PRIVACY POLICY
DATA CONTROLLER
  • Pixel Harmony LDA (hereinafter SÓNAR)
  • Address: Rua D. João IV, n.º 716, 1.º Esq., 4000-299 Porto
  • Phone: +351 222 011 641 and/or contact the Privacy Committee directly +34 933 20 81 63
  • Email: You can contact the privacy committee via privacy@sonar.es 
SCOPE OF THE POLICY

When you access and use this website, use our services or use any other means that involve the processing of personal data, you agree to accept this Privacy Policy, as well as the provisions contained in the Legal Conditions and Cookies Policy.

At SÓNAR, we provide information so that, before filling in your personal data, you can access the Privacy Policy and any other relevant information on Data Protection.

WHAT WE USE YOUR DATA FOR

SÓNAR processes your personal data (name, surname, email, telephone number, age and any other information necessary for the management and maintenance of its services) for the following purposes:

  • CONTRACTUAL: (i) for the process of selling tickets, passes, subscriptions and accreditations, as well as for the management of any aspect related to the event. (ii) Make the necessary communications related to attendance at the festival and access to it.
  • CONSENT: (i) any marketing and commercial action carried out by any means, including telematics, (ii) to properly attend to and manage the User's queries, comments, incidents or suggestions made through the means enabled on the Website, and (iii) to provide the necessary mobility adaptations for the users of the services offered to deserve and need.
  • LEGITIMATE INTEREST: (i) to send recommendations for products and services taking into account those you have contracted in the past, (ii) also for the prevention, investigation and detection of fraud and (iii) to respond to queries you send us, (iv) to ensure the correct use of our services, preventing illegal uses or uses contrary to our policy, values or current legal regulations,  and (v) manage suggestions, complaints and inquiries about the products and/or services purchased through our website.
  • LEGAL OBLIGATION: (i) To comply with legally established obligations, as well as to verify compliance with contractual obligations, including fraud prevention and money laundering prevention.
HOW LONG WE PROCESS YOUR DATA

The retention period of personal data will vary depending on the service you may hire. In any case, your data will be kept for the duration of the business relationship. Once this process has been completed, we will keep your data blocked for the duration of the limitation periods for the obligations that may have arisen from the processing and/or the applicable legal periods, remaining at the disposal of the competent authorities for the attention of any liabilities arising from the processing. 
SONAR will store personal data in accordance with the regulations in force at any time and in accordance with criteria of proportionality and necessity. By way of example and not as a limitation, the following deadlines are taken as a reference:

  • Registration of labour recruitment processes: 5 years, in accordance with Article 32 of the Labour Code.
  • Records of working time and overtime: 5 years, in accordance with Articles 202(4) and 231(8) of the Labour Code; 
  • Data required for information to the Tax and Customs Authority for accounting or fiscal purposes or data relating to commercial bookkeeping: 10 years (Article 19(1) of Decreto-Lei No. 28/2019, of 15 February, and Article 40 of the Commercial Code)
  • Data records and retention of documents on safety and health at work: 40 years, in accordance with article 46 of Law no. 102/2009, of 10 September 
  • Video surveillance: 30 days, in accordance with article 19 of Law no. 95/2021, of 29 December.
  • Documentation relating to the legislation on the prevention of money laundering: 7 years, in accordance with article 51 of Law no. 83/2017, of 18 August.
     
HOW YOU CAN EXERCISE YOUR RIGHTS

As the rights holder of your personal information, you have control over that data. In this way, we also ensure that the information is accurate and truthful.

The rights you can exercise are those recognised by the legislation in force, including:

  • Right of Access: You can check whether we are processing personal data about you at SÓNAR.
  • Right to Rectification and Erasure: you can access your personal data and request the rectification or deletion of your data when it is incorrect or you consider that it is no longer necessary for the purposes for which it was collected.
  • Right to Object: you may object to the processing of your data, unless, for compelling legitimate reasons or in the exercise or defence of possible claims, we keep it duly blocked for the corresponding periods for as long as the legal obligations remain.
  • Right to Restriction of Processing: You may request the restriction of the processing of your personal information while the challenge to the accuracy or lawfulness of your data is being verified and during the exercise or defense of potential claims or litigation.
  • Right to Portability: You may request portability of the data you have provided to another data controller in certain circumstances.

You can exercise your rights free of charge.
The exercise of these rights shall be carried out by any of the following means:

  • Through the unsubscribe links contained in all communications sent via e-mail;
  • By e-mail to privacy@sonar.es, with the word "remove" in the subject;
  • By phone: +351 222 011 641 and/or contact the Privacy Committee directly +34 933 20 81 63
WILL MY DATA BE COMMUNICATED TO OTHER RECIPIENTS?

We guarantee that your data will only be transmitted, where applicable, in the following situations:

  • In favor of companies of the SÓNAR group;
  • On behalf of partners or agents involved in the provision of the products you have purchased;
  • Within the scope of a legal obligation, a decision of the National Data Protection Commission or other relevant supervisory authority, or arising from a court order.
  • In favor of debt collection agencies or other entities for the purpose of recovering amounts owed
  • In favor of third parties necessary for the provision of services that may be contracted, such as transport companies or call centers, or third parties with whom SÓNAR may develop promotions and joint actions.
  • In favour of third parties directly involved in the provision of services, such as for access control management, as well as with ticketing companies, always ensuring compliance with applicable legislation and the conclusion of appropriate data processing agreements.
  • In the event of SÓNAR's restructuring, or in the event that SÓNAR is acquired, the User's information will be transmitted to that organization.

Under no circumstances will your personal data be shared with third parties without complying with legally established requirements.

If SÓNAR relies on the collaboration of suppliers who may have access to your data and who will process such data in the name and on behalf of SÓNAR , the selection of suppliers will follow an exhaustive process of verification of compliance, in order to ensure adequate control in terms of data protection. In addition, a contract will be signed in which these providers undertake to implement appropriate technical and organisational measures to process personal data only in accordance with the documented instructions of the joint controllers. If there is one of the data processors located outside the European Economic Area, the joint data controllers will sign Standard Contractual Clauses with them, which will provide adequate safeguards and protect at all times the access that these third parties may have to your data.
 

HOW TO COMPLAIN TO THE SUPERVISORY AUTHORITY?

If a user considers that there is a problem with the way SONAR is handling their data, they can forward their complaints to Rua D. João IV, 716, 1º Esq., 4000-299 Porto, from where they will be forwarded to the Group's Privacy Committee and will be answered within a period of no more than 1 month. You can also contact the Privacy Commission directly at C/ Zamora 45-47, 6º1ª; 08005 Barcelona, Spain, or the National Data Protection Commission (CNPD), with registered office at Av. D. Carlos I, 134, 1.º, 1200-651 Lisboa, which is the competent public authority for these cases in Portugal.

SAFETY

At SONAR, we maintain the highest levels of security required by law to protect your personal data against accidental loss and unauthorized access, processing or disclosure, taking into account the state of technology, the nature of the data stored and the risks to which it is exposed. When we receive your data, we use strict procedures and security features to prevent any unauthorised access. The actions described in this section to ensure an adequate level of security of the identified risk shall include, where appropriate, the following measures:

  • Pseudonymization and encryption of personal data.
  • Measures capable of ensuring the confidentiality, integrity, availability and permanent resilience of processing systems and services.
  • Measures capable of quickly restoring the availability of and access to personal data in the event of a physical or technical incident.
  • Existence of a regular process for verifying, evaluating and evaluating the effectiveness of technical and organisational measures to ensure the safety of processing.
  • Periodic assessment of the risk of accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or of unauthorised disclosure of or access to such data.
  • Measures to ensure that any person acting under the authority of SONAR and having access to personal data may only process such data on instructions from SONAR. 
CONFIDENTIALITY

The personal data that may be collected will be treated with absolute confidentiality, committing to maintain confidentiality in relation to them and guaranteeing the duty to keep them, adopting all necessary measures to avoid their alteration, loss and unauthorized processing or access, in accordance with the provisions of the applicable legislation.

During the Festival, video surveillance cameras were installed, with the sole and exclusive purpose of ensuring that all visitors are properly assisted. SONAR is not responsible for the cameras and at no time accesses their content. If you have any questions in this regard, we advise you to contact the person in charge of the website, whose details can be found on the information posters installed in the areas.

ACCEPTANCE AND CONSENT

The user declares to have been informed of the conditions of protection of personal data, accepting and consenting to the processing of the same by SONAR in the manner and for the purposes indicated in this privacy policy.

CHANGES TO THE PRIVACY POLICY

SONAR reserves the right to modify this policy in order to adapt it to new legislation or jurisprudence, as well as to other practices in the sector. In such cases, SONAR will announce the changes made to this page with reasonable notice prior to their entry into force.

This version of the Privacy Policy corresponds to the last update published the 19th of March 2024. You can contact SONAR through the contact channels that we communicate to you to ask any questions related to the subject.