NYCGB is committed to protecting your data and upholding your privacy. This information outlines what we information we collect and how we store and process it. For the purposes of the Data Protection Act 1998, the data controller is NYCGB at our registered office address.


Information we collect.

We collect and process the following data:

  • Information that you provide us in order to register membership of or book an audition with NYCGB, buy a concert ticket, or sign up to an event, whether that is done online, by phone, email or post, which we need in order to effectively provide our products and services to you. This information is accessible to you via our secure website, and can be altered and updated by you using the login details supplied to you when you first register. You are required to keep your login details confidential.
  • Information that you provide us with in order to sign up to receive information from us about our activities, via the ‘Sign Up’ page on our website.
  • Records of communication, whether in electronic or hard copy format, which may include general correspondence, purchase history and responses to any surveys or questions we ask you.
  • Credit or debit card details. Whenever you make a one-off purchase from our website, including purchases from our shop and one-off donations and fundraising activity, your transaction is processed by Stripe. Our staff can access the transaction information, for example to provide you with a refund, but do not have access to your full credit card details, which are held securely by Stripe. You can review Stripe’s privacy policy here.
  • Bank account details. Whenever you make a donation to us by Direct Debit via our website, your transaction is processed by GoCardless. Our staff can access the transaction, for example to cancel your Direct Debit, but do not have access to your full bank account details, which are held securely by GoCardless. You can review GoCardless’s privacy policy here.

What we do with it

  • Conduct and supply the services for which you have registered.
  • Conduct and supply any additional products and services that you request.
  • Let you know about other NYCGB products, events and services in which we think you may be interested, unless you have asked us not to.
  • Let you know about any changes to NYCGB, our products, events and services.
  • We may engage third party tools or providers*:
  • to deliver regular e-news updates to subscribers on topics in which they have declared a specific interest via the relevant opt-in on the ‘Sign Up’ page of our website. We use the Mailchimp platform to deliver these updates, and to gather statistics around e-news opening and engagement using industry standard technologies to help us monitor and improve our e-newsletter. For more information, please see the privacy policy of our chosen provider, Mailchimp, here.
  • to conduct surveys, to gather information from you that helps us to provide better information to you, or that we need in order to fulfil our obligations to you as a member. For more information, please see the privacy policy of our chosen provider, Survey Monkey, here.
  • to assist us with IT requirements. We are vigorous in our choice of supplier, and only work with those that themselves take data protection seriously. For more information, please see the privacy policy of our chosen provider, Transcend IT, here.

Sometimes, the information that we send to you may contain links to other websites. Please note that these websites will have their own privacy policies and you should review these before supplying any data.

*Any such providers are acting on our behalf, but we retain full responsibility for your data, which will only be used according to our instructions. 

What we don’t do

  • Use your data for anything other than the purpose for which it was supplied to us, unless the new purpose is similar and fair.
  • Sell or pass on your data, other than as described above, to any other companies for marketing purposes. However, we reserve the right to do so in the future, so if you’d prefer that we didn’t do this, please let us know. If you do not let us know at the time of registration, you can later request that we don’t pass on your data to any other companies for marketing purposes by contacting us.

Exceptions

The only exceptions might be:

  • If NYCGB were to be acquired by a third party, who would then be responsible for the information.
  • If we were legally obliged to do so, for example by the police.
  • If it was necessary to do so in order to ensure compliance with any financial agreement into which you have entered with NYCGB.
  • If it was necessary to protect our staff, members or other persons.

How We Store It

  • Securely in a manner which complies with the Data Protection Act 1998.
  • Occasionally, when we use third party tools such as those mentioned above, your data may be collected and stored outside the EU, which, by submitting your data, you agree to. We will ensure that any third-party tools we use comply with the EU-US Privacy Shield Framework, which ensures EU-level data protection.
  • No system is 100% secure. However, we take every care to ensure the security of your data with robust procedures, up to date technology and software, and staff training to prevent security breaches.

Website Visitors: Cookies

When you use our website, our ISP may collect and store information about you, such as your IP address, which internet browser you’re using, geographical location and how you use our website. This information is not linked to any personal details and cannot identify you. Our website does this using cookies, which remember your preferences and help us to personalize our website for you and the browser that you’re using. If you would prefer not to accept cookies, you may wish to change the settings in your internet browser so that they are refused. This should not affect your experience of using our website.

Website visitors: Google Analytics

When you use our website, we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns, to find out things such as the number of visitors to various parts of the site. This information is never personally identifiable. If this changes in the future, this policy will be updated and you will be informed of that change, and given the option to opt-out of any such collection.

Access to information

Most of the computerised information that we hold is already accessible to you via the website login you receive when you register with us. However, if you wish to request a copy of this data from us, you may do this by making a ‘subject access request’ in writing. These requests are subject to a £10 charge, and we may ask you to prove your identity. If you find any inaccuracies, you may either correct these yourself via the website login, or ask us to amend them for you.

Changes

If we make any changes to this privacy policy, you will be notified by email, and the updated policy will appear on our website.

Queries

If you have any queries regarding this policy, please feel free to contact us.

Date of this policy

This policy was last updated on Tuesday 9 May 2017.