Privacy Policy

WHO ARE WE?

We are Ministry of Sound the trading name of Ministry of Sound Limited (“we” “us” or “our”). We are a company registered in England and Wales under company number 02736122 and have our registered office at 103 Gaunt Street, London SE1 6DP.

WHAT DOES THIS POLICY COVER?

Ministry of Sound takes your personal data seriously.

This Privacy Policy applies to information Ministry of Sound collects about individuals who interact with our organisation. It explains what personal data we collect and how we use it, to ensure you remain informed and in control of your information.

This Privacy Policy covers both our online and offline data collection activities, including Personal Data that we collect through our various channels such as websites, apps, third party networks and events.

WHAT PERSONAL DATA DO WE COLLECT ABOUT YOU?

  • Contact Data – such as name, telephone number, email address, date of birth/age, billing address, identification documents.
  • Transaction Data – information about the product or service purchased and the quantity or type purchased;
  • Profile Data – including information about your booking/purchase history, the events you have attended, transaction values, the services you are interested in, the musical genres or artists you are interested in, responses to surveys or questionnaires, any feedback or complaints about your booking or any services received, information provided through interactions with us by email/telephone/through our social media accounts, your identity/public profile/follows/likes from on social media and any other information you choose to disclose to us.
  • Enquiry Data – including details of your enquiry, interests and requirements, booking/purchase history and information collected relating to such enquiries and bookings.
  • Attendee Data– such as name, telephone number, email address, date of birth/age, billing address, accessibility information, incident logs and information relating to accidents or issues occurring at our venue.
  • Financial Data – credit card or other payment information (which is only stored for as long as we need to process payment)
  • CCTV Data – footage gathered from CCTV and other similar equipment which is operated at our venue.
  • Technical Data – which includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data – this may include information about how you interact with us and use our website (or the websites of our ticketing and/or other partners), our marketing and our services: which may include which website you arrived from (including whether this was a third party advertiser), your URL clickstreams (the path you take through our site), products/services viewed, whether you made an enquiry or a purchase, page response times, download errors, how long you stay on our pages, what you do on those pages, how often, and other actions.
  • Email Marketing Data – such as your communication preferences and information about how you interact with our email marketing (for example when an email is opened, or when links within it are clicked).
  • Event Content – this may include images captured on film or photography at events.
  • Supplier and Partner Data – information relevant to persons engaged by suppliers and service providers that we work with such as contact details, communications history and contract information.

We also collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data may be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect aggregated data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy notice.

WHERE DOES THIS PERSONAL DATA COME FROM?

The following are the different sources we may collect personal data about you from:

  • Directly from you/indirectly via our third party service providers. This is information you provide to us in the course of your interactions with us or third party service providers that operate on our behalf. This might be where you:
  • contact us by telephone or email via our website or on social media
  • sign up to a mailing list,
  • fill in forms on our website or social media platforms,
  • purchase goods or services
  • give us feedback,
  • enter a competition or prize draw
  • attend one of our events or venues
  • Indirect information. This is information that may be derived from our interactions with you or your use of our services.
  • Third parties. This is information provided to us by third parties in connection with our services as a nightclub and lifestyle brand, this may include:
  • information provided by promotors or event organisers
  • information provided by lead bookers
  • information provided by agents
  • information provided by third party suppliers of services in connection with a booking or an event
  • Automated technologies or interactions. This is information that may be derived from your use of our services, our website or electronic communications, such as Usage Data or Technical Data.
  • Publicly available information. This is information that is in the public domain (including for example social media platforms)

Are you providing personal data about someone else?

If so, you must be authorised by that other person and have a lawful basis for sharing their personal data with us.

Please do not share personal data about another person with us if you are not sure whether you have a legitimate basis to do so.

HOW WE PROCESS YOUR PERSONAL DATA

We will only process your personal data when the law allows us to do so. Most commonly, we will process your personal data in the following circumstances:

  • Performance of a contract: Where we need to perform the contract we are about to enter into or have entered into with you, including steps prior to entering into a contract such as processing an enquiry.
  • Legitimate interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Legal or regulatory obligation: Where we need to comply with a legal or regulatory obligation that we are subject to.
  • Consent: Where you have given us consent to process your personal data for a specific purpose.
  • With limited exceptions (e.g., some of our electronic marketing), we do not rely on consent as a lawful basis for processing your personal data. You have the right to withdraw consent to marketing at any time by contacting us.

HOW AND WHY WE USE YOUR PERSONAL DATA?

We have set out below a description of all the ways we may process your personal data, and which of the lawful bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.

Purpose/Activity: To register you as a customer, respond to enquiries and process and fulfil orders for goods and services.

  • Type of personal data: (a) Contact Data (b) Transaction Data (c) Financial Data
  • Lawful basis of processing: (a) Performance of a contract

Purpose/Activity: To document, manage and administer contracts for events, make and collect payments and make logistical arrangements for events.

  • Type of personal data: (a) Contact Data (b) Enquiry Data (c) Profile Data (d) Attendee Data (e) Financial Data (f) Supplier and Partner Data

Lawful basis of processing: (a) Performance of a contract (b) Legitimate interests (to enable us to operate our events business/to enable us to we run events as part of that business in a professional and competent manner/ (where relevant) to recover debts due to us)

Purpose/Activity: To ensure the safety and security of anyone who attends our events and venues and manage and respond to incidents.

  • Type of personal data: (a) CCTV Data (b) Attendee Data

Lawful basis of processing: (a) Legitimate interests (to ensure safety of persons attending events and investigate issues and problems) (b) Legal or regulatory obligation

Purpose/Activity: To operate, plan and provide services as part events and to operate events.

  • Type of personal data: (a) Contact Data (b) Enquiry Data (c) Profile Data (d) Attendee Data (e) Financial Data (f) Supplier and Partner Data

Lawful basis of processing: (a) Performance of a contract (b) Legitimate interests (to enable us to operate our events business/to enable us to we run events as part of that business in a professional and competent manner)

Purpose/Activity: To manage our relationship with you (including automated messages regarding enquiries, notifying you about changes to our terms or this notice and asking you to provide feedback, leave a review or take a survey).

  • Type of personal data: (a) Contact Data (b) Enquiry Data (c) Profile Data (d) Usage Data (e) Transaction Data

Lawful basis of processing: (a) Performance of a contract (b) Legitimate interests (to help us to keep our records updated and manage our relationship with you/understand how customers use our products/services/to help us improve and develop our products and services)

Purpose/Activity: To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data).

  • Type of personal data: (a) Contact Data (b) Enquiry Data (c) Profile Data (d) Usage Data

Lawful basis of processing: (a) Legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud) (b) Legal or regulatory obligation

Purpose/Activity: To deliver marketing to you, provide relevant marketing through segmentation, make suggestions and recommendations to you about products/services that may be of interest to you and measure or understand or improve the effectiveness of our marketing activities.

  • Type of personal data: (a) Contact Data (b) Profile Data (c) Email Marketing Data (d) Usage Data (e) Technical Data

Lawful basis of processing: (a) Legitimate interests (to understand how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy and improve its effectiveness) (b) Consent (where this is the only basis that can be relied upon)

Purpose/Activity: To use data analytics to improve our website, products/services, marketing, customer relationships and experiences and to measure the effectiveness of our communications and marketing.

  • Type of personal data: (a) Enquiry Data (b) Profile Data (c) Technical Data (d) Usage Data

Lawful basis of processing: Legitimate interests (to define types of customers for our products/services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy).

Purpose/Activity: To enable you to partake in a prize draw, competition or complete a survey.

  • Type of personal data: (a) Contact Data (b) Profile Data (c) Email Marketing Data (d) Usage Data (e) Technical Data

Lawful basis of processing: Legitimate interests (to study how customers use our products/services, to develop them and grow our business).

Purpose/Activity: To promote our services by featuring events and event content (including photography and videos taken out our events) in marketing material.

  • Type of personal data: (a) Contact Data (b) Enquiry Data (c) Event Content

Lawful basis of processing: Legitimate interests (to promote our business activities).

Direct Marketing:

You may receive email marketing communications from us if:

you have opted to receive marketing communications from us; or

you have purchased goods or services from us and you have not opted out of receiving marketing.

If you ask us to stop processing your personal data for marketing purposes (e.g., by following the opt-out links on any electronic marketing sent to you or by otherwise contacting us at [email protected] and we will action your request.

We use technology to help ensure we send you what you want, and stop sending you what you don’t want. When sending direct marketing information may be collected on whether and when you opened our email marketing and which links in our email marketing you clicked on. This is for the purpose of evaluating and improving the effectiveness of our marketing.

Third-Party Marketing

We will get your express consent before we share your personal data with any third party for their own direct email marketing purposes.

Advertising and Analytics

We use tracking technologies to track your behaviour on our website, including those provided by third parties. We may use the information collected to deliver targeted advertisements based on your interests, preferences, and browsing behaviour or to understand the effectiveness of our advertising.

We use online advertising to keep you aware of what we are up to and to help you find our products and services. You may see our banners and advertising when you are on other websites and apps, such as social media. We manage this through a variety of digital marketing networks and ad exchanges. We also use a range of advertising technologies. The banners and ads you see are based on information we hold about you, or your previous interactions with our website or marketing or on our banners or ads you have previously clicked on.

We use analytics and tracking tools to enable us to collect information about your interactions with our website or marketing. If no consent has been given for personalized tracking, a non-personalized and cookie-free analysis will take place.

For more information on our use of advertising technologies and cookies. See our Cookie Statement for more details.

We use third party vendor remarketing services including Google’s ‘Customer Match’, and Facebook’s ‘Custom Audience’ to display ads. This means if you have provided us with your contact details, we may upload these to third party vendors who perform remarketing services on our behalf. This involves us uploading encrypted user data (e.g. names, email addresses, addresses, customer-specific identifiers) to advertising partner platforms which is compared with existing partner customers. This in turn can be used to create target groups that can be used to target ads/campaigns. Once the customer match lists have been created, the encrypted customer data is automatically deleted again. This prevents providers from obtaining new addresses.

CCTV

CCTV cameras will record your image and movements whilst you are on our premises. Body cameras may also be worn by security personnel operating at our premises.

We typically keep CCTV and body camera footage for no longer than 30 days from the date that the footage is recorded unless we identify a specific justification to retain footage for longer (i.e. to investigate an incident that has occurred) in which case we will retain such footage until such time as it is no longer required.

HOW LONG DO WE KEEP YOUR PERSONAL DATA FOR?

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements and for the establishment or defence of legal claims.

To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

WHO DO WE SHARE YOUR PERSONAL DATA WITH?
We may share your personal data with service providers who assist us with administering the provision of our activities and services, this includes:
• Our partner company – TM – Central Services Limited – that provides certain business functions necessary for the operation of our activities and services. We may also combine any personal data about you that we receive from you, from other companies in our group, and from third-parties in order to create marketing profiles.

• Service providers that act on our behalf who assist us or our group companies with administering the provision of our activities and services, such as:

o events management system
o ticketing platforms
o ecommerce provider
o CRM and marketing automation platforms
o IT suppliers and service providers
o ticketing service provider
o card processing or payment services providers
o professional advisers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.
We do not allow our service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
We may also share your personal data with third parties who do not act on our behalf but may be involved in an event or matters relating to our business activities, this includes:
• suppliers engaged to provide services in connection with an event, such as service providers engaged in relation to the delivery of an event
• agents acting for talent or persons engaged in the connection with the provision of our services.
• promotors and event organisers, in connection with the management and logistics relating to an event booking.
• advertising partners may use data collected on our website for remarketing or profiling where you have provided consent for them to do so
We require all such third parties to respect the security of your personal data and to treat it in accordance with the law.
We may also share information with third parties making enquires that are concerned with a) the prevention or detection of crime b) the prosecution or apprehension of offenders c) protecting the vital interests of a person.
We may share third parties to whom we may choose to sell, transfer or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy.
What happens if you do not provide us with the information we request or ask that we stop processing your information?
If you do not provide the personal data necessary, or withdraw your consent for the processing of your personal data, we may not be able to perform the contract we have permit entry onto our premises or provide you with our services.
Do we make automated decisions concerning you?
We will ensure that any automated decision-making and profiling does not produce legal effects concerning you or similarly significantly affects you.
Do we use Cookies to collect personal data on you?
To provide better service to you on our websites, we use cookies to collect your personal data when you browse. See our Cookie Statement for more details.
Do we transfer your data outside the UK?
In some cases the parties who we use to process personal data on our behalf are based outside the United Kingdom (UK) so their processing of your personal data will involve a transfer of data outside the UK.
Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
• We may transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data under UK Law

• Where we use certain service providers, we may use specific contracts or mechanism approved under UK Law which give personal data the same protection it has in the UK. Where we use service providers based in United States of America we require use providers that are subscribe to the principles and rules set out in the UK Extension to the EU-U.S. Data Privacy Framework

If you would like further information on the specific mechanism used by us when transferring your personal data out of the EEA, then please contact us.
What rights do you have in relation to the data we hold on you?
By law, you have a number of rights when it comes to your personal data. These include the following:
Rights What does this mean?

  1. The right of access You have the right to ask us for copies of personal data that we hold about you (commonly known as a “subject access request”).
  2. The right to rectification You are entitled to have your information corrected if it’s inaccurate or incomplete.
  3. The right to erasure You have the right to ask us to erase your personal information in certain circumstances. This is also known as ‘the right to be forgotten’.
  4. The right to restrict processing You have the right to ask us to restrict the processing of your personal information in certain circumstances
  5. The right to data portability You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
  6. The right to object to processing You have the right to object to the processing of your personal information in certain circumstances. You also have the absolute right to object any time to the processing of your personal data for direct marketing purposes
  7. The right to lodge a complaint You have the right to lodge a complaint about the way we handle or process your personal data with your national data protection regulator. The contact details for the UK Information Commissioner’s Office is provided below.
  8. The right to withdraw consent Where we are relying on your consent to anything we do with your personal data, you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal data with your consent up to that point is unlawful). This includes your right to withdraw consent to us using your personal data for marketing purposes.
    Please contact us on [email protected] if you wish to make a request.
    We usually act on requests and provide information free of charge, but may charge a reasonable fee to cover our administrative costs of providing the information for:
    • baseless or excessive/repeated requests, or
    • further copies of the same information.
    Alternatively, we may be entitled to refuse to act on the request.
    Please consider your request responsibly before submitting it. We’ll respond as soon as we can. Generally, this will be within one month from when we receive your request but, if the request is going to take longer to deal with, we’ll come back to you and let you know.
    Changes to this policy
    We may make changes to our privacy policy at any time without prior notice. Any changes we may make to this policy will be posted on this page, please check back to see any updates or changes to this policy.
    How will we contact you?
    We may contact you by phone, email or social media. If you prefer a particular contact means over another please just let us know.
    How can you contact us?
    If you are unhappy with how we’ve handled your information, or have further questions on the processing of your personal data, contact us here: Ministry of Sound, 103 Gaunt Street, London, SE1 6DP or [email protected]
    If you’re not satisfied with our response to any complaint or believe our processing of your information does not comply with data protection law, you can make a complaint to the Information Commissioner’s Office (ICO) using the following details:
    Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
    Telephone number: 0303 123 1113
    Website: www.ico.org.uk

This Privacy Policy was last updated on 7 April 2024.