Who we are
Sinfonia Cymru is an orchestra for young professional musicians. We are based in Cardiff, Wales.
Our website address is: www.sinfonia.cymru
Our privacy principles
We take our responsibilities around data protection seriously and any information we collect about you will be used in accordance with the General Data Protection Regulation and the Personal Electronic Communications Regulation. We will only record data that is relevant to our communications with you and will only use personal data to provide the services or information that you have requested from us. Any data that we do hold will be kept securely by us or, on our behalf, by our business partners.
How we use your data – mail, email, phone
If you are an audience member or potential audience member
We will process your data for our legitimate business interests (see below) which may include mailing or emailing you information relating to our performances and events. Our aim is always to make sure that the information we send to you is what you may reasonably expect to receive from us. We don’t sell our lists and we don’t try to market products to you that have no relation to Sinfonia Cymru’s work. If you’ve been to see our performances before, or have asked to receive information from us, we are likely to send you information about future performances, ticket offers and special events. We may also mail you information about how you can support Sinfonia Cymru, for example through one of fundraising or membership schemes – however, we won’t send you this type of information by email unless we have asked for your specific consent to do so.
Sometimes we will use audience data for analytical purposes, but this will be anonymised and the analysis won’t reveal any personal information. For example, we may wish to find out which postcodes our audience comes from for a performance or series of performances.
You have the right to opt out of this processing at any time and we will aim to make clear how to opt out in each communication.
If you are a musician
If you are a current, previous or potential Sinfonia Cymru musician, we use your information to create, maintain and honour the contractual relationship between us. This could include contacting you to offer you work, entering into a formal contract with you for work, and making the necessary arrangements for that work. This may require us to share your data with one or more of our partners – for example, in order for you to be paid and to record that payment. Our partners will treat your information with the same integrity that we do.
On occasions, we may share your business contact information with other similar organisations to Sinfonia Cymru. For example, if another orchestra wants to offer you work but they don’t have your contact details. We will only do this with people who are respected and trusted colleagues in the industry. If you do not wish us to share your information for these purposes, please let us know by emailing firstname.lastname@example.org
In order for us to use ‘Legitimate interests’ as the basis on which we use your data, we must make an assessment as to whether our use of data in this way – to inform interested people about our performances and events – is outweighed by any negative impact this may have on you and others with whom we make contact.
It is our view that telling you about our activities will not cause any significant negative impact given that there is a reasonable expectation on your part that you are interested in our work.
How we use your data – this website
We use Google Analytics software to collect information about how you use sinfonia.cymru. This includes IP addresses. The data is anonymised before being used for analytics processing.
Google Analytics processes anonymised information about:
- the pages you visit on sinfonia.cymru
- how long you spend on each sinfonia.cymru page
- how you got to the site
- what you click on while you’re visiting the site
We do not store your personal information through Google Analytics (for example your name or address).
We will not identify you through analytics information, and we will not combine analytics information with other data sets in a way that would identify who you are.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
When you dismiss our cookie notice we save that information in a Cookie so the notice is not shown to you again on the same computer.
We offer our content bilingually and use a cookie to remember your language preference.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue. For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
Your rights under General Data Protection Regulations
The regulation sets out eight rights which individuals have:
- The right to be informed
We are obliged to provide clear information about data processing, which we are doing through this privacy statement.
- The right of access
You may have access to the personal data that we hold about you and we must comply with such a request within 30 days.
- The right to rectification
If the data we hold about you is inaccurate and you let us know, we would gladly rectify any errors.
- The right to ‘be forgotten’
If you believe there is no compelling reason for us to continue to hold your data, you may request that it is deleted or removed. As long as there is no legal, contractual, or regulatory requirement for us to keep the data, we will honour your request.
- The right to restrict processing
This is similar ‘be forgotten’ above, except that the data is supressed rather than deleted.
- The right to data portability
This allows you obtain and reuse your data for your own purposes across different circumstances. It is unlikely that this will apply to the type of data that we hold.
- The right to object
You may object to any data processing for which your data is used. You may exercise this right as shown below.
- Rights relating to automated decision making and profiling
This provides safeguards for individuals against the risk of a potentially damaging decision is made without human intervention. This is very unlikely to apply in our case.
How to contact us
If you wish to exercise any of your rights, above, or have a query about your data, please contact us in the following ways:
|The Data Manager
127-129 Bute Street
|029 2075 4556