The Golden Key is an event hosted by Coney and The City of London Corporation. Coney and The City of London Corporation are the Data Controllers for The Golden Key.
Who we are
Throughout this policy, ‘we’ refers to Coney and The City of London Corporation.
Coney Ltd, a registered charity (no. 1156864) and company limited by guarantee (no. 06713686), registered at Unit 15 Toynbee Studios, 28 Commercial Street, London, UK, E1 6AB. The City is not a Limited Liability Company or LLP or similar, it’s a corporation by prescription, therefore we don’t have a company number and are not registered in any company register. The City’s official title for contracts is: “The Mayor and Commonalty and Citizens of the City of London of PO Box 270, Guildhall, London EC2P 2EJ”. The City does own certain wholly owned private and charitable companies through which it discharges certain of its functions, but these are not representative of the City as a public body.
Who you are
You are an individual who has interacted with The Golden Key in one or more of these ways (please note, this list is not exhaustive):
Used The Golden Key’s website (which is www.thegoldenkey.london)
Asked to join The Golden Key mailing list (and optionally, either Coney’s or The City of London Corporation’s mailing lists)
Completed an online or paper feedback form or survey
Contacted Coney or The City of London Corporation regarding The Golden Key via email or interacted with us on social media
Attended The Golden Key event
Participated in one of The Golden Key community projects (or are the parent or guardian of a child under the age of 18 who has participated in a The Golden Key projects)
Texted a mobile phone number owned by Coney to begin an adventure through the Magic Phone platform
Told another company that they can pass information about you to Coney or The City of London Corporation.
Both Coney and The City of London Corporation are committed to keeping your personal information (data) safe and meeting our responsibilities under privacy law, including the General Data Protection Regulation, 2016. You can find general information about data protection law on the ICO’s website: ico.org.uk/for-the- public
This policy is intended to let you know how we use the data we hold about you, and your rights in regard to this. It does not provide exhaustive detail, but we are happy to provide more information or explanation. To request further information, please email Coney: email@example.com
The City of London Corporation: Please contact the City Corporation’s Data Protection Officer, also the Comptroller and City Solicitor, Michael Cogher. You can email the Information Officer or write to PO Box 270, Guildhall, London EC2P 2EJ.
What data we may hold about you
Data we hold about you may include:
Photographs, videos and audio taken during The Golden Key event – this content will be shared between Coney, The City of London Corporation and relevant host venues.
Information you gave us in an online or paper form (such as feedback, contact details, and information like your age, ethnicity and gender)
Communications with us (such as emails and notes of phone calls) and any information you send us via email.
Information you provided during the course of The Golden Key in order for us to create an interactive experience (such as a questionnaire to get to know you better in advance of attending). We will only use this data in order to deliver the experience and will delete it as soon as it is no longer needed.
Your publicly available social media activity and interactions with Coney or The City of London Corporation (such as your Twitter handle, posts about us, and your location)
Publicly available information we have discovered about you through research, in the course of delivering a Coney adventure or project you signed up for, or for which a friend referred you. Using the principle of loveliness, we will make sure information collected is appropriate, and will use it only as long as required to deliver your adventure.
How we use data about you
We collect and hold data about you so we can do things like:
Create and deliver experiences, adventures, and performances. Our work is interactive, so we often need to know a bit about you to make it possible. The way we use your data varies between projects, but always follows Coney’s principles of adventure, curiosity and loveliness.
Learn from your experience and feedback, to develop our work and tailor it to our audiences and participants
Keep a record of who has interacted with The Golden Key
Personalise the communications you receive from us
Manage our organisations effectively at an administrative level
Send you information and updates about The Golden Key
Share with other people and organisations the feedback you have given us, in order to promote our work and report on our impact.
If you opted in to receive information from Coney, Coney will send you updates about Coney’s projects, shows and adventures, and ways to support them.
If you opted in to receive information from The City of London Corporation, The City of London Corporation will send you updates about upcoming events, activities, new and re-openings and special offers in the Square Mile.
Use of anonymous data
We share statistics about our audiences and participants with third parties (such as Arts Council England and venue partners) to report on our work, which may include data you gave us in a form. This kind of information will always be anonymised before it is shared with any third parties and is therefore no longer personal data.
We use Google Analytics to collect basic log information and details of what visitors do on our website, as well as information provided by your computer, like your browser type. This data is anonymised, and we will never attempt to find out the identities of those visiting our website. Anonymous data collected this way on www.thegoldenkey.london will be shared between Coney and The City of London Corporation.
We use online advertising to keep you aware of what we’re up to as well as upcoming events. Like many companies, we may target you with ads when you use other websites and apps, based on your Contact, Technical, Usage and Profile Data. We do this using a variety of digital marketing networks and ad exchanges, and a range of advertising technologies such as pixels, ad tags, and cookies, as well as specific services offered by some sites and social networks, such as Facebook’s Custom Audience Service.
We use a range of analytics and targeted advertising tools to display relevant advertisements on other websites and apps (as described above) to you, deliver relevant content to you in marketing communications (where applicable), and to measure the effectiveness of the advertising provided. For example, we use Google Analytics to analyse Google's interest-based advertising data and/or third-party audience data (such as age, marital status, life event, gender and interests) to target and improve our marketing campaigns, marketing strategies and website content. We may also use tools provided by other third parties, such as Facebook, Content Square, Adroll, Responsys, Criteo and Bing to perform similar tasks, using your Contact, Technical, Usage and Profile Data.
For The Golden Key, we use a third-party provider, Mailchimp, to deliver our newsletters. Through this we gather statistics about email opening and clicks.
Children and young people
We are committed to the welfare needs of all children, young people and vulnerable adults who work with us, whether they are participating in workshops connected to The Golden Key, or are performers or makers on The Golden Key event. We aim to create intimate, respectful and trusting relationships between everyone involved. We are committed to a creative process which:
Places the welfare of children, young people and vulnerable adults first;
Respects the rights, wishes and feelings of young people, vulnerable adults and all with whom we are working
Promotes the welfare of all people we work with and their protection within a relationship of trust;
Ensures best health and safety practice.
In our participation projects, we may collect data about the people taking part, including children & young people. We will seek consent from a parent or guardian before collecting data about children.
In order to deliver projects and keep participants safe, we may need information like medical details, school information, access requirements and notes and feedback on participants’ work with us. This may be passed to emergency services if necessary.
For people under 16 years old, we will use a nominated adult as a first point of communication, switching to the child on consent from that nominated adult or where needed to fulfil a contract.
How we keep your data safe, and who sees it
To protect your privacy, we make sure your data is kept securely and access is restricted to appropriately trained staff who need to use it for the processes outlined in this policy. We will keep and process your data for long enough to fulfil the purpose we collected it for. After that point, we will dispose of in a secure manner.
We will never sell your data, but it may be processed by limited third parties in the course of achieving the purposes listed above. Third parties that may process your data for us include companies who store our data.
We will never share your contact details or sensitive personal data with other organisations or people without your consent, unless legally required to do so.
Some of our suppliers run their operations outside the European Economic Area (EEA). This means they may not be subject to same data protection laws as companies based in the UK, but we will take appropriate steps to make sure they provide a level of protection that meets the requirements of UK data protection law.
We may share information about you with law enforcement agencies and other organisations or individuals if we are required to by law.
Contacting us, access to your data, and your right of correction or erasure
We want to make sure that the data we hold about you is accurate and up to date, and you can ask us at any time to correct or remove information you think is inaccurate. You also have the right to ask us to ‘forget’ you, by erasing the data we hold about you as far as reasonably possible. If you would like us to do this, please get in touch on firstname.lastname@example.org.
You have the legal right to request a copy of the data that we hold about you. If you would like a copy of some or all of the information we hold about you, please email email@example.com.
Opting out of marketing
Coney: You have the right to tell us to stop contacting you for marketing purposes at any time. If you want to opt out, click ‘unsubscribe’ within the email we have sent you, or email firstname.lastname@example.org to let us know.
The City of London Corporation: The City of London Corporation is a data controller, and processes personal data in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. For full details of how and why the City of London Corporation processes personal data, please refer to the full privacy notice at www.cityoflondon.gov.uk/privacy. Alternatively, you can request a hard copy. Please direct all data protection queries to the Information Compliance Team at email@example.com.
Photos and video footage will be taken at this event. By entering you consent to be photographed and for your image to be used for documentation and promotional purposes. Photos and videos will be shared between the producers of this event - Coney and The City of London Corporation - and venue partners. To opt out, just let one of our Front of House team know and we’ll give you a sticker to wear.