Last updated: 12.01.2023
We’re in a new digital era with a much-needed focus on personal data. We want to be fully transparent about what we do with the data we have on you and where we get it from. Below, you can see some of the cases in point.
For the volunteer personal data policy, please look here.
Data controller
It is Roskilde Festival Charity Foundation, VAT no. 26465745, and Roskilde Festival Charity Society, VAT no. 39122715, located at the address Rabalderstræde 7, 4., 4000 Roskilde, Denmark (hereinafter Roskilde Festival Group) that is the data controller for the collection and processing of personal data described in this policy.
Inquiries can be directed to gdpr@roskilde-festival.dk or +45 46366613.
What personal information do we process and why?
We process your personal data on basis of EU Regulation 2016/679 of 27 April 2016 on the protection of natural persons in connection with the processing of personal data and on the free exchange of such data and in accordance with the Danish Data Protection Act no. 502 of 25 May 2018.
Our processing of your personal data is based on your consent given to us in connection with the creation of an account, acceptance of direct marketing or acceptance of cookies, cf. the data protection regulation art. 6 (1) a.
We also process your information when it is necessary for us to fulfill our obligations to you in relation to the provision of services (Roskilde Festival) and goods that you would like, cf. the data protection regulation art. 6 (1) b.
When you buy goods and services from us, we will finally be obliged to save the purchase information according to the Danish Act on Bookkeeping.
Below, we describe in detailwhen and why we process your personal data and in which specific contexts.
Account
Website and wi-fi
App
Ticket sale and shopping at Roskilde Festival
E-mail, text messages and push notifications
Images, video and audio recordings
Social media and third party-plugins
Video surveillance at the festival site
Marketing
If you no longer wish to receive our e-mails, text messages or push notifications, you can unsubscribe at any time.
Recipients
In some cases, we pass on or transfer your personal information to data processors (e.g. app providers) so that they can process our data about you on our behalf in connection with our delivery of services and goods to you. The data processors must not use the information they receive about you through us for anything and must not pass it on to anyone.
Third country
As a rule, Roskilde Festival only processes your data within the EU/EEA. If our use of an IT supplier may involve the transfer of information to third countries, we will also make sure that we have appropriate security measures in place, and we will ensure that such transfers are based on standard contract clauses approved by the European Commission, or other apporpriate safeguards in accordance with Chapter V of the General Data Protection Regulation.
The right to withdraw your consent
You can withdraw your consent to our processing of your personal data at any time. You can do this under the individual applications and functionalities on our website or you can do it by contacting us at gdpr@roskilde-festival.dk
If you choose to withdraw your consent, it does not affect the legality of our processing of your personal data on the basis of your previous consent. Therefore, if you withdraw your consent, it will only take effect from this time.
Deletion of information
We only keep your information for as long as necessary. The specific amount of time will always depend on the individual situation. In many cases, however, the storage of your information is based on your consent, and if you revoke this, we will of course delete your information immediately.
Your rights
Under the Data Protection Regulation, you have a number of rights in relation to our processing of information about you.
If you want to make use of your rights, please contact us at gdpr@roskilde-festival.dk.
Right to access information (right of access)
You have the right to obtain insight into the information we process about you as well as a range of information.
Right to rectification (correction)
You have the right to have incorrect information about yourself corrected.
Right to erasure
In special cases, you have the right to have information about you deleted before the time of our general deletion occurs.
Right to restrict processing
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may in the future only process the information – g apart from storage -– with your consent, or for the purpose of establishing, enforcing or defending legal claims, or to protect a person or important public interest.
Right to object
You have the right to r object to our processing of your information if you are of the opinion that we do not have a legitimate interest in processing your information that exceeds your interests in the information not being processed.
You can read more about your rights in the Danish Data Protection Agency's guide on the rights of data subjects, which you can find at www.datatilsynet.dk.
Complaint to the Danish Data Protection Agency
You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. Please find the Danish Data Protection Agency's contact information at www.datatilsynet.dk. Please also note, that the Danish Data Protection Authority will require that you make contact to us first before submitting a complaint with the Danish Data Protection Authority. You can always contact us at gdpr@roskilde-festival.dk.