Privacy Policy

Goosfest (GF) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and your rights in relation to the data we hold.

As a not-for-profit voluntary organisation, Goosfest is not required to register as a Data Processor with the Information Commissioner’s Office (ICO), as clarified by ICO guidance for small organisations. However, we adhere to the principles of the General Data Protection Regulation (GDPR) and the Data Protection Act (DPA).

1. Who We Are

Goosfest is a not-for-profit voluntary organisation dedicated to organising and managing events. Our website, goosfest.com, is set up and managed to control client personal information responsibly.

2. Information We Collect

We collect personal information that you provide to us when interacting with Goosfest, primarily for the purpose of managing your event bookings and communications. This may include:

  • Contact Information: Name, postal address, email address, and telephone number.
  • Order Details: Information related to tickets purchased, including event details, ticket purchaser’s name, any specific dietary requirement and ticket reference number.
  • Account Information: If you register for an online account, your name, email, and password (passwords are encrypted and not visible to Goosfest or our web developers).
  • Correspondence: Information you provide when contacting us via email (info@goosfest.com, boxoffice@goosfest.com) or through our website’s ‘Contact’ tab.

We do NOT collect or have visibility to your bank details or credit/debit card numbers within our system. Payment processing is handled by third-party providers (PayPal, Stripe, HSBC E-banking, Square Payment) who are responsible for their own data security.

3. How We Collect Your Information

We collect personal information through various interactions, including when you:

  • Book tickets via our website, phone (Box Office), or email.
  • Register for an account on our website.
  • Sign up for our e-newsletters.
  • Provide feedback or suggestions through our ‘Contact’ tab or by direct email.
  • Make a payment via PayPal, Stripe, bank transfer, cheque, or cash (contact details are collected to process your order).

4. How We Use Your Information

We use your personal information for the following purposes:

  • To Process Ticket Orders: To confirm and issue tickets, manage your bookings, and send you necessary event information.
  • To Manage Your Account: If you register, to manage your online account and provide access to your order history.
  • To Communicate With You: To respond to your enquiries, provide customer support, and send you important updates regarding events you have booked.
  • For E-Newsletters: If you opt-in, to send you information about upcoming Goosfest events, news, and special offers. You can unsubscribe at any time.
  • For Internal Operations: To maintain records, for administrative purposes, and to ensure the proper functioning of our website and ticketing system.
  • To Improve Our Services: Anonymised data from Google Analytics may be used to understand website traffic patterns and improve user experience, but this does not identify individuals.

5. Sharing Your Information

We may share your personal information with:

  • Goosfest Committee Members: Client details may be shared with Goosfest Committee members and other volunteers as agreed by the Committee only for the purpose of managing Goosfest events (e.g., Box Office, Treasurer).
  • The Websmiths, our contracted web developer (thewebsmiths.com), has administrative access to the website for development, maintenance, security, and data backup. They also manage our Mailchimp e-newsletter distribution list.
  • Payment Processors: PayPal, Stripe, HSBC, and Square Payment process your financial transactions. We do not see your bank details; only confirmation of payment.
  • Workshop Providers: For specific events like bakery workshops requiring health questionnaires, these forms are downloaded from our website and completed offline. The workshop providers are responsible for controlling personal data on these forms, and you should refer to their individual privacy policies. You have the option to add dietary intolerance information but only where relevant to an event involving food where allergen risk is present.

We will never sell your personal information to third parties.

6. Data Retention

We retain your personal data indefinitely unless you request its removal. Data is kept to facilitate future interactions, verify details, and inform you about Goosfest events.

If Goosfest wishes to delete data, this must be agreed upon by the Executive Officers at a Goosfest meeting or AGM, in conjunction with The Websmiths.

7. Data Security

Goosfest takes the security of your personal data seriously. We implement robust security measures, including:

  • SSL Security: Our website uses SSL (Security Sockets Layer) encryption (a digi-certificate purchased through “Automattic”) to protect data transmitted between your browser and our server.
  • Regular Scans: The Websmiths undertake regular anti-virus and malware scans of the Goosfest website.
  • Regular Backups: The Websmiths conducts regular site file and database backups, in addition to backups provided by our host (“WordPress”).
  • Controlled Access: Only approved Goosfest committee members (“Shop Managers”) to view and process personal data.
  • Internal Security: Committee members and helpers accessing personal information on their computers are required to have appropriate online security protection.

If you request to have all your personal details removed, The Websmiths will remove them from current and backup data within approximately one month of your direct request to either box.office@goosfest.com or info@goosfest.com.

8. Cookies

Our website uses cookies to enhance your browsing experience, serve personalized content, and analyse our traffic. A pop-up screen titled “We Value Your Privacy” appears when you first visit our site, allowing you to customise your cookie preferences. Clicking “Customise” displays various cookie categories and allows you to manage them.

Goosfest and The Websmiths do not analyse individual cookies.

When moving from the Goosfest website to a payment provider, different cookies from each site are involved; the Goosfest website’s cookies are dropped, but the payment provider’s cookies are used to secure your session, track your payment process, and ensure the payment site functions correctly. You have control over cookies via browser settings, but disabling necessary cookies can prevent a successful transaction, so it’s crucial for payment providers to rely on essential cookies that don’t require user consent for functionality. In general payment providers use cookies that are strictly necessary for the service to function, which typically don’t require user consent under regulations like the UK’s Privacy and Electronic Communications Regulations, but we recommend that you read the payment provider’s cookies and/or privacy policy to fully understand what cookies are being used and how to customise these cookies.

9. Your Rights

Under data protection law, you have the right to:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request that we correct any inaccurate or incomplete personal information we hold about you.
  • Erasure (Right to be Forgotten): Request that we delete your personal information.
  • Restriction of Processing: Request that we limit the way we use your personal information.
  • Object to Processing: Object to our use of your personal information where we are relying on a legitimate interest.
  • Data Portability: Request that we provide your personal information in a structured, commonly used, and machine-readable format.
  • Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at info@goosfest.com. We aim to respond to all requests within one month.

10. Data Breaches

In the event of a personal data breach, an Executive Officer of Goosfest must report it to the ICO if the breach is likely to result in a risk to individuals’ rights and freedoms.

A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data. This includes breaches that result from both accidental and deliberate causes.

If a third-party supplier (Data Processor) such as our bank or The Websmiths suffers a data breach, they must inform Goosfest without undue delay as soon as they become aware.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data protection practices, please contact us:
Email: info@goosfest.com

Postal Address: Goosfest, 14 Brooklands Drive, Goostrey, Cheshire, CW4 8JB

12. Changes to our privacy policy:

We keep our privacy policy under regular review and we will place any updates on this web page.

Google Safe Browsing
Secure Payments by Stripe