PRIVACY & COOKIE POLICY    

1. Introduction

1.1 We are committed to safeguarding the privacy of our website visitors. In this policy we explain how we will treat your personal information.

1.2 This Privacy Policy was last updated on 25 January 2024.

2. How we use your personal data

We may collect, store and use the following kinds of personal information:

(a) information about your computer and about your visits to and use of this website (including your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths);

(b) information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters (including your name and email address);

(c) information that you provide to us when using the services on our website, or that is generated in the course of the use of those services (including the timing, frequency and pattern of service use);

(d) information relating to any purchases you make of our tickets or merchandise or any other transactions that you enter into through our website (including your name, address, telephone number, email address);

(e) any other personal information that you choose to send to us.

3. Providing your personal data to others

3.1 We may disclose your personal data to:

(a) MailChimp in order to send you our email newsletter about No More Nowt artists, events, activities and opportunities.

(b) Google Analytics who may record IP addresses in the course of providing web services to No More Nowt.

(c) Stripe in order to process payments on the No More Nowt online Shop who may keep records of your purchases and personal information, but not card details as these are end-to-end encrypted.

3.2 We may use your personal information to:

(a) administer our website and business;

(b) enable your use of the services available on our website;

3.3 If you specifically agree we may use your personal information to:

(a) send you our email newsletter

(b) deal with enquiries and complaints made by or about you relating to our website;

(c) keep our website secure and prevent fraud;

(d) verify compliance with the terms and conditions governing the use of our website;

(e) Your data may also be available to Google Analytics to enable us and them to carry out analysis and research on demographics, interests and behaviour of our users and supporters to help us gain a better understanding of them to enable us to improve our services.

3.4 If you submit personal information for publication on our website, we use that information in accordance with the licence you grant to us and conduct data processing in a secure and GDPR compliant manner.

3.5 We will not, without your express consent, supply your personal information to any third party

4. Disclosing personal information

4.1 We may disclose your personal information to any of our employees, officers, insurers, professional advisers, agents, suppliers (including specifically the host of our website, or other subcontractors insofar as reasonably necessary for the purposes set out in this policy).

4.2 We may disclose your personal information:

(a) to the extent that we are required to do so by law;

(b) in connection with any ongoing or prospective legal proceedings;

(c) in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);

(d) to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.

4.3  Except as provided in this policy, we will not provide your personal information to third parties.

5. International transfers of your personal data

5.1 Our web host, our e-marketing service Mailchimp, our online shop payment API service Stripe and ticket management service Eventbrite are all compliant to either;

(a) Stripe, Inc. (“Stripe”, “we”, “our” or “us”) complies with the U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework as set forth by the U.S. Department of Commerce (collectively, the “DPF”).*

This Stripe Data Privacy Framework Policy (“DPF Policy”) and the Stripe Privacy Policy (“Privacy Policy”) describes the privacy practices that we implement for Personal Data received from the EEA, UK and Switzerland in reliance on the DPF. Stripe has certified to the Department of Commerce that it adheres to the DPR Principles with respect to such data. This DPF Policy uses terms that are defined in the Privacy Policy. If there is any conflict between the terms in this DPF Policy and the DPF Principles as concerns the Personal Data received under the DPF, the DPF Principles will prevail. To learn more about the DPF program, please visit https://www.dataprivacyframework.gov/

Or;

(b) - Are signed up to the E.U.- U.S Privacy Shield Frameworks. More information on these can be found here: https://www.privacyshield.gov/welcome

5.2 Personal information that you publish on our website or submit for publication on our website may be available, via the internet, around the world. We cannot prevent the use or misuse of such information by others.

5.3 You expressly agree to the transfers of personal information described in this Section 5.

6. Retaining and deleting personal data

6.1 This Section sets out our data retention policies and procedure, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal data.

6.2 Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

6.3 We will retain your personal data as follows:

(a) Names and email addresses for the purpose of sending out e-newsletters or relevant programme activity.

(b) Names, email addresses and locations gathered for events through Eventbrite will be anonymised and retained for a maximum period of three years for impact evaluation purposes.

(c) Names, email addresses and additional information submitted for the purpose of artist applications/submissions for open calls such as the NMN Owtside project.

6.4 Notwithstanding the other provisions of this Section 6, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

6.5 Requests to delete personal data will be subject to any applicable legal and ethical reporting or document filing or retention obligations imposed on us.

7. Security of personal information

7.1 We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.

7.2 We will store all the personal information you provide on our, and where applicable our supplier’s, secure (password- and firewall-protected) servers. 

This may include data storage services provided in the Cloud.

7.3 You acknowledge that the transmission of information over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.

8. Amendments

8.1 We may update this policy from time to time by publishing a new version on our website. When this policy is amended, we will clearly state the date of the amendment.

8.2 You should check this page occasionally to ensure you are happy with any changes to this policy.

8.3 We may notify you of changes to this policy by email.

9. Your rights / access to your information and correction

9.1 You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please email hello@nomorenowt.org 

The provision of such information will be subject:

(a) to a fee (currently fixed at GBP 10)

(b) the supply of appropriate evidence of your identity (for this purpose, we will usually accept a photocopy of your passport certified by a solicitor or bank plus an original copy of a utility bill showing your current address).

9.2 We may withhold personal information that you request to the extent permitted by law.

9.3 You may instruct us at any time not to process your personal information for marketing purposes (our newsletter and other email communications.)

9.4 In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.

9.5 Please let us know if the personal information that we hold about you needs to be corrected or updated.

10. Third party websites

10.1 Our website includes hyperlinks to, and details of, third party websites.

10.2 We have no control over, and are not responsible for, the privacy policies and practices of third parties.

10.3 This privacy policy only governs our website and we are not responsible for the privacy policies that govern third party websites even where we have provided links to them. If you use any link on our website we recommend you read the privacy policy of that website before sharing any personal or financial data.

10.4 We operate a number of social media pages including Facebook, Twitter, Instagram and LinkedIn. Although this policy covers how we will use any data collected from those pages, it does not cover how the providers of social media websites will use your information. Please ensure you read the privacy policy of the social media website before sharing data and make use of the privacy settings and reporting mechanisms to control how your data is used.

11. Cookies

11.1 Google Analytics uses Cookies as part of their product. Information on Google Analytics’ privacy policy is here http://policies.google.com/privacy?hl=en

11.2 This website uses cookies to better the user's experience while visiting the website. Where applicable this website uses a cookie control system allowing the user on their first visit to the website to allow or disallow the use of cookies on their computer / device. This complies with recent legislation requirements for websites to obtain explicit consent from users before leaving behind or reading files such as cookies on a user’s computer / device.

12. Our details

12.1 This website is owned and operated by No More Nowt (and by extension East Durham Trust).

12.2 No More Nowt’s parent organisation East Durham Trust is a registered charity no. 1117642.

12.3 Our principal place of business is No More Nowt, Community House, Yoden Road, Peterlee, SR8 5DP

12.4 You can contact us:

(a) by post, to the postal address given above;

(b) by email – hello@nomorenowt.org 

12.5 Squarespace is the company we use to host our website. Their privacy policy can be read here https://www.squarespace.com/privacy 

12.6 MailChimp is the service we use to send out regular newsletters and e-communications. Their privacy policy can be read here https://mailchimp.com/legal/privacy/

12.7 Stripe is the service we use to process payments through our website shop. Their GB privacy policy can be read here https://stripe.com/gb/privacy 

12.8 Eventbrite is the service we use to sell tickets and manage events with a fixed capacity. Their privacy policy can be read here https://www.eventbrite.co.uk/support/articles/en_US/Troubleshooting/eventbrite-privacy-policy?lg=en_GB

12.9 Google Analytics is the service we use to analyse the traffic to and user behaviour whilst visiting our website. Their privacy policy can be read here http://policies.google.com/privacy?hl=en

12.13 LinkTree is the service we use to link some of our social media profiles to our website or partners websites for events, information and opportunities. Although the personal data they collect is minimal (social media profiles clicking through to the links we publish), we still want to state that this information is collected in accordance with our transparency and good practice around data protection and cookie tracking. Their privacy policy can be read here https://linktr.ee/s/data-processing-addendum/#:~:text=Protecting%20personal%20data,who%20appear%20in%20your%20content). 

13. Complaints

13.1 If you wish to make a complaint about us or the treatment of your data, please contact us in the first instance using the contact details in Section 12 (above) or via the Contact page on our site.