GemFest, operated by GEMFESTIVAL LTD (“we”, “our”, or “us”), is committed to protecting your privacy and handling your personal data with care, transparency and in accordance with applicable data protection laws.

This Privacy Policy outlines how we collect, use, store and protect your personal information when you engage with us online or attend GemFest 2025.

1. Who We Are

Data Controller: GEMFESTIVAL LTD
Company Number: 15191795
Registered Address: 78–78A Monnow Street, Monmouth, Wales, NP25 3EQ
Email: info@pulluprecordings.co.uk
Website: https://gemfest.uk

2. What Data We Collect

We collect and process personal data in the following ways:

a) Information You Provide to Us:

  • Name, email, phone number

  • Date of birth (age verification)

  • Ticket and transaction details

  • Emergency contact details (optional)

  • Postal address (for wristbands or merchandise)

  • Dietary or accessibility information (if disclosed)

  • Social media handles (for competitions/feedback)

  • Artist, contractor, volunteer and trader data (for onboarding)

b) Data We Collect Automatically:

  • IP address, browser type and device ID

  • Operating system and language settings

  • Site behaviour (via cookies and analytics tools)

  • Referral sources (e.g. social media campaigns)

3. How We Use Your Data

We use your personal data to:

  • Process ticket purchases and send confirmations

  • Deliver wristbands and event merchandise

  • Provide customer service and respond to queries

  • Deliver essential event updates (e.g. travel, safety, weather)

  • Fulfil accessibility, dietary or safeguarding requirements

  • Send marketing emails (only if opted in)

  • Manage artist/staff/vendor logistics

  • Comply with legal obligations (e.g. insurance, audit, safety)

  • Protect the safety and security of all attendees

4. Legal Grounds for Processing

We rely on the following lawful bases under the UK GDPR:

  • Contractual necessity – to issue tickets and fulfil event access

  • Consent – for optional marketing communications

  • Legitimate interest – to operate and improve our services securely

  • Legal obligation – for compliance with UK law, licensing, and health & safety

5. Marketing Preferences

We only send marketing communications if you’ve actively opted in.

You can opt out at any time by clicking the “unsubscribe” link in our emails or contacting info@pulluprecordings.co.uk.

We do not sell or share your data with third parties for their own marketing.

6. Who We Share Your Data With

We may share your data with trusted third parties who support event operations. These include:

  • Ticketing partners (e.g. FIXR, Skiddle)

  • Medical and security teams (for emergencies)

  • Vendors, production crew, or artist reps (with consent or contractual basis)

  • Regulators or law enforcement (where required by law)

All providers are required to handle your data securely and only for authorised purposes.

7. How Long We Keep Your Data

We retain data for only as long as necessary for operational or legal purposes:

  • Ticket purchase data – up to 6 years (for tax/audit)

  • Mailing list data – until you unsubscribe

  • Safety or incident reports – up to 3 years

  • Volunteer and contractor forms – as required for event risk management

8. Your Data Rights

Under the UK GDPR, you have the right to:

  • Access your personal data

  • Request correction of inaccurate information

  • Request deletion (where lawful)

  • Object to or restrict data processing

  • Request portability of your data

  • Withdraw consent (for marketing or optional services)

  • Lodge a complaint with the UK Information Commissioner’s Office (ICO)

To exercise any of these rights, email us at info@pulluprecordings.co.uk.

9. Data Security

We protect your information using SSL encryption, secure server environments and access controls. Our team is trained in data protection protocols. All third-party services are assessed for compliance before onboarding.

10. Cookies and Online Tracking

We use cookies and similar technologies to improve site performance, personalise your experience and deliver relevant marketing. Some cookies are essential to the function of our ticketing system.

You can manage or disable cookies in your browser settings. For more details please read our Cookie Policy.

11. External Links

Our website may link to third-party platforms (e.g. social media, ticket agents). We are not responsible for their privacy practices. Please review their privacy policies before submitting any data.

12. Policy Updates

We may update this Privacy Policy from time to time. The most current version will always be available at https://pulluprecordings.co.uk/gemfest/privacy-policy. Substantive changes will be clearly communicated on our site or via email where appropriate.

13. Contact

If you have any questions about how we use your personal information or if you want to exercise any of your rights, contact us at info@pulluprecordings.co.uk

GemFest 2025 – Privacy Policy