We are in a new digital age where it is important to focus on personal data. We want to be open about what we use your data for and where we get it from. Below you can read about various examples of our processing of your data.
If you are looking for our personal data policy for volunteers, you can click here.
Data controller
It is the Roskilde Festival Foundation, CVR no. 26465745, and Roskilde Festival Charity Society, CVR no. 39122715, located at the address Rabalderstræde 7, 4., 4000 Roskilde (hereinafter the Roskilde Festival group), which is responsible for the collection and processing of the personal data described in this policy.
Inquiries can be directed to gdpr@roskilde-festival.dk or +45 46366613.
What personal data do we process and why?
Overall, we process your personal data on the basis of EU Regulation 2016/679 of 27 April 2016 on the protection of natural persons in connection with the processing of personal data and on the free exchange of such data and in accordance with the Danish Data Protection Act No. 502 of 2018. Our processing of your personal data is based on your consent to us, cf. EU regulation art. 6 pieces. 1, letter a, and/or because our processing of your information is necessary for us to fulfill our obligations to you in relation to the provision of services (Roskilde Festival) and goods you would like, cf. EU - regulation art. 6 pieces. 1, letter b.
Our purpose and processing of your personal data
Below we describe in more detail in which specific contexts, when and why we process your personal data.
When you buy tickets, products and services
Purchase of tickets
When you buy a ticket via Ticketmaster, we register your name, telephone number, address, and email address. We use this information to send you practical information, updates and – most importantly – your ticket to Roskilde Festival. You can read more about our purchase guidelines and personal data policy here:
Your wristband is personal and may not be transferred to others, even if it is attached in a way that allows it. The wristband must also not be modified, cut, sewn or otherwise altered. Transferred wristbands or wristbands that have been modified are not valid access tokens.
Purchase of products and services
When you buy a product or service via shop.roskilde-festival.dk, we register your name, e-mail address, telephone number, nationality, and year of birth. This information is required for us to fulfill your order. You can read more about our terms and conditions here.
Our terms if you have an Orange Orbit profile
Conditions
If you create a profile, we will process information about you for use in managing your profile. The information includes your name, address, telephone details, email address and age as well as login details. We will also process information regarding your use of the Roskilde Festival group's digital services and benefits.
In order to create an Orange Orbit profile, you must accept the following conditions.
- Purpose of an Orange Orbit profile
The primary purpose of the Orange Orbit profile is to act as a common login to all the Roskilde Festival group's digital services and to provide access to unique benefits and content.
The detailed conditions for how you can concretely obtain the individual services or benefits may vary but will appear in connection with the individual service and benefit. - Conditions for creating an Orange Orbit profile
Creating a profile is free and you are not committed to making any purchases upon creation.
You must be 15 years of age to create a profile. Your profile is personal and may therefore not be used by other people – not even by people in your household.
All service notifications regarding your profile are made via phone, email, or SMS. You must therefore ensure that your personal data is correct and up-to-date, including your email address and telephone number.
It is your responsibility that information is registered correctly.
When you create a profile, you must enter a personal password associated with your email address. You can also create a profile using a Google account or a Facebook account.
If you forget your password, you have the option of creating a new one ifm. login. - Deleting your profile
You can always have your profile deleted again. Contact info@roskilde-festival.dk if you wish to delete your profile. You will then receive an email confirming that your profile has been deleted.
You can also write to gdpr@roskilde-festival.dk if you want to make use of your right to request deletion of your information.
If you delete your profile, you will no longer be able to log in to your profile, and you will also lose the opportunity to use the Roskilde Festival group's digital services and your other memberships. - Updating your profile information
You can update your profile information yourself at any time if, for example, you change your name or address. You do this by logging in to your profile page. It is your responsibility to provide up-to-date information in order to receive service notifications regarding your profile. - Changes in the Roskilde Festival group's profile conditions
The Roskilde Festival group reserves the right to change the profile conditions.
If significant changes are made, you will receive a notification via email or SMS no later than 14 days before they come into force.
If you do not accept the changes, you will always be able to delete your profile. If you delete your profile, you will no longer be able to log in to your profile, and you will also lose the opportunity to use the Roskilde Festival group's digital services and your other memberships. - Security and deletion of fake or rogue profiles
Your profile is personal and for security reasons you should not share your profile information with others.
The Roskilde Festival group disclaims any responsibility for misuse of your profile, which is due to you having passed on your information yourself.
The Roskilde Festival group reserves the right to delete profiles in case of non-compliance with these conditions or if technical security considerations make it necessary.
We also reserve the right to delete profiles that are deemed not to contain truthful information or that we deem to be frivolous.
Our marketing
Newsletters
If you have signed up for our newsletter, you have agreed to receive emails with news and marketing-related content from the Roskilde Festival Foundation and the Roskilde Festival charity society regarding their activities. You can expect to receive one to three emails per month with news and marketing material. If you no longer wish to receive our emails, you can unsubscribe at any time at the bottom of an email.
News and communication
When you create an Orange Orbit profile, you choose whether you want to receive direct marketing and, if so, how you want to receive it. You will be specifically asked about this.
If you no longer wish to receive our emails, SMS or push notifications, you can unsubscribe at any time.
However, we will still have the opportunity to contact you per email or phone with a service message about your profile – including a functionality message and notification of updates etc.
Personalization
When you are logged in with your profile, you can view personal content on our website and in the app if you give your consent to us using data from your user profile for personalization. Data includes your master data, your purchase history as well as data regarding your behavior (use of our services) when you are logged in. In this way, we can arrange our digital channels so that you get the most out of them. You can withdraw your consent at any time in your profile.
Cookies on websites and in the App
When you visit a website owned by the Roskilde Festival group, or when you use our App, you can give us permission to place a cookie on your device (remember that you can always block them), which means that we can improve user experience and functionality. We also use them to target digital advertising to you. We do this, partly because you have shown interest in our festival, and partly because we want to make sure that you are kept up to date about our program, tickets, donations and much more. Here you can read more about our use of cookies.
Push notifications in App
If you have given us consent for us to send you push notifications, you give us permission to send you a lot of things about Roskilde Festival. We do this because you have shown interest in our small event. You can revoke your consent at any time in the app under the menu item settings or under settings on your smartphone.
Location services in app
When you use our app, a tracking code will inform us about how you use it. The code also shows us where on the festival site you are, if you have agreed to share your location. This enables us to send push notifications to you in a specific area. We use this function e.g. to generate knowledge about the movement of participants and use it in the organization of future festivals, predict participant attendance and communicate security measures based on your location. In addition, we use it to improve your experience. We can suggest experiences near your location or guide you around the various festival areas you visit.
The festival's wi-fi
When you use Roskilde Festival's wi-fi, we register your mobile device's network address and nothing else. It is an open network where all users remain anonymous.
Pictures, video and audio recordings Roskilde Festival is registered with the Press Board and follows the guidelines on good press etiquette. When we take pictures and record video at the festival, you may be included in the filming. If you are the focus of any of them, we will always ask for your permission to use the material in any commercial context. It may also be that you end up in some photos side by side with a lot of other happy festival participants. When this happens, we are unable to obtain permissions from everyone. If you have any questions about this, you can contact us at gdpr@roskilde-festival.dk.
Pictures on our big screens
When you post a picture on Instagram and tag it with Roskilde Festival, you give us permission to use it on our social media channels and show it on our big screens at Orange Stage and Arena. If you don't want to appear on the screens, you can make your posts private, don't tag Roskilde Festival, or let us know at gdpr@roskilde-festival.dk - and we'll make sure you're left out.
Social media and third-party plugins
When you visit a Facebook or Instagram page owned by Roskilde Festival, Facebook (which also owns Instagram) collects data about your visit and your interaction with our pages. We use this function to target digital advertising to you in these channels. We do this because you have shown interest in our festival and because we want to keep you updated about our program, tickets, donations and much more. All users are anonymous to us.
Video surveillance of the festival
For security reasons, there is video surveillance at various places on the festival grounds. The recordings are continuously shared with the Central and West Zealand Police. The recordings are deleted no later than 30 days after the festival.
Recipients
In some cases, we pass on or entrust your personal data to data processors (e.g. app suppliers) so that they can process our data about you on our behalf in connection with our delivery of services and goods to you. The data processors themselves may not use the information they receive about you via us for anything and may not pass it on to anyone.
Third countries
We do not transfer your personal data to recipients outside the EU and EEA.
The right to withdraw your consent
You can withdraw your consent to our processing of your personal data at any time. You can partly do this under the individual applications and functionalities on our website, or you can do it by contacting us at gdpr@roskilde-festival.dk.
If you choose to withdraw your consent, it does not affect the legality of our processing of your personal data based on your previous consent. If you withdraw your consent, it therefore only takes effect from this point.
Your rights
According to the data protection regulation, you have a number of rights in relation to our processing of information about you. You can read more about your rights in the Data Protection Authority's guidance on the rights of data subjects, which you can find at www.datatilsynet.dk.
If you want to make use of your rights, you must contact us at gdpr@roskilde-festival.dk.
- Right to see information (right of access)
You have the right to request insight into the information that we process about you, as well as a range of information. - Right to rectification
You have the right to have incorrect information about yourself corrected. - Right to erasure
In special cases, you have the right to have information about you deleted before the time of our normal general deletion occurs. - Right to restriction of processing
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may in future only process the information – apart from storage – with your consent, or for the purpose of establishing, asserting or defending legal claims or to protect a person or important public interests. - Right to object
In certain cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to have this personal data transferred from one data controller to another without hindrance.
Complaint to the Danish Data Protection Authority
You have the right to lodge a complaint with the Danish Data Protection Authority if you are dissatisfied with the way we process your personal data. You will find the Data Protection Authority's contact information at www.datatilsynet.dk.