Introduction

In this Privacy Statement, we aim to inform you as comprehensibly and completely as possible about the way in which we may collect and use your (personal) data.

We are Stichting TURF, a foundation with full legal capacity, having its registered office in (4816KB) Breda at Druivenstraat 55 and registered with the Chamber of Commerce under KvK number 94434182 (in the following referred to as: ‘the TURF Foundation’).
You can reach us at the aforementioned address or by email at info@turf-event.nl.

We organize TURF Event, a multi-day festival combining electronic music, art, and culture — featuring performances, talks, and nightlife events (the ‘TURF Event’), in part through our website(s), including but not limited to www.turf-event.nl, and/or affiliated website(s) (the ‘Website(s)’), web interfaces, and our own social media pages and/or those of companies we work together with for the purpose of organizing TURF (our ‘Partner Companies’), where our visitors to the professional program (‘Delegates’) and visitors to the festival (‘Visitors’) can directly make agreements or bookings, and the TURF apps linked to the Website(s) (together referred to as: the ‘Platform’).

For the purpose of organizing TURF, we may use (some of) the personal data of Visitors and/or Delegates.

It is very important to us that data obtained from our visitors is used in a responsible manner. As such, we process and protect your personal data carefully and in compliance with the relevant provisions of the European General Data Protection Regulation (GDPR).

It is not compulsory to provide personal data to make use of the Platform. However, for some of our services, it might be necessary to provide certain personal data.

1. The data we use

We may collect and/or use the following data of visitors to TURF, the Website(s), and/or other parts of the Platform:

‘Registration Data’

Data you have provided to us yourself when:

• registering with us for an account, such as your name, gender, email and home address, place and date of birth, log-in name, password, profile picture, and IP address, and/or data about your social network profiles (LinkedIn, Instagram, SoundCloud, etc.);
• purchasing products or tickets, such as your name, gender, email and home address, place and date of birth, log-in name, password, profile picture, IP address, and payment details;
• registering for specific services (for instance to perform or speak at TURF), such as your name, gender, email and home address, place and date of birth, log-in name, password, profile picture, and IP address; and/or
• registering for newsletters, such as name, gender, email and home address, place and date of birth, log-in name, password, and IP address.

Delegates may be asked to provide further information such as occupation, phone number, company name, phone number, picture, and address. We primarily use your Registration Data to carry out our agreement with you and for internal administration.

‘External Data’

Data which we have access to through:

• our Partners (companies we have agreements with to provide you with certain services, like ticketing or accommodation providers), which you have provided them in order to make use of their services;
• our Promoters (companies that organize an event that is part of TURF and are responsible for the said event), but only in case you have provided them with such data in order to make use of their services; and/or
• Third Parties (companies that provide certain online services through the Platform, such as Spotify, YouTube, Eventix, Paylogic, or Facebook), upon providing them with your data and after registering with us through their (website(s) or app(s)) or when you make a payment for a purchase on the Platform.

‘Venue Data’

Data we have collected about which venues and corresponding performances you visited during TURF. We collect these Venue Data when you check into a venue taking part in TURF using a wristband containing an electronic chip or a digital check-in through our app.

‘Commercial Data’

Data we have collected and compiled about your online interests and buying behavior, which we will only use as anonymized data, except if you have given us permission to use it without anonymizing.

‘Surf Data’

Data we collect about your surfing behavior:

• on our Platform, such as your account type and IP address, the time of your visit, and/or services you have used on or through the Platform;
• technical information, such as your browser type and which functionalities you use, which we only use anonymously or after having received your explicit permission.

Part of Surf Data are cookies, which are discussed below.
We may use anonymized and combined data for purposes such as IT testing, research, analytics, marketing model development, and new service improvements.

2. How we use your data

Registration and use of account

To create an account on the Platform and to offer, deliver, and invoice the products and/or services you order, we use your Registration Data and/or External Data if you register through one of our Third Parties. Upon registration with us, or if you have pre-registered, we will send you a welcoming email.

We also use your Registration Data and Surf Data (such as cookies) to verify your purchases (tickets, wristbands, merchandise, etc.).

When registered as a Delegate, some of your Registration Data may become visible to other Delegates, for example in delegate lists or networking features. Only basic information (such as your name, organization, or photo) is shared by default, and only if you give consent for additional data (such as email or phone) will this be visible.

We may collect External Data when you register through one of our Third Parties, which may help us tailor and provide services better suited to your interests.

We may collect your Registration Data, Venue Data, Commercial Data, and/or Surf Data to analyze the way in which you visit and use the Platform, or to make an anonymous profile of your interests and behavior. From time to time, we may use Registration Data to contact you for market research.

The legal ground for the use of your data in the above is the necessity to perform our agreements with you and our legitimate interests to know who makes use of our services and how. Where we use your data based on your explicit permission, you are always entitled to withdraw such permission as set out below.

Subscriptions and forms

You will only receive our newsletters if you have subscribed to them, and you can unsubscribe at any time.

If we have your explicit permission, we may use your Registration Data, Venue Data, Commercial Data, and/or Surf Data to send you information about artists, speakers, or events that might interest you.

To make targeted offers via advertising, email, and/or social media, we may use Registration Data, Surf Data, and/or Commercial Data.

The legal ground for this use is your explicit permission and/or our legitimate interests to improve our services and communication.

Venue Data

These data are generally processed in anonymized form for statistical and analytical purposes.
We only use non-anonymized Venue Data if you have explicitly given prior permission.
Venue Data help us understand which events were most popular and allow us to improve our programming and logistics.

You may choose to link your Venue Data to social media networks; if so, those platforms’ privacy policies apply.

3. Third parties

We only share your Data with Partners, Promoters, and Third Parties where we explicitly let you know.

We will never transfer your personal data to third parties without your explicit permission, except when it is necessary to carry out our agreement with you — for example, to deliver tickets or services or if we are legally required to do so.

When using external processors (e.g. hosting, payment, or mailing services), we ensure they meet the same high standards of protection.

When you register for services from our Partners, your data will be handed over to those parties and their privacy policy applies to further use.

4. Cookies and Surf Data

We may collect automatically generated Surf Data, including your IP address and cookies.
Our servers record data such as the URL, browser type, language, and date/time of visits. These are used for statistics and optimization and anonymized as much as possible.

We use cookies to ensure the Website(s) function properly and to enhance usability for example, remembering your language preferences or keeping items in your basket.

We also use Google Analytics to understand how the Website(s) are used. We have a Data Processing Agreement with Google, anonymize IP addresses, and disable data sharing.

Finally, cookies may be placed via the Website(s) by third parties such as Facebook or Instagram. Their privacy policies apply to such cookies.

5. Time limit

We shall not hold personal data any longer than necessary for carrying out our agreements with you as set out above.

Upon unsubscribing from communications or deleting your account, we erase the related data. If we process data based on your permission, we delete it immediately upon withdrawal of that permission.

6. Withdrawal of permission

If we use your personal data based on your explicit prior permission, you can withdraw your permission at any time by sending an email to info@turf-event.nl specifying which permission you wish to withdraw.

When we send you direct marketing messages, you are always free to opt out.

7. Access, removal, corrections and complaints

You are responsible for ensuring your Registration Data is correct.
You have the following rights under GDPR:

• access to and correction of your data,
• the right to erasure (‘right to be forgotten’),
• the right to restrict processing,
• the right of data portability,
• and the right not to be subject to automated decision-making.

You can contact us via info@turf-event.nl to request access or corrections. We may ask for a copy of a valid ID to verify your identity. If you believe your data is no longer relevant, you may request deletion.

You may also file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

8. Protection

We handle all personal data with the greatest possible care.
We use technical and organizational measures to protect data from loss, misuse, or unauthorized access.

Only employees who need access for their tasks may access your data and are bound by confidentiality. Our third-party processors are contractually obliged to meet equivalent standards of protection.

9. Transfer to third countries

We may transfer data to processors or third parties based outside the EU, but only if they provide appropriate safeguards for data protection (such as EU Standard Contractual Clauses).
Upon request, we can provide details of any such transfers.

10. Minors

If you are under the age of 16, your parents or legal representatives must be aware of this Privacy Statement before you register or use the Platform.

11. General

• We reserve the right to modify this Privacy and Cookie Policy at any time.
• We advise you to regularly check the latest version on our Website(s) or Platform.
• If changes are fundamental, we will clearly notify you (e.g. via email).
• The most recent changes to this Privacy Statement were made and published in October 2025.
• This Privacy Statement and its contents are governed exclusively by Dutch law.
• Any disputes arising will be submitted to the competent court in Breda, The Netherlands.

‍

‍