Privacy Policy and Cookies Statement

1. Introduction

Full Fat Events Limited is committed to respecting your privacy.

This Privacy Policy explains:

• how we use any personal data we collect about you

• the rights you have over any personal data we hold

• the policies and procedures we have in place to protect your data

This Privacy Policy applies if you:

• visit a Full Fat event

• purchase a ticket or any of our services

• use our products or services (online, phone, mobile apps, or otherwise)

• interact with us via our websites or social media

• supply products or services to us or enter into an agreement with us

If you have any questions about this Privacy Policy or our data practices, contact: jake.morris@fullfatevents.com

2. Categories of Personal Data We Collect

We may collect and use the following types of personal data:

a. Personal details

• Name

• Address

• Email address

• Telephone number

• Gender

• Date of birth / age

b. Device and technical data

• Device type, model, and identifiers

• Operating system and browser

• MAC address and IP address

• Data from Wi-Fi usage at events

c. Usage data

• Pages or sections visited on websites or apps

• Referral sources and timestamps

• Services provided to you (including when, where, and price paid)

d. Transaction data

• Purchases made with third parties connected to our events or venues

e. Account and communication data

• Payment details (bank or card information)

• Location data

• Login details (username and password)

• Communications with us (email, phone, post, social media)

f. Health and incident data

• Health information (including Covid-19 where relevant)

• Information related to incidents at events

g. Monitoring and engagement data

• CCTV footage

• Email engagement (opens and clicks)

• Competition and survey responses

• Social media profile data (where accessible)

h. Other data

• Any additional personal data you choose to share with us

3. Sources of Personal Data

We collect personal data:

• directly from you

• when you use or purchase our services

• from third parties

Third-party sources include:

• Ticket agents (when you purchase tickets)

• Social media platforms (if you register via them)

• Other third parties where you have given consent

We may combine data from multiple sources.

4. How We Use Your Personal Data

We process your personal data in line with data protection laws for the following purposes:

a. Contractual necessity

• Processing orders and payments

• Delivering services

b. Legal obligations

• Responding to legal requests

• Complying with regulations and law enforcement

c. Legitimate interests

• Delivering and improving our services

• Verifying identity and preventing fraud

• Maintaining system security

• Business operations (billing, payments, records)

• CCTV for safety and crime prevention

• Incident management

• Managing access at events

• Customer service and communication

• Lost property handling

• Competitions and surveys

• Marketing, profiling, and audience targeting

• Geo-targeted marketing

• Market research and analytics

d. Consent-based processing

• Sending marketing communications

e. Explicit consent (sensitive data)

• Health-related services (e.g. accessibility requirements)

• Incident investigations

f. Competition winners

• Publishing limited personal data (with consent)

g. Aggregated data

• Creating anonymised data insights for business and partners

5. Sharing Your Personal Data

We may share your data with:

• service providers (data processors) who support our operations

• trusted third parties (where you have given consent)

We may also share data:

• during business sales or acquisitions

• to comply with legal obligations

• to enforce agreements or protect rights

• to prevent fraud or illegal activity

We will never sell or rent your personal data without notifying you and/or obtaining consent.

6. Data Retention

We typically retain your data:

• while you use our services

• for up to 2 years after your last interaction

Exceptions apply where:

• shorter retention is required (e.g. CCTV footage)

• longer retention is necessary for legal or claims purposes

We never retain data longer than necessary.

7. Automated Decision-Making and Profiling

We may use your data to:

• create marketing profiles

• identify similar audiences

• send targeted marketing communications

This may be done automatically.

These activities:

• support our legitimate business interests

• do not produce legal or significant effects on you

8. Your Rights

You can contact us at any time to:

• Access your personal data

• Correct inaccurate data

• Request deletion

• Restrict processing

• Request data portability

• Object to processing (including profiling)

• Opt out of direct marketing

Requests must include your:

• Name

• Email address

• Postal address

We may request proof of identity.
Please allow up to 7 working days for processing.

9. Withdrawing Consent

You can withdraw consent at any time by:

• clicking “unsubscribe” in emails

• adjusting app notification settings

• contacting us directly

10. Data Security

We use industry-standard security measures including:

• access controls

• internal policies and procedures

• firewalls and security software

• encryption when sharing data

However, data transmission (e.g. email) is not fully secure, and any transmission is at your own risk.

11. Cookies

We use cookies and similar technologies.

These are used to:

• enable website functionality

• analyse traffic and user behaviour

• personalise advertising

• enable retargeting

• support social media interaction

Third-party cookies are subject to their own privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time.
Updates will be posted on this page.

Continued use of our services means you accept any changes.

Last updated: 06/03/2025