PERSONAL DATA POLICY

Last updated: 12.01.2023

We’re in a new digital era with a much-needed focus on personal data. We want to be fully transparent about what we do with the data we have on you and where we get it from. Below, you can see some of the cases in point.

For the volunteer personal data policy, please look here.

Data controller
It is Roskilde Festival Charity Foundation, VAT no. 26465745, and Roskilde Festival Charity Society, VAT no. 39122715, located at the address Rabalderstræde 7, 4., 4000 Roskilde, Denmark (hereinafter Roskilde Festival Group) that is the data controller for the collection and processing of personal data described in this policy.

Inquiries can be directed to gdpr@roskilde-festival.dk or +45 46366613.

What personal information do we process and why?
We process your personal data on basis of EU Regulation 2016/679 of 27 April 2016 on the protection of natural persons in connection with the processing of personal data and on the free exchange of such data and in accordance with the Danish Data Protection Act no. 502 of 25 May 2018.

Our processing of your personal data is based on your consent given to us in connection with the creation of an account, acceptance of direct marketing or acceptance of cookies, cf. the data protection regulation art. 6 (1) a.

We also process your information when it is necessary for us to fulfill our obligations to you in relation to the provision of services (Roskilde Festival) and goods that you would like, cf. the data protection regulation art. 6 (1) b.

When you buy goods and services from us, we will finally be obliged to save the purchase information according to the Danish Act on Bookkeeping.

Below, we describe in detailwhen and why we process your personal data and in which specific contexts.

Account

When you create an account, we register your name, e-mail address, telephone number, nationality, year of birth and consent to marketing. You can read more about our profile conditions here.
If you want to receive, change and/or delete your data, contact gdpr@roskilde-festival.dk.

Website and wi-fi

When you visit a website owned by Roskilde Festival, we may with your consent place a cookie on your device (remember, you can always block them), allowing us to enhance the user experience and functionality. We also use them to target you with digital ads. We do this because you've shown an interest in our festival, and to make sure you stay updated on our line-up, tickets, donations and much more. Look here for more info on our use of cookies.
When you use the Wi-Fi at Roskilde Festival, we get to know your mobile device's network address. Other than that, it's an open network and all users remain anonymous.

App

When you use our app, we collect information that informs us about how you use the app. This information includes device type, operating system, app version, and general activity in the app.
If you have agreed to share your location, we collect information about your location. This enables us to send push notifications to you in a specific area. We do this for safety reasons. We can evaluate on audience flows for future festivals, predict audience attendance, and communicate safety precautions based on your location. Another reason is enhancing your experience. We can suggest experiences close to your location or guide you to the festival areas you visit.

Ticket sale and shopping at Roskilde Festival

When you buy a ticket, we get to know your name, phone number, address and e-mail address. We appreciate that info because it tells us something about where in the world our audience is from. Furthermore, we can send you practical information, updates and, most importantly, your ticket to Roskilde Festival.
When you buy a product or service via shop.roskilde-festival.dk, we register your name, e-mail address, telephone number, nationality and year of birth. This information is required in order for us to fulfill your order. You can read more in our terms and conditions here.
When you buy stuff at the festival, be it beer or silly hats, we don't record any personal data. We've heard one critical voice say that we could in fact trace everybody personally based on their purchases. Let's be straight about this: We can't and, most importantly, we won't! At Roskilde you're free. We simply make it possible for you to pay for stuff you'd like to buy, just like shops do.

E-mail, text messages and push notifications

If you have given consent for us to send you e-mails, text messages and/or push notifications, you let us send you stuff about Roskilde Festival Group. We do this because you've shown an interest in our little event. When you contact us at info@roskilde-festival.dk, your e-mails will be saved in our inbox until you get the answers you need. Thereafter, we’ll make sure that our e-mail thread will be deleted within 6 months after the festival.

Images, video and audio recordings

When we shoot photos and video at the festival, you might end up being in the recordings. If you’re the focal point of the content, we will always ask your approval to use the content in any commercial context. You may also be in some photos alongside a lot of other happy festival-goers. When that happens we’re not able to ask for everybody’s approval. If you have any questions, please contact us at gdpr@roskilde-festival.dk.

Social media and third party-plugins

When you post an image on Instagram and tag it with the official Roskilde Festival tag we may show it on our big screens by the Orange and Arena stages. We do a screening of the photos first and we prefer happy faces and cheerful moments. If you prefer to stay off the screen, you can make your posts private, avoid using the official Roskilde Festival tag or just let us know at gdpr@roskilde-festival.dk and we will leave you out.
When you visit one of Roskilde Festival's social media pages (Facebook, Instagram, Youtube and TikTok), the social media collects data about your visit and your interaction with our pages. We use this to target you with digital ads in these channels. We do this because you've shown an interest in our festival, and to make sure you stay updated on our line-up, tickets, donations and much more. All users are anonymous to us.

Video surveillance at the festival site

For security reasons, there is video surveillance in various locations at the festival site. The recordings are shared on an ongoing basis with the Central and West Zealand Police. The recordings will be deleted no later than 30 days after the festival.

Marketing

We want to send you the best and most relevant news we can, which is why we store certain information about you. It is, among other things, name, email address, nationality and year of birth. We use the information to keep you updated about the Roskilde Festival group and inform you about relevant offers and activities.
You choose whether you want to receive the news via email, SMS, push notification or targeted ads on social media (Facebook, Instagram, TikTok and YouTube). This information is not passed on to third parties.
You will receive news about, among other things but not limited to:
- Announcements
- Tickets and camping products
- Volunteering
- Non-profit activities
- Competitions and pre-sales
- Questionnaires
- Roskilde Festival-related events (GRASP, Ungdommens Folkemøde, etc.)
- Relevant offers from our partners

If you no longer wish to receive our e-mails, text messages or push notifications, you can unsubscribe at any time.

Recipients
In some cases, we pass on or transfer your personal information to data processors (e.g. app providers) so that they can process our data about you on our behalf in connection with our delivery of services and goods to you. The data processors must not use the information they receive about you through us for anything and must not pass it on to anyone.

Third country
As a rule, Roskilde Festival only processes your data within the EU/EEA. If our use of an IT supplier may involve the transfer of information to third countries, we will also make sure that we have appropriate security measures in place, and we will ensure that such transfers are based on standard contract clauses approved by the European Commission, or other apporpriate safeguards in accordance with Chapter V of the General Data Protection Regulation.

The right to withdraw your consent
You can withdraw your consent to our processing of your personal data at any time. You can do this under the individual applications and functionalities on our website or you can do it by contacting us at gdpr@roskilde-festival.dk

If you choose to withdraw your consent, it does not affect the legality of our processing of your personal data on the basis of your previous consent. Therefore, if you withdraw your consent, it will only take effect from this time.

Deletion of information
We only keep your information for as long as necessary. The specific amount of time will always depend on the individual situation. In many cases, however, the storage of your information is based on your consent, and if you revoke this, we will of course delete your information immediately.

Your rights
Under the Data Protection Regulation, you have a number of rights in relation to our processing of information about you.

If you want to make use of your rights, please contact us at gdpr@roskilde-festival.dk.

Right to access information (right of access)
You have the right to obtain insight into the information we process about you as well as a range of information.

Right to rectification (correction)
You have the right to have incorrect information about yourself corrected.

Right to erasure
In special cases, you have the right to have information about you deleted before the time of our general deletion occurs.

Right to restrict processing
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may in the future only process the information – g apart from storage -– with your consent, or for the purpose of establishing, enforcing or defending legal claims, or to protect a person or important public interest.

Right to object
You have the right to r object to our processing of your information if you are of the opinion that we do not have a legitimate interest in processing your information that exceeds your interests in the information not being processed.

You can read more about your rights in the Danish Data Protection Agency's guide on the rights of data subjects, which you can find at www.datatilsynet.dk.

Complaint to the Danish Data Protection Agency
You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. Please find the Danish Data Protection Agency's contact information at www.datatilsynet.dk. Please also note, that the Danish Data Protection Authority will require that you make contact to us first before submitting a complaint with the Danish Data Protection Authority. You can always contact us at gdpr@roskilde-festival.dk.

: Yes, I agree to receive mails with news and marketing related content from Roskilde Festival Charity Foundation and Roskilde Festival Charity Society on their activities. You can expect to receive news by mail once or twice a month. If you no longer wish to receive news and marketing mails, you can unsubscribe anytime at the bottom of the mail. Read more about how we take care of your personal data in our personal data policy.

NEWS RESPONSIBILITY

VOLUNTEER ABOUT ROSKILDE FESTIVAL

PRESS NON-PROFIT AND DONATIONS

COLLABORATORS B2B

ROSKILDE FESTIVAL GROUP ROSKILDE FESTIVAL HØJSKOLE ORANGE ORBIT

info@roskilde-festival.dk