Privacy

Introduction

Far and Beyond Events Ltd are committed to respecting and protecting the privacy of anyone using our site and the confidentiality of any information that you provide us with, within this Data Privacy Policy. The purpose of this statement is to set out how we use any personal information that we may obtain from you.

The security and privacy of your data is taken seriously by us, but we need to gather and use information or ‘data’ about you as part of our business and to manage our relationship with you. We are committed to complying with all the Data Privacy legal obligations.

This policy applies to current and former team members, workers, volunteers, interns, apprentices, consultants, suppliers, traders and customers. If you fall into one of these categories, then you are a ‘data subject’ for the purposes of this policy.

We have taken steps to protect the security of your data in accordance with our Data Security Policy and will train staff about their data protection responsibilities as part of the induction process. We will only hold data for as long as necessary for the purposes for which we collected it.

If you have any questions about Far and Beyond’s Data Privacy Policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.

Data Protection Principles

Personal data must be processed in accordance with the ‘Data Protection Principles.’ It must:

• be processed fairly, lawfully and transparently;
• be collected and processed only for specified, explicit and legitimate purposes;
• be adequate, relevant and limited to what is necessary for the purposes for which it is processed;
• be accurate and kept up to date. Any inaccurate data must be deleted or rectified without delay;
• not be kept for longer than is necessary for the purposes for which it is processed; and
• be processed securely.

We are accountable for these principles and ensure we are compliant.

How we Define Personal Information

‘Personal information’ means information which relates to a living person who can be identified from that data (a ‘data subject’) on its own, or when taken together with other information which is likely to come into our possession.

This policy applies to all personal data whether it is stored electronically, on paper or on other materials.

This personal data might be provided to us by you, or someone else (such as a former employer, your doctor, or a credit reference agency), or it could be created by us.

A full list of what personal information we may collect from you is listed further below in this policy.

How we Define Special Categories of Personal Information

‘Special categories of personal information’ are types of personal data consisting of information as to:

• your racial or ethnic origin;
• your political opinions;
• your religious or philosophical beliefs;
• your Trade Union membership;
• your genetic or biometric data;
• your health;
• your sexual orientation; and
• any criminal convictions and offences.

Data Protection Act 1988 (‘The Act’)

We are registered under the Data Protection Act and comply with the Act in all our dealings with your personal data.

What Personal Information we collect

In general, you can visit our website without telling us who you are and without revealing any information about yourself. We will store this data and hold it on our email servers, if relevant or otherwise it will be destroyed.

The personal information we may collect from you is listed below:

• name;
• address;
• email address;
• telephone number;
• gender;
• date of birth, age and/or age range;
• identity documents
• records of achievement
• work and educational history
• photographs and videos
• information about the Services we provide to you (including for example, what we have provided to you, when and where and, if applicable, how much you paid);
• information about transactions you make with other companies in connection with our events (including for example, what they have provided to you, when and where and, if applicable, how much you paid);
• bank account details, payment card information, and information from credit reference agencies;
• location data (for example, if you use Wi-Fi or our mobile applications at a Far and Beyond produced event, we will record the dates and times you attended and which parts of the building or event site you visited);
• your account login details, including your username and password;
• information you provide to us with when you contact us by phone, email, post, or when you communicate with us via social media;
• your vehicle registration number (when you access our site or back of house areas in a vehicle);
• CCTV images when you visit a Far and Beyond produced event;
• information about electronic communications you receive from us, including whether that communication has been opened and if you have clicked on any links within that communication;
• your identity, public profile, follows and likes from a social network such as Facebook and LinkedIn (this may include your employment or education information if you include it in your public profile);
• other personal data which you may disclose to us when you use our Services at any time.
• financial information, such as financial performance.
• details of contact we have had with you in relation to the provision or proposed provision of your services;
• details of services we have received from you;
• correspondence and communications with you;
• information of any complaints or enquiries you make to us, and vice versa;
• information from other sources, such as third parties and/or publicly available resources;
• personal data from third parties, such as professional recruiting firms, your references, prior employers, Far and Beyond employees with whom you have interviewed or who recommended your candidacy, and, to the extent permitted by applicable law, employment background check providers;
• we may collect sensitive personal data about a candidate to the extent permitted to do so by applicable laws (e.g. UK equal opportunity laws) and to support our efforts to create an inclusive and diverse work environment;
• we may also collect sensitive personal data to the extent that a candidate chooses, without being asked, to voluntarily disclose it during the recruiting process;
• under limited circumstances and to the extent permitted by applicable law, we may also collect sensitive personal information relating to health and medical characteristics, such as status of infection, test results, and vaccination status, to address our public health and workplace safety obligations and to protect the company and its employees, clients, and third parties.
• in the few instances where we collect personal information from children, we always seek parental consent and will only ever collect such information for the purposes specified when we collect it.

Where we collect Personal Information

Most of the personal information we process is provided to us directly by you for one of the following reasons:

• from you directly when you apply for a position with us;
• from you directly when you contact us via phone, email, post, our website or social media;
• from you directly when you purchase a ticket to a Far and Beyond produced events;
• from you directly as part of the process of becoming a supplier, trader or contractor;
• from third parties as part of the process of becoming a supplier, trader or contractor (such as credit checks, trade references); and
• information obtained about you in the course of our working relationship.

How we will process your Personal Information

All personal data that we obtain about you will be used in accordance with current data protection law and this Privacy Policy. We, or third party data processors acting on our behalf, will process your personal data as follows:

• process your request/ enquiry via our website;
• provide you with customer support;
• to process your health data to meet your accessibility requirements, where specifically required and explicit consent is provided;
• comply with any legal obligation.
• to provide you with the Services;
• to provide you with information about our Services, to contact you about administrative matters, and to manage and respond to any queries or complaints you make or any correspondence you send us;
• to verify your identity for security purposes;
• to help us to ensure our customers are genuine and to prevent fraud;
• carry out our obligations arising from any agreements entered into between you or our clients and us (which will most usually be for the provision of your services);
• carry out our obligations arising from any agreements entered into between our clients and us (which will most usually be for the provision of our services) where you may be a subcontractor, supplier or customer of our client; and
• seek your thoughts and opinions on the services you provide.
• the process of applying for and becoming a supplier (such as making a decision about procuring goods or services;
• determining the payment terms for your invoices such as payment in advance);
• make payments to you for goods and/or services;
• complaints (such as gathering evidence in relation to any complaints made by or about you; dealing with legal disputes involving you);
• determining your continued supplier status;
• in some circumstances we may anonymise or pseudonymise the personal data so that it can no longer be associated with you, in which case we may use it without further notice to you;
• if you refuse to provide us with certain information when requested, we may not be able to perform the contract we have entered into with you. Alternatively, we may be unable to comply with our legal or regulatory obligations. To determine suitability to provide services at our events.
• where you exercise your rights under data protection law and make requests; and
• to comply with any legal obligation, any lawful request from government or law enforcement officials and as may be required to meet national security or law enforcement requirements or prevent illegal activity.
• to ensure the security of our websites, mobile applications and other technology systems;
• for the good governance of our business, including keeping financial records,
• by using CCTV, to prevent and detect crime and to keep people who visit and work at our events safe and secure;
• to record and investigate health and safety and other incidents which have happened or may have happened at a Far and Beyond produced event;
• by using CCTV, to count the numbers of people who visit our events and to analyse flows of people around the events or safety and commercial purposes (we do this using software which analyses CCTV camera images);
• to manage access to specific areas at an event (for example, we will use lists of people and/or vehicles to allow us to manage access to backstage, VIP or premium viewing areas);
• to help us to return lost property to its rightful owner;
• to process your competition entries and your survey or voting information;
• for the purpose of marketing our Services and goods and services from other companies, including sending marketing communications and, where applicable, processing your registration, creating custom marketing audiences on third-party websites such as Facebook, and profiling and automated decision-making relating to our marketing;
• for market research and statistical analysis and to analyse the use of our Services so that we can improve them.
• to provide you with tailored services (for example, a wheelchair accessible space or a sign language interpreter); and
• to help us investigate an incident which may have taken place at a Far and Beyond produced event.
• for legitimate human resources and business management reasons, including:
• identifying and evaluating candidates for potential employment, as well as for future roles that may become available;
• maintaining records in relation to recruiting and hiring;
• ensuring compliance with legal requirements, including those relating to public health and workplace safety;
• fostering our diversity and inclusion programs and practices;
• evaluating your application to manage our relationship with you, to ensure that we recruit appropriate employees, and to evaluate and maintain the efficacy of our recruiting process more generally;
• performing contractual and pre-contractual measures relating to our potential employment relationship with you; for instance conducting background checks, including, to the extent permitted by applicable law, and if you receive an offer from us, criminal history checks;
• protecting our legal rights to the extent authorised or permitted by law; and
• protecting the workplace and communicating with medical professionals, law enforcement, or other public authorities in the event of an emergency or public health event, such as when the health or safety of you or one or more individuals may be endangered, including, to the extent permitted by applicable law, sharing data about the status of an infection, test results, and vaccination status.

Sharing your Personal Data

Sometimes we might share your personal data with group companies or our business partners, contractors, and agents to carry out our obligations under our contract with you or for legitimate interests.

We require those companies to keep your personal data confidential and secure and to protect it in accordance with the law and our policies. They are only permitted to process your data for the lawful purpose for which it has been shared and in accordance with our instructions.

When processing your personal data, we may transfer it to third parties who are based outside of the European Economic Area. We only do this when adequate protections are in place and as covered by data protection laws or equivalent standard contractual clauses to ensure your data is handled securely and in accordance with the GDPR.

An example of how we may disclose your personal information to third parties:

• In the event we sell or buy any business or assets, in which case we might disclose your personal data to the prospective buyer or seller.
• If we are under a legal duty to disclose or share your personal data in order to comply with or meet any legal obligation.
• Our clients and event partners that organise & provide specific services at an event.
• Our third-party system providers such as HR & Staffing software.

How long do we keep your Personal Information?

We will normally retain your personal data for as long as you use our Services and for up to seven years after your last use of our Services or your last interaction with us (for example, the last time you opened an electronic communication from us or visited one of our websites).

However, in some circumstances we will retain your personal data for a shorter period, including:

• We will retain recorded CCTV footage from our events for up to seven years, unless we are required to retain it for longer (for example, if we are investigating an incident, or have been asked to retain specific CCTV footage for a longer period by government or law enforcement officials).
• We will retain your personal data for longer if we believe we may need them in order to respond to any claims, to protect our rights or the rights of a third party, and we will retain your personal data for longer if we are required to retain them in order to comply with applicable laws.
• We will always retain your personal data in accordance with data protection law and never retain your personal data for longer than is necessary.

Protecting your Personal Information

• We use industry standard technical and organisational security measures to protect your personal data. We keep your personal data secure by implementing policies, procedures and access controls so that only authorised members of our staff or authorised third parties can access your personal data.
• We protect our information technology systems with firewalls, anti-virus and anti-malware software and other information security technology solutions.
• We cannot guarantee the security of your personal data when you transmit it to us. For example, if you email us your personal data, you should be aware that email is not a secure transmission method. As such, you acknowledge and accept that we cannot guarantee the security of your personal data transmitted to us and that any such transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to prevent unauthorised access.
• Where we have given you (or where you have chosen) a password which enables you to access one of our Services, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

Cookies

We do not use cookies on our website to collect your data.

We do, however, use anonymous, cookie-less analytics via Fathom Analytics.

Your Rights

We endeavour to take all reasonable steps to protect your personal information, these steps are implemented to ensure your data is accurate, complete and up-to-date in readiness for its collection & use. However, we cannot guarantee the security of any data that you disclose online and we will not be responsible for any breach of security unless this is due to our negligence or wilful default.

You have the right to ask us not to process your personal data for marketing purposes. We will aim to inform you before collecting your data if we intend to use your data for such purposes or we intend to disclose your information to any third party for such purpose. You can exercise your right to prevent this happening by checking certain boxes on the forms we use to collect your data.

You have the right to see personal data (as defined under the Data Protection Act) that we keep about you upon receipt of a written request. Any request should be sent to [email protected][email protected].

Alternatively, if you wish to log a complaint based on how you perceive Far and Beyond to have mis-used your personal data (as defined by the Data Use and Access Act (DUAA) 2025, please complete our electronic complaint form.

Data Protection Complaint Form

This form will be reviewed by the company's Data Controller; you will then receive a response within 30 days of submission.

General

We reserve the right to change our Privacy Policy from time to time. Any such changes will be posted on this page so that we can keep you informed about how we process your personal data. We recommend that you consult this page frequently so that you are aware of our latest Privacy Policy and can update your preferences if necessary. Your continued use of our Services shall constitute your acceptance of any revised Privacy Policy.

We are committed to reviewing our policy and good practice annually.

Next review date: 17th February 2026