Privacy Policy

Here at Shakespeare North Playhouse we are committed to being transparent about the information we hold on our audiences and ensuring all users’ privacy is protected.

This policy explains how we collect your personal data, what we do with it and how we keep it securely.  It also provides our contact details, should you want to get in touch with us.

We use personal information to develop a better understanding of our audiences and in turn to provide you with relevant information about the work that we do if you opt-in to hear more from us. As a charity, it also helps us to engage with potential donors and supporters.

privacy policy

Shakespeare North Playhouse is a trading name of Shakespeare North Trust, a company limited by guarantee. Registered in England and Wales No: 05923469. Charity No: 1120641

For the purpose of the General Data Protection Regulation (the “Regulation”) the data controller is Shakespeare North Trust.

Our nominated representative for the purpose of the Regulation is our CEO, supported by a Data Protection Committee (DPC) and reporting to legal name of Shakespeare North Playhouse’ s Board of Trustees annually.

When you purchase tickets, register on our website, make a donation or ask to receive information from us, we may record the following personal data in our database:

  • Your name
  • Postal address
  • Telephone number(s) so we can contact you if there are any changes to the event
  • Email address so we can contact you if there are any changes to the event, send you information about the event, send marketing information about other events if you have opted in to do so and send a confirmation email for purchases
  • Payment card details (we will not hold payment information for any longer than it takes to process your transaction)

If your details change, it is really helpful if you can let us know so our records are as up to date as possible.

We may request other information about you in specific circumstances to help with your booking and so we can offer the best service when you:

  • Purchase tickets
  • Purchase gift vouchers
  • Book to attend workshops, we may ask for allergy information or medical information if it is relevant to help protect you or your young person
  • Join our Access Requirement Register
  • If you tell us that you have specific seating requests
  • Donate to any of our fundraising projects
  • Join our membership scheme
  • Give us feedback about an event or performance or when we collect feedback via a survey, questionnaire or focus groups

On all occasions we will only request and record information from you that we believe does not constitute an invasion of your privacy.

For security reasons we gather CCTV footage, this is kept securely and will only be shared with the Police Service if it is requested. We may occasionally gather photography and video footage at performances and events; we will notify customers on these occasions via notices in our public spaces.

We collect data when you sign up to our email newsletter or request to be added to any of our mailing lists. We give you the choice to give consent and opt-in to receive emails or postal mail for both Marketing and Fundraising purposes.

We use online tracking and analysis services, for example Google Analytics, to find out how our website is being used by our customers, which marketing activities are working best, and how we can improve customer experience.

In the event of a local outbreak of COVID-19 your data may be used to assist NHS Test and Trace as needed. This could help contain clusters or outbreaks.

The accuracy of the information provided will be the responsibility of the individual who provides it. We will not verify any visitor’s identity for NHS Test and Trace purposes.

If you do not want any details you have supplied to be used for Test and Trace purposes, please can you inform us as soon as possible and, at the latest, at the time of your visit. Please be aware, however, that refusal to agree to your details being used for Test and Trace purposes may result in you being denied access to our building.

Data protection law recognises that some categories of personal information are more sensitive, such as health information, race, religious beliefs and political opinions. We do not usually collect this type of information about our customers unless there is a clear reason for doing so. For example, we may collect health information about participants in our activity programme so we can provide relevant support during their delivery. We might also collect sensitive data in order to provide information required by our funders which would be provided as anonymised statistics.

The information we collect when you buy tickets means we can find your tickets, notify you of any changes to event dates or times and see what types of events you are interested in.

We use the personal data you provide us with to process your ticket bookings, administer donations and inform you of events, services, products and information that you may find useful.

If you opt in to receive marketing communications from us, you will receive information such as newsletters, emails about forthcoming shows or special offers for events.

If you have opted in to do so, we may contact you about future fundraising projects that we think are relevant to you, and how you can make a difference to our organisation.

When contacting you we may also include information or offers that we deem appropriate from organisations we have a partnership with, our sponsors or information about items that may assist you during your visit such as travel or food and drink locally available.

Occasionally we may ask if you want to opt in to receive information from a visiting company, in which case we may pass your information on to them if they request it.

We may use your data for internal research, benchmarking, monitoring, and analysis including interactions with both the venue and its website.

If we run an event in partnership with another organisation, for example KMBC, it may be necessary for us to share your details with them in order for us to run the event effectively.

Personal data collected when you purchase tickets or sign up to receive communications from us is securely stored in customer relationship management system (CRM).

We may use your data to inform our online advertising, including Facebook, and other social media channels. Data used in this way is for research purposes only and is encrypted and will not be shared with any third party.

On the rare occasions we need to, we will only ever share your data if we have your explicit and informed consent.

We may share anonymised information with other organisations so that they can complete monitoring and analysis however we will ensure that you cannot be identified in any way through the data they receive.

We do not sell personal details to third parties for any purpose.

We will never share your personal data without your consent.

We will only share your data for marketing purposes if you have given us consent for us to do so.

We will never sell or rent your information to third parties for marketing purposes and we will never store your credit or debit card information.

When you give us your data we process it through our own customer relationship management system (CRM). This holds all of the data we collect about you on a single record including your contact details, ticket purchase history, memberships and donations. Data held in our CRM system is kept securely and access to the system is restricted to named individuals who need access to the data to do their job, all actions are audited throughout the system.

Some data may be transferred and stored outside of the European Economic Area (EEA) as we work with suppliers based outside of the EEA. We take all steps necessary to ensure that your data is kept securely and that the companies we work with are governed by the EU-US Privacy Shield.

Despite all our precautions, no data transmission over the internet is 100% secure. So, we cannot guarantee the security of any information which you disclose to us and so wish to draw your attention to the fact that you do so at your own risk.

Under the General Data Protection Regulation, we must establish a legal basis for processing your personal data and communicate this to you. All data processed under the terms of this policy is classified as non-sensitive personal data, as such we typically rely on three legal basis for processing your personal data, which vary depending on what we’re using it for. These are:

  1. To perform or take steps to enter into a contract
  2. Your consent
  3. Legitimate interests pursued by the University (except where such interests are overridden by your interests, rights or freedoms).

We will only retain your personal data for as long as is reasonably necessary to fulfil the purposes set out in this privacy policy, including for the purposes of satisfying any legal, accounting, or reporting requirements. We will not keep more information than we need. The retention period will vary according to the purpose, for example if purchasing a ticket only, we will typically keep your data for up to six years from the date of your last transaction whereas if you have pledged a legacy to us, we will hold your details until notified by your executors. Our records retention schedule is available online.

If you ask us to stop sending direct marketing communications to you, we will keep the minimum amount of information (e.g. name, address or email address) to ensure we adhere with such requests.

There are other circumstances where we may keep your data:

  • We must keep it to comply with applicable laws or evidence compliance with such applicable laws
  • There is an outstanding issue, claim or dispute requiring us to keep such information until the issue, claim, or dispute is resolved
  •  The information must be kept for our legitimate business interests, such as fraud prevention and enhancing users’ safety and security.

You can access and change the personal data and contact preferences we hold for you at any time by logging into your online account at

LINK TO ‘MY ACCOUNT’, selecting ‘Manage my Account’ and going to the ‘My preferences’ tab. You can also contact us on 0300 303 4204 [email protected] or writing to us at Shakespeare North Playhouse, Prospero Place, Prescot L34 3AB.

You can also request that we stop contacting you or remove your data altogether using the above methods.

Please refer to our Cookie Policy for more information.

You can request a copy of the information we hold about you, a Subject Access Request (SAR) at any time.

Requests should be made by post to:

Data Protection Team

Shakespeare North Playhouse

Prospero Place

Prescot

L34 3AB

We may change or update this Privacy Policy from time to time. Any significant changes will be communicated to you through our website or by contacting you directly by email.

Our Data Controller is:

Shakespeare North Trust

Shakespeare North Playhouse

Prospero Place

Prescot

L34 3AB

You can contact the data protection officer at the above address

The General Data Protection Regulation provides for you to have the following rights regarding your data:

  • A right to request a copy of your information
  • A right to request rectification of inaccurate personal data
  • A right to request erasure of your data known as ‘the right to be forgotten’
  • A right, in certain circumstances, to request restriction of processing
  • A right, in certain circumstances, to request portability of your data to another provider
  • A right to object to processing of data in certain circumstances
  • A right regarding automated decision making including profiling

If you are unhappy with a decision regarding the handling of your data you have the right to complain to the Information Commissioners Office at Wycliffe House Water Lane Wilmslow, Cheshire SK95AF and also see the Information Commissioners website at https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/

If required we may need to disclose your details to the police service, regulatory bodies or legal advisors.

For more information about access to your personal information visit the ICO website:

https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/personal-information-what-is-it/