Who we are
We are the Network Music Festival, an artist-lead organisation and a project of Fossbox CIC. Our current organisers are Shelly Knotts, Charles Hutchins and Holger Ballweg.
Our website address is: http://networkmusicfestival.org.
What personal data we collect and why we collect it
The Live Website
We set a cookie with your time zone. This is used by the clock and the schedule to show events in your local time.
We will retain anonymised data about complaints and code of conduct violations indefinitely, in order to generate statistics and improve our processes.
What Information We Collect
We may collect the following information from artists who submit to our open call:
- contact information including email address
- demographic information such as country, postcode, gender and race or ethnicity
If we collect this information, it will be via an online form hosted by this website. It will only be collated if freely given by you by submitting to our open call.
Why we collect this information
We require contact information to in order to contact you, with regards to your submission to the open call. We collect demographic data for the following reasons:
- We may use your data to generate anonymised statistics to assess how successful we have been at reaching various communities.
- We may use your data to ensure our programming best represents the diversity of artists working in Network Music.
- We may share anonymised statistics about open call response and programming with funding bodies.
Your demographic information will not be shared with any of our reviewers.
We will collect your name, email address and the reviews you submit to us. Where available, in order to ensure diversity in reviewers, we also collect information about gender.
Should you join our email list, we will retain your email address.
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Data Used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Important: The site owner does not have access to any of this information via this feature. For example, a site owner can see that a specific post has 285 views, but he/she cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses and WordPress.com usernames (if available) — are retained by Automattic for 28 days and are used for the sole purpose of powering this feature.
Who we share your data with
Your description of your work will be shared with reviewers. We endeavour to make this a double-blind process, but recognise that some information, especially video and audio links to past performance of your submitted or related works, makes complete anonymity impossible.
Anonymised statistics may be shared with funding bodies.
Curators may use submitted data in programming work.
If you are selected and agree to perform, your provided information including group name, biography and programme note will be published on the website.
Reviewers can opt-in to anonymously sharing their comments and ratings with the artists they review. This is encouraged, but not required. Your anonymised comments and scores will be shared with curators.
How long we retain your data
We will delete your project description and identifiable demographics within one year, but will retain anonymized demographic data indefinitely. We will retain the names and contact information of selected artists indefinitely, to keep an archive of past performances on our website and to contact you about future festivals. For example, we may ask you if you would like to be a reviewer for our next festival.
We will delete your reviews within one year. We will hold your name and email address indefinitely so that we can ask you if you’d like to review again for subsequent festival. In order to ensure diversity of reviewers, we also indefinitely hold information about gender.
We will retain your email address indefinitely.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have submitted to the open call, have reviewed, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. In the case that any of your retained information, including name, contact information or gender has been updated, you can request that we update. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Users on our email address can use automated methods to exist the list at any time.
To make any requests to get copies of, update, or delete held data, please email DPO@networkmusicfestival.org
Where we send your data
Open call data is stored on google, locally on our server, and may also be held by Cryptpad.fr, Google and DropBox. Your descriptions of your work, not including personal or demographic data, will be shared with reviewers over email.
Data about reviewers is stored on Cryptpad.fr and on DropBox.
Our email list is currently run on Google Groups, but we will shortly be moving that in-house to our own email server.
Visitor comments may be checked through an automated spam detection service.
How we protect your data
All data stored on Cyptpad and on this website is password protected. Some data has been copied to Google sheets. This is password protected. Some data is also stored in DropBox, in a non-public folder.
What data breach procedures we have in place
Any reportable personal data breach will be reported to the Information Commissioner’s Office without undue delay.
Where the personal data breach, or suspected personal data breach, is likely to result in impacting the rights and freedoms of the data subject we will notify the affected data subjects, without undue delay, in accordance with the Data Protection Officer’s (or nominated deputy’s) recommendations.
Where the personal data breach, or suspected personal data breach, is likely to result in impacting the rights and freedoms of the data subject we will notify the affected third parties (e.g. joint data controller/ to the controller where we are the processor) without undue delay, in accordance with the DPO’s (or nominated deputy’s) recommendations. We may also need to notify others, e.g. the Police and insurers.
What third parties we receive data from
We may ask for and receive suggestions for future reviewers from existing reviewers.
What automated decision making and/or profiling we do with user data
We may used anonymised demographics data to generate charts and statistics, which we use to evaluate our success at reaching audiences and may share with funding organisations.
Industry regulatory disclosure requirements
|Charles Hutchins, Data Protection Officer
|14 July 2020
|Before Network Music Festival 5