Privacy Policy — Cave & Wreck Night

Last updated: 06 December 2025

Website: https://caveandwrecknight.com

Organizer: Cave & Wreck Night (The Netherlands)

1. Introduction

This Privacy Statement explains how we collect, use, store, and protect personal data when you visit our website or register for the Cave & Wreck Night event. We comply with the General Data Protection Regulation (GDPR) and Dutch privacy legislation (AVG). By using this website or registering for the event, you agree to the terms of this Privacy Statement.

2. Personal Data We Collect

We only process personal data that is necessary for organizing the event and operating the website.

2.1 Data you provide during event registration

When you register for the event, we collect the following information:

  • Full name
  • Email address
  • Any information you voluntarily provide in the registration form

2.2 Automatic creation of a WordPress user account

When you register, a WordPress user account is automatically created for you.

For this purpose, we collect and store:

  • Username (usually based on your email address)
  • Email address
  • Account creation date
  • WordPress user ID
  • Login history (timestamps)

You will receive an automated email to create or set your password.

2.3 Technical and anonymous usage data

Our website uses privacy-friendly, cookieless analytics through WP Statistics.

This may include:

  • Pages visited
  • Device and browser type
  • Referring websites
  • Country-level location
  • Date and time of visit

This data does not identify you and does not use cookies.

2.4 Communication data

If you contact us by email, we store the information you provide in order to respond to your message.

3. Purposes of Processing

We process personal data for the following purposes:

3.1 Event registration and communication

  • Creating and managing your event booking
  • Communicating important information about the event
  • Managing attendance and logistics

Legal basis: Article 6(1)(b) GDPR — performance of a contract (your registration).

3.2 Creating and maintaining user accounts

User accounts are required for managing bookings and accessing event-related information.

Legal basis: Article 6(1)(b) GDPR — performance of a contract.

3.3 Website security and functionality

WordPress may use essential cookies required for:

  • Logging in
  • User authentication
  • Site security
  • Protection against fraudulent activity

These cookies do not require consent under the GDPR.

Legal basis: Article 6(1)(f) GDPR — legitimate interest.

3.4 Anonymous website analytics

We use cookieless analytics to understand site usage and improve website performance.

Legal basis: Article 6(1)(f) GDPR — legitimate interest.

4. How We Protect Your Data

We take appropriate technical and organizational measures to secure personal data, including:

  • Encrypted website connection (HTTPS)
  • Secure server configuration
  • Restricted access to booking and account data
  • Daily backups
  • Brute-force protection for logins

Only authorized event organizers have access to personal data.

5. Data Retention

We retain personal data only as long as necessary for the purposes described in this Statement.

  • Event registration data: deleted within 90 days after the event.
  • WordPress user accounts: removed within 90 days after the event, unless you request earlier deletion.
  • Email correspondence: retained according to standard mail retention practices.
  • Anonymous analytics data: stored without identifiable information.

You may request deletion of your account and booking at any time.

6. Sharing of Personal Data

We do not sell or disclose personal data to third parties, except as necessary to operate the website and event.

We may share data with:

  • Our website hosting provider (for site operation)
  • Our email service provider (to send booking confirmations and account emails)

All parties act under data processing agreements and comply with GDPR requirements.

Data is stored and processed within the European Economic Area (EEA).

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access (receive a copy of your data)
  • Right to rectification (correct inaccurate information)
  • Right to erasure (request deletion of your data and account)
  • Right to restrict processing
  • Right to object to processing based on legitimate interests
  • Right to data portability

To exercise these rights, please contact us using the information below.

We may ask for proof of identity to protect your data.

8. Cookies

This website uses:

  • Essential cookies required for login sessions and site security
  • No tracking cookies
  • No advertising cookies
  • No Google Analytics or third-party tracking technologies

Because only essential cookies are used, no cookie banner is required under the GDPR.

9. Contact Information

For questions about this Privacy Statement or to exercise your rights, please contact:

Cave & Wreck Night

Email: info@caveandwrecknight.com

The Netherlands

10. Updates to This Privacy Statement

We may update this Privacy Statement to reflect changes in our practices or legal requirements. Updates will be posted on this page with a new “Last updated” date.