Design Exchange Nottingham

Privacy Policy

We are committed to the respectful use and responsible protection of personal data. This privacy policy explains how information about you is collected, stored, and processed when you interact with DXN, and provides ways you can exercise your data subject rights.

The privacy notice describes to you:

  • who we are
  • how to contact us
  • what personal data we collect and how we use it
  • the categories of third parties with whom we share your personal data
  • how we retain your information and keep it secure
  • your rights and how to exercise them

1. Who we are

For the purposes of data protection law, the “controller” is J Huskisson Ltd, a company incorporated and registered in England and Wales under company number 07256070 and having its registered office address 34 Stoney Street, Nottingham, NG1 1NB (from now on referred to as “JH”, or as “we” and related words such as “us” and “our”). JH is responsible for the organisation of DXN.

If you would like more information about this policy, or to exercise your data subject rights, please contact us using the following details:

E-mail: dxn@wearejh.com

Post: JH, 34a Stoney Street, Nottingham, NG1 1NB

2. Data we collect

We collect and process personal data in the following circumstances:

Newsletter subscriptions — this data is collected when you subscribe to the DXN newsletter.

  • The following data is provided to us:
    • Email address
  • The data is stored in third-party services
  • We retain this data indefinitely, unless a data subject right is exercised
  • We process this data for marketing
  • We process this data under the legal basis of consent

Ticket orders — this data is collected when you order a ticket to attend DXN.

  • The following data is provided to us:
    • Name
    • Email address
    • Company
    • Marketing preferences
  • The data is stored in third-party services
  • We retain this data indefinitely, unless a data subject right is exercised
  • We process this data for event management and marketing
  • We process this data under the legal basis of consent and contractual necessity

Speaker submissions — this data is collected when you apply to speak at DXN.

  • The following data is provided to us:
    • Name
    • Email address
    • Biographical information
    • Any other information provided
  • The data is stored in third-party services
  • We retain this data indefinitely, unless a data subject right is exercised
  • We process this data for event management and marketing
  • We process this data under the legal basis of contractual necessity

General enquiries — this data is collected when you contact us by email or phone.

  • The following data is provided to us:
    • Name
    • Email address
    • Any other information provided
  • The data is stored in third-party services
  • We retain this data indefinitely, unless a data subject right is exercised
  • We process this data for event management
  • We process this data under the legal basis of consent

Behaviour tracking — this data is collected when you use the DXN website.

  • The following data is provided to us:
    • Usage data
    • Technical information
    • Marketing information
  • The data is stored in cookies and third-party services
  • We retain this data for 26 months, unless a data subject right is exercised
  • We process this data for event management, marketing, and website optimisation
  • We process this data under the legal basis of legitimate interests

3. Who we share data with

We may provide your personal data to the following recipients for the purposes set out in this notice.

  • Venue services: Antenna
  • Ticketing services: Tito
  • Digital services: Google (Analytics, Drive, Mail), Mailchimp, Slack, Typekit
  • Any parties where we are legally required or permitted to do so
  • Any other parties where we have your specific consent to do so

4. How we keep data secure

JH has security measures in place to prevent data loss, to preserve data integrity, and to regulate access to the data. Only authorised employees and third parties processing data on our behalf have access to your personal data.

The security measures we have in place include:

  • training and enforcement of data security practices
  • restriction of access to personal information
  • use of secure technologies (e.g. SSL, encryption)
  • anonymisation and aggregation of data

5. Data transfer outside the EEA

Although we are based in England, we may transfer your personal information to a location (for example, to a secure server) outside the European Economic Area, if we consider it necessary or desirable for the purposes set out in this notice.

6. Your information rights

Data protection laws provide the following rights for individuals:

  • Right to be informed about how your personal data is collected and used
  • Right of access to your personal data
  • Right to rectification of your personal data so that it is true, accurate and complete
  • Right to erasure of your personal data
  • Right to restrict or object to...
    • processing of personal data for direct marketing
    • our continued processing of your personal data
    • decisions being taken by automated means which significantly affect you
  • Right to portability of your personal data in a commonly used format

There rights are subject to certain limitations that exist in law. Further information about for data subject rights are available on the ICO’s website.

If you would like to exercise any of these rights, contact us using the details in section 1.

7. Lodging a complaint

You have a right to lodge a complaint with the supervisory authority, the ICO.

Latest revision: 28/08/18