Last Updated: 09 November 2018
This website is offered by:
European Festivals Association (EFA) Square Sainctelette 17 1000 Brussels Belgium
T: +32 2 644 48 00 firstname.lastname@example.org
The GDPR replaces the Data Protection Directive 95/46/EC. It is designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organisations across the region approach data privacy. It also addresses the export of personal data outside the EU. The new regulation came into effect on 25 May 2018.
The User acknowledges having read the information below and authorizes EFA to deal, in accordance with what is specified below, with the personal data he/she communicates on/to the Website within the framework of the service proposed by EFA.
2 Who processes personal data?
Processing responsible: Access to the Website shall in principle be possible without having to provide personal data, such as, for example, surname, first name, postal address, e-mail address, etc. However, as part of EFA’s Service, the User may be required to transmit certain personal data. In such case, the European Festivals Association is in charge of processing these data, which will only be used for purposes in service of the User.
3 What data is EFA collecting about its users?
Data that you voluntarily provide to us: When you send us an email, use the contact form, register a festival or subscribe for one of our email lists, you are voluntarily giving us information. This may include either:
- Personal identification data: your name, first name, address, details regarding the organisation you work for, your title or occupation
- Contact data: phone number and email address
- Financial identification data: your bank details
- Electronic identification data: IP address, cookies, location
- Content: the text of your email or remarks in a form
By giving us this information, you consent to this information being collected, stored and used by us (see purpose under point 5)
Data that we collect automatically:
Registered information on visited servers: When the User accesses the Website, the visited servers automatically save certain data, such as the type of domain with which the User connects to the Internet, the IP address assigned to the User (when logged in), the date and time of access to the Website and other traffic data, location data or other communication data, viewed pages, type of browser used, platform and / or system, the search engine as well as the keywords used to retrieve the Website, etc.
However, no personal data identifying the User is collected through these savings. This information is kept for statistical and improvement purposes only.
4 How does EFA use my data?
General Purposes, the data that we collect via our services and channels are used to:
- Provide, operate, maintain and support our services, including membership activities, event production and coordination, project management, etc.
- Market and disseminate our services, products, projects and activities to users of the website and subscribers of the mailing list.
- Process and complete transactions and send related information including invoicing and transaction confirmations.
- Set up and manage the organisation’s contact database in our CRM system and other database systems.
- Improve our services, communications and communication channels through surveys and questionnaires.
- Analyse audiences use of our website and other communication channels to adapt and improve the content and user experience of the Website s.
- to allow the User to receive messages and manage his/her account from different devices (computer, tablet, smartphone, etc.);
- to detect and / or prevent fraud or similar activities of an illegal nature;
- to respond to requests for information;
- for any other purpose for which the User has expressly consented.
5 How does EFA collect data?
We use third-party services for communicating with our audiences, and our websites may contain links to other sites hosted by others. Different rules may apply to their collection, use, or disclosure of your personal data. We encourage you to review other platforms’ privacy policies before using them. We do not control, and are thus not responsible for, the content or privacy practices and policies of such other sites and under no circumstances shall we have any liability whatsoever for the activities conducted by or at any website accessed from or through our website.
Email Marketing: On our website and our project’s websites, you have the opportunity to subscribe to our email lists. We use a third-party provider, Campaign Monitor, to deliver our emails and e-newsletters. Through this application, we gather statistics around email opening and clicks using industry standard technologies, such as tracking pixels embedded in our email, helping us monitor and improve the communication with our audience. For more information about Campaign Monitor, read their privacy notice.
If you are subscribed to one of our email lists and no longer want to be contacted by us, please unsubscribe directly from our newsletter or contact us at email@example.com to update or delete your data.
6 How long does EFA store my data?
We don’t retain your personal data for longer than is necessary for our organisational purposes or legal requirements. If you are a user of our services or a partner, we keep your information until you decide to revoke the permission to contact you.
Regarding general dissemination of information about our activities, we retain your personal data for as long as you remain subscribed to our email lists and communication channels. Sometimes, we might also clean-up our databases and remove those users who are not active based on the suggestions of our tracking systems.
7 What are my rights regarding the data that EFA has collected about me?
The new EU General Data Protection Regulation (GDPR) empowers EU citizens with certain rights that we are committed to guarantee:
- Right to information: You may ask us for information about what personal data we are collecting and how we are processing it.
- Right to access: You are entitled to view and request copies of your personal data that we have collected and processed.
- Right to rectification: You may ask for modifications in your personal data, including incomplete data to be completed or incorrect data to be corrected.
- Right to withdraw consent: You may change your mind regarding your data, and withdraw a previously given consent for processing your personal data for a specific purpose. Should you request it, we would stop the processing of the personal data that was based on the consent provided earlier.
- Right to object: you may prohibit certain uses for your data.
- Right to object to automated processing: You may object to automated processing. Using this right, you may ask for your requests to be reviewed manually.
- Right to be forgotten: you may request that we delete all your personal data without undue delay. It is important to note that this is not an absolute right and depends on the retention schedule and retention period of some data in line with other applicable laws.
- Right for data portability: You may ask us to transfer your personal data. As part of such request, you may ask for your personal data to be provided back or transferred to another organisation. When doing so, your personal data must be provided or transferred in a machine-readable electronic format.
If you wish to make use of your rights, please send a written request accompanied by proof of your identity to the following postal address: European Festivals Association, Sainctelettesquare 17, 1000 Brussels, Belgium or to the following email address: firstname.lastname@example.org. We will respond within 1 month after receipt of your request.
8 How can I raise a complaint?
We are a non-profit organisation registered in Belgium. If you would like to make a complaint about the way that we are handling your personal data, you should contact the Belgian Data Protection Authority.