handled quickly.

2. The Data

Whilst you use our website we may collect information that is personally identifiable. The table below describes the information we collect and why we do so.

Please note that this list only applies to your use of our websites. If you interact with us in other ways, then additional privacy notices detailing other information and purposes will also apply.

For the avoidance of doubt, End of the Road Festival Ltd does not store any payment details (i.e. card numbers) as these are securely held within the PayPal and Stripe systems – both of which are compliant with GDPR legislation.

When you purchase a ticket for the festival, your email address will be added to our Email Mailing List so that we can send you information regarding the festival. Our Email Mailing List is managed by Mad Mimi who have confirmed their GDPR compliance. You are able to unsubscribe from this Email Mailing List at anytime using the “Unsubscribe” button on any newsletter you receive.

3. Data Sharing

We may share your information with other companies who act as our Data Processors in line with the purposes listed above. In all cases, they are all GDPR compliant and we have contracts and agreements in place to ensure that your information is protected and is not used for any other purpose than those listed above. Companies that we usually share information with are:

  • Google – who host and manage our email and cloud storage of company files
  • Bleeps & Blops Ltd – involved with the design, hosting and maintenance of the website
  • Festival Pro – who process our ticket ordering system, fulfilling your order, management of deposit ticket acounts and distributing e-tickets to our customers
  • PayPal – customers are able to use this online payment platform to pay for their ticket order. Please note that as detailed above, End of the Road Festival Limited do not store credit card or payment details that a customer enters when using PayPal.
  • Stripe – customers are able to use this online payment platform to pay for their ticket order. Please note that as detailed above, End of the Road Festival Limited do not store credit card or payment details that a customer enters when using Stripe.
  • Mad Mimi – Mailing List Management

All of our data processor partners have been contacted and confirmed that they are aware of the GDPR compliance requirements and will have their own policies in place.

4. International Transfer

Due to the nature of cloud based systems and storage, from time to time some information is stored and processed outside of the EEA.

Where information is transferred outside of the EEA, we ensure that appropriate safeguards are in place to protect your information to the same or an equivalent level as would be found in UK and EU data protection legislation. The safeguards we use are:

  • Ensuring the country is the subject of an EU adequacy decision; or
  • Ensuring the company is a member of an adequate. Legally-binding scheme such as EU-US Privacy Shield; or
  • Ensuring the contract includes ICO-approved model contract clauses; or
  • Ensuring the organisation is subject to ICO-approved binding corporate rules or an ICO-approved code of conduct.

5. Retention

In accord with relevant data protection legislation, we will not retain your information for longer than is necessary for the purposes listed above and to deal with any complaint or dispute you may have. If you require further information about our information retention policies, please contact us.

6. Your Rights

Under UK and EU data protection legislation, you have a number of rights with respect to your information. These include:

  • The right to be informed about the information we hold about you
  • The right of access to the information we hold about you
  • The right to have any errors rectified
  • The right to withdraw consent (where consent is the basis of processing)
  • The right to object to processing

If you have any questions about the information we hold, how we use it or how to exercise these rights, please contact us using the contact details above. You can also use the opt-out facilities provided in our marketing emails and in the settings on our website to change your preferences and consents at any time.

7. Complaints

If you have any cause for complaint about the way we care for your information, please do contact us and we will do our best to resolve the situation for you. You also have the right to complain directly to the Information Commissioner’s Office. You can find details of how to contact them here: https://ico.org.uk/concerns/ or by calling their helpline on 0303 123 1113.

8. Cookies

To make this site work properly, we sometimes place small data files called cookies on your device. Most websites do this too.

A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

How do we use cookies?

A number of our pages use cookies to remember:

  • your display preferences, such as contrast colour settings or font size
  • if you have already replied to a survey pop-up that asks you if the content was helpful or not (so you won’t be asked again)
  • if you have agreed (or not) to our use of cookies on this site

Also, some videos embedded in our pages use a cookie to anonymously gather statistics on how you got there and what pages you visited.

Our Website Cookies are also stored by Google Analytics, the Google service which measures the effectiveness and efficiency of the website. You can read more about how Google Analytics collect and process data here – www.google.com/policies/privacy/partners/

Enabling these cookies is not strictly necessary for the website to work but it will provide you with a better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.

The cookie-related information is not used to identify you personally and the pattern data is fully under our control. These cookies are not used for any purpose other than those described here.

How to control cookies

You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.