At Wildfires we are committed to protecting your privacy.
This Policy explains when and why we collect personal information about people who visit our website, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
Any questions regarding this Policy and our privacy practices should be sent by email firstname.lastname@example.org..
How we obtain information from you
We obtain information about you when you use our website, when you contact us, register your child or apply to volunteer. Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. We consider Google to be a third party data processor (see section 6.0 below).
What type of information we collect from you
The personal information we collect might include your name, address, email address, IP address, and information regarding what pages are accessed and when. If you make a buy a ticket to our events online your card information is not held by us, it is collected by our third party payment processors and ticket seller (Big Church Tickets), who specialise in the secure online capture and processing of credit/debit card transactions, as explained below. We may collect sensitive data about you where you directly provide us with that information (including but not limited to your religious beliefs, physical and mental health, etc.).
Use of ‘Cookies’
You can switch off cookies in your browser preferences. Turning cookies off may result in a loss of functionality when using our website.
How your information is used
We may use your information to:
- process a child registration
- process a volunteering application
- to carry out our obligations arising from any contracts entered into by you and us where necessary;
- keep records of your relationship with us e.g. questions you have asked or complaints you have made;
- managing any ‘contact us’ messages
- notify you of changes to our services;
- send you communications which you have requested and that may be of interest to you.
- classify supporters by location, for example Scotland, Northern Ireland or Wales;
We will hold your personal information on our systems for as long as is necessary for the relevant activity and as long as is set out in any relevant contract you hold with us. We are legally required to hold some types of information to fulfil our statutory obligations. We review our retention periods for personal information on a regular basis.
Who has access to your information?
We will not sell or rent your information to third parties.
We will not share your information with third parties for marketing purposes.
Third Party Service Providers working on our behalf: We may pass your information to our third party service providers, agents, subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf (for example to process applications and send you mailings). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. Please be reassured that we will not release your information to third parties for them to use for their own direct marketing purposes, unless you have requested us to do so, or we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crimes.
Legal duty: We may need to pass on information if required by law or by a regulatory body. For example, if asked for details by a law enforcement agency.
We use the information we collect about you to process your applications and to help us improve our services.
You have a choice about whether or not you wish to receive information from us. You will only receive direct marketing communications from us about the work we do and our exciting updates and services if you have explicitly given your consent for us to communicate with you in this way. If you would like to change your preferences of what you receive, then you can select your choices by ticking the relevant boxes situated on the form on which we collect your information.
We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post if you have indicated that you do not wish to be contacted. You can change your marketing preferences, or opt-out/withdraw at any time by contacting us by email: email@example.com
If you believe that we are handling your data in a way that does not comply with the relevant data protection legislation, then we suggest you contact us in the first instance and, if this does not resolve your complaint to your satisfaction, you have the right to lodge a complaint with the Information Commissioner’s Office. You can contact them on 03031 231113 or via email at ico.org.uk/global/contact-us/email or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, England.
How you can access, update and erase your information
The accuracy of your information is important to us. We’re working on ways to make it easier for you to review and correct the information that we hold about you. In the meantime, if you change email address, or any of the other information we hold is inaccurate or out of date, please email us at: firstname.lastname@example.org
You have the right to ask for a copy of the information Wildfires Festival hold about you for free. We may charge an appropriate fee for information requests to cover our costs in processing your request when:
- a request is manifestly unfounded or excessive, particularly if it is repetitive;
- to comply with requests for further copies of the same information. This does not mean that we will charge for all subsequent requests.
Security precautions in place to protect your information
When you give us personal information, we take steps to ensure that it’s treated securely. Any sensitive information such as payment information is encrypted and protected with 256 Bit encryption using TLS. When you are on a secure page, a lock icon will appear in your web browser.
Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone and that you change your password frequently.
We will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen. a
Links to other websites
In addition, if you linked to our website from a third party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third party site and recommend that you check the policy of that third party site.
Transferring your information outside of Europe
As part of the services offered to you through this website, the information which you provide to us may be transferred to countries outside the European Union (“EU”). By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy.
These transfers may be made where the Commission has decided that a third country, a territory or one or more specific sectors in the third country, or an international organisation ensures an adequate level of protection.
If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.
Review of this Policy
We keep this Policy under regular review. This Policy was last updated in Oct 2019