Privacy Policy

Greyfriars Edinburgh Art Fair
www.greyfriarsartfair.com

Last updated: 15th November, 2025.

1. Introduction

This Privacy Policy explains how Greyfriars Edinburgh Art Fair (“we”, “our”, or “us”) collects, uses, and protects personal information when you visit our website or interact with our events and services. We are committed to safeguarding your privacy and complying with all relevant data-protection laws, including the UK General Data Protection Regulation (UK-GDPR).

By using our website, you agree to the terms of this Privacy Policy.

2. Information We Collect

We may collect the following types of information:

A. Information You Provide Directly

  • Contact details (name, email address, phone number).

  • Registration information if you sign up for newsletters, events, or ticketing.

  • Payment information (processed securely by third-party payment providers; we do not store full card details).

  • Submissions (artist applications, exhibitor enquiries, or contact form messages).

B. Information Collected Automatically

  • Device and browsing data (IP address, browser type, operating system).

  • Usage data (pages viewed, clicks, referring website).

  • Cookies and tracking technologies (see Section 7).

C. Third-Party Data

We may receive information from:

  • Ticketing platforms

  • Email marketing services

  • Social media services (if you interact with our accounts)

3. How We Use Your Information

We use personal data for the following purposes:

  • To operate, maintain, and improve our website

  • To manage event registrations, artist applications, and exhibitor communications

  • To send newsletters, marketing updates, and important event information

  • To process payments and ticket purchases

  • To respond to enquiries and provide customer support

  • To analyse website performance and user behaviour

  • To comply with legal requirements

We never sell your personal information.

4. Legal Basis for Processing

We process personal data under the following UK-GDPR legal bases:

  • Consent (newsletter sign-ups, marketing communications)

  • Contract (processing registrations, purchases, or exhibitor agreements)

  • Legitimate interests (site analytics, event improvement)

  • Legal obligation (record-keeping, taxation)

5. How We Share Information

We may share information with trusted third parties, including:

  • Payment processors (e.g., Stripe, PayPal)

  • Email and newsletter platforms

  • Event management or ticketing systems

  • Website hosting and analytics providers

All service providers are required to protect your information and may not use it for their own purposes.

We do not share your information with advertisers or unrelated third parties.

6. Data Retention

We retain personal data only as long as necessary for the purposes outlined above or to meet legal obligations.

  • Contact form queries: up to 12 months

  • Newsletter data: until you unsubscribe

  • Payment records: up to 6 years (legal requirement)

7. Cookies and Tracking Technologies

Our website uses cookies to improve user experience and analyse web traffic. Cookies may include:

  • Necessary cookies (site functionality)

  • Performance cookies (analytics)

  • Preference cookies

  • Marketing/third-party cookies (if applicable)

You can manage or disable cookies through your browser settings.

8. Your Rights

Under UK-GDPR, you have the right to:

  • Access your personal data

  • Request corrections

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to certain uses

  • Withdraw consent at any time

  • Request data portability

To exercise your rights, contact us at the email below.

9. Data Security

We use appropriate technical and organisational measures to protect personal information, including encryption, secure servers, and access controls. While we strive to protect your data, no system is completely secure.

10. International Data Transfers

If data is transferred outside the UK (e.g., if our service providers are international), we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent protections.

11. Children’s Privacy

Our website and events are not intended for individuals under 16. We do not knowingly collect children’s data. If you believe we have done so, contact us for removal.

12. Links to External Websites

Our website may contain links to third-party sites. We are not responsible for their privacy practices and encourage you to review their policies.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on this page with a revised “Last updated” date.

14. Contact Us

For questions or concerns about this Privacy Policy or your personal data, please contact:

Greyfriars Edinburgh Art Fair
Email: contact@greyfriarsartfair.com
Address: Paseo de Gracia 95, 5-1; 08008 Barcelona

Black and white illustration of a pineapple with ornate leaves and decorative elements.