Data Protection Compliance

The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It also addresses the export of personal data outside the EU and EEA. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

The General Data Protection Regulation came into effect on 25th May 2018. Prior to this, on the 17th May, the Danish parliament enacted L 68 making the General Data Protection Regulation (GDPR) (EU) 2016/679 law in Denmark.

(to download the text of L 68 and the GDPR in Danish click here)

To comply with the GDPR Caimbeul Craic has reviewed data policy as follows -

In the course of business or production operations, CaimbeulCraic may routinely collect and store data which may include personally identifiable information in the following categories -

  • Creditor and debitor data, including company name and CVR number, company representative name(s), company address(es), contact telephone numbers and email addresses for the company and those representatives with whom WoWiWo has a trading relationship.
  • Contact names, addresses, telephone numbers and e-mail addresses of those with whom the association has contact in the course of production or operation.

The aforementioned data is not shared with any third party without the express prior permission of the organizations or individuals involved.

Customers, suppliers and business partners with whom CaimbeulCraic has or has had a business relationship may assume that the aforementioned data is collected and stored and at any time may contact CaimbeulCraic to a) request insight into the exact data involved and/or b) to request that such data be extinguished from CaimbeulCraic records and data storage systems.

For creditor and debitor information such data is usually limited to that data supplied to CaimbeulCraic by the creditor or debitor on business documents that is necessary for completion of a transaction - such as invoices and bank transaction instructions. In accordance with Danish tax law, accounts data, including invoices, receipts, and wage slips must be held by CaimbeulCraic for at least 5 years following the financial year to which they pertain.

CaimbeulCraic collects and stores personally identifiable data in the course of entering into contracts of employment with employees or contracts for the supply of services by suppliers. Such data will normally be limited to name/company name CVR/CPR number, address, telephone and email address, employment tax registration documentation, and bank account information for the transfer of funds by WoWiWo to the employee or supplier. Unless otherwise required by Danish law, such data will normally be stored for a period of 5 years following its collection and will thereafter be deleted. Previous employees and suppliers may at any time contact the association to a) request insight into the exact data involved and/or b) to request that such data, subject to the otherwise requirements of Danish law, be extinguished from the association's records and data storage systems.

Subject to specific agreement in each instance, personally identifiable data relating to employees, production partners or participants engaged on production assignments which involve overseas travel, and/or security clearance to specific production locations or for access to the confidential data of others with whom the company has an assignment may be collected and stored by the company for travel documentation, clearance and coordination purposes. The specific data collected and stored will depend on the needs of the specific assignment and travel itinerary - including but not limited to passport information, identity photographs, other applicable identification documents, essential contact information to family or friends in Denmark as well as personal medical information deemed essential in the event of medical emergencies whilst travelling. Such data will only be collected directly and consentually from the individual concerned and stored with the express written agreement of the individual involved. Such data will be extinguished at any time upon request by the individual following the completion of the assignment. Such data will not be communicated to any third party without the express agreement of the individual involved.

Personally identifiable employee or supplier data is not shared with any third party without the express prior permission of the organizations or individuals involved. CaimbeulCraic employees and production partners who have access to such data in the course of their work with CaimbeulCraic will be required to accord such data the same confidentiality and safeguards as applied herein by the association.


Data relating to participants or cooperation partners in connection with CaimbeulCraic projects/productions.

Participating in a culture project – live or digital - will often imply the imparting of personally identifiable data about the participant to the company, its employees and production partners, and in some cases to the audience of the resulting production.

In all cases where such data may be imparted by a participant, CaimbeulCraic will require the participant to sign a written release form which clearly defines the scope of the participant's involvement, the nature of potential personal identifiability involved - particularly with regard to the participants identity being published in the project/production (such as credits and press releases), and the participant's express consent for such. In the case of participants under the age of 18, such a consent agreement must be entered into between CaimbeulCraic and the participant's legal parent or guardian.

"Vox-pop" and other interviews (which may be recorded without prior written agreement) may not involve any personally identifiable data about the participant unless a written agreement is entered into.

The consent regarding personally identifiable data which the participant agrees to will cover all possible disclosures such as in any research notes taken by the artist, the recording itself, any transcript or logging documentation of the interview subsequently made by CaimbeulCraic in the course of the editing and post production editorial work, and any subsequent broadcast, distribution or dissemination of the interview within the terms agreed in the participant's consent agreement.

The conduct of CaimbeulCraic and its employees, partners or agents with regard to cultural projects/productions undertaken on or within private property is covered by other Danish laws as well as the association's longstanding policy of always ensuring informed consent for such recordings prior to their being made.


CaimbeulCraic websites/socialmedia (SoMe)

CaimbeulCraic does not create, maintain or publish websites in the associations's name which involve the collection of personally identifiable data. The CaimbeulCraic websites do not employ cookies or similar tracking technologies.


Further enquiries

Further enquiries concerning the association's data protect policy may be addressed to -

Peter Campbell Bensted