Transition Festival - Privacy policy
Transition Experience 2026 17 YEARS PSYTRANCE FESTIVAL

6 DAYS & NIGHTS of music, nature & real connection

PHASE 3 IS OPEN · CONFIRMED ARTISTS NOW ONLINE

PRIVACY POLICY

This Privacy Policy governs the processing of personal data provided by users through the website www.transitionfestival.org, during the ticket purchase process, event registration, purchase of products or services, subscription to commercial communications, or through any other form made available by the Organisation.

Visiting the website does not require the user to register or provide personal data. When personal data is necessary to access certain services, make a purchase, register for an event or contact the Organisation, the mandatory nature of such data will be indicated by an asterisk [*] or equivalent notice.

This Privacy Policy applies in accordance with Regulation EU 2016/679 of the European Parliament and of the Council of 27 April 2016, the General Data Protection Regulation, hereinafter the GDPR, and Spanish Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights, hereinafter the LOPDGDD.

For any questions regarding the processing of your personal data, you may contact us at: This email address is being protected from spambots. You need JavaScript enabled to view it..

1. DATA CONTROLLER

The data controller responsible for the processing of personal data is:

ASOCIACIÓN CULTURAL TRANSITION CREW
Registered address: Calle Manuel Altolaguirre 1, 21730 Almonte, Huelva, Spain
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Tax ID number: C.I.F. G-21521158
Registered in the National Register of Associations, Group 1, Section 1, national registration number 601341.

Hereinafter, the Organisation.

2. PERSONAL DATA WE MAY PROCESS

The Organisation may process the personal data provided by users through the website, forms, authorised ticketing platforms, registration processes or direct communications.

The data processed may include, among others:

  • Name and surname.
  • Email address.
  • Contact telephone number.
  • Billing details, where applicable.
  • Data relating to the purchase of tickets, add-ons, reservations or contracted products.
  • Data required for access control, accreditation or wristband management.
  • Data provided through contact, registration or authorisation forms.
  • Data relating to minors, when necessary to manage their access to the event and always in accordance with applicable regulations.
  • Image and voice of attendees captured during the event, under the terms set out in this Privacy Policy.

If special categories of data or non-standard personal data are requested, the Organisation will previously inform the user of the specific purpose, legal basis and necessity of such processing.

3. PURPOSES OF PROCESSING

The Organisation may process personal data for the following purposes:

3.1. Management of ticket and product purchases

To process the data required to manage the purchase of tickets, add-ons, reservations, products or services related to Transition Festival, including ticket issuance, payment management, access validation, purchaser support and communications related to the purchase.

3.2. Administrative, accounting and tax management

To process the data required to comply with legal, tax, accounting, administrative and invoicing obligations arising from the activity of the Organisation.

3.3. Management of enquiries and requests

To respond to enquiries, information requests, complaints, incidents or communications sent by users through email, web forms, social media or other available channels.

3.4. Event and access management

To manage the organisation of the event, access to the site, ticket control, accreditations, wristbands, authorisations for minors, security, internal incidents and compliance with the general terms and conditions of the event.

3.5. Informational and commercial communications

To send information about Transition Festival, Transition Crew and other projects, events, products or services linked to the Organisation, provided that there is a valid legal basis for doing so, such as the user's consent or legitimate interest in relation to products or services similar to those previously contracted, where permitted by applicable law.

The user may object to or unsubscribe from such communications at any time.

3.6. Statistical analysis and service improvement

To carry out internal, statistical or commercial analyses in order to improve the user experience, the organisation of the event, the offer of products and services, and the communications of the Organisation. Whenever possible, these analyses will be carried out using anonymised or aggregated data.

3.7. Capture and use of images during the event

During events organised by the Organisation, general images, videos and sounds may be captured of the audience, atmosphere, performances, facilities and festival activities.

These images may be used for informational, promotional, documentary and commercial purposes related to Transition Festival and the activity of the Organisation, including publication on the official website, social media, digital platforms, press, promotional materials and other communication channels.

The Organisation will endeavour to ensure that the use of such images is general and atmospheric in nature. In the case of close-ups, interviews, testimonials or individually highlighted images, authorisation will be requested where necessary in accordance with applicable regulations.

Attendees who do not wish to appear recognisably in promotional images may notify the Organisation at This email address is being protected from spambots. You need JavaScript enabled to view it., without prejudice to the fact that, in public events, the incidental capture of general images of the audience may be unavoidable.

4. LEGAL BASIS FOR PROCESSING

The legal basis for the processing of personal data will depend on each purpose:

  • Performance of a contract: for the purchase of tickets, add-ons, products or services, access management, ticket issuance and purchase-related support.
  • Compliance with legal obligations: for tax, accounting, administrative, security and claims-related obligations, as well as any other applicable legal obligations.
  • User consent: for the sending of newsletters, commercial communications not linked to a previous relationship, voluntary forms, specific authorisations or processing activities requiring express consent.
  • Legitimate interest of the Organisation: for communications about products or services similar to those already contracted, fraud prevention, event security, incident management, defence of rights and legitimate interests, and service improvement, provided that the user's rights and freedoms do not prevail.
  • Public interest or legal authorisation: where applicable for reasons of security, protection of attendees, cooperation with authorities or compliance with specific regulations.

5. RECIPIENTS OF THE DATA

As a general rule, the Organisation will not sell users' personal data or disclose it to third parties for purposes unrelated to those indicated in this Privacy Policy, unless there is a legal obligation, the user's consent or a sufficient legal basis.

However, in order to provide its services, the Organisation may allow access to personal data by necessary providers and collaborators, such as:

  • Ticketing and ticket sales platforms.
  • Payment gateways and banking entities.
  • Web hosting, email, technical maintenance and digital service providers.
  • Email marketing, communication and customer management tools.
  • Security, access control, accreditation or wristband management services.
  • Tax, accounting, legal or administrative advisers.
  • Public administrations, courts, law enforcement authorities or other competent bodies when there is a legal obligation.

Where these third parties process data on behalf of the Organisation, they shall act as data processors and must provide adequate guarantees of compliance with data protection regulations.

6. INTERNATIONAL DATA TRANSFERS

Some technological providers used by the Organisation may be located outside the European Economic Area or may process data from third countries.

In such cases, the Organisation will endeavour to ensure that such transfers are carried out with appropriate safeguards in accordance with the GDPR, such as adequacy decisions, standard contractual clauses approved by the European Commission or other legally valid mechanisms.

7. DATA RETENTION PERIOD

Personal data will be retained for the time necessary to fulfil the purpose for which it was collected.

In particular:

  • Data related to purchases, invoicing and legal obligations will be retained for the periods required by applicable tax, accounting and administrative regulations.
  • Data used for commercial communications will be retained until the user withdraws consent or requests to unsubscribe.
  • Data arising from enquiries or complaints will be retained for the time necessary to address them and, subsequently, for any applicable statutory limitation periods.
  • Promotional images of the event may be retained for as long as they remain useful for informational, historical, documentary or promotional purposes of the Organisation, unless the user validly exercises a right that limits such use.

Once the retention periods have expired, the data will be deleted or blocked in accordance with applicable regulations.

8. USER RIGHTS

The user may exercise, under the terms established by applicable regulations, the following rights:

  • Right of access: to know whether the Organisation processes their personal data and to obtain information about such processing.
  • Right to rectification: to request the correction of inaccurate or incomplete data.
  • Right to erasure: to request the deletion of their data where applicable.
  • Right to object: to object to the processing of their data in certain circumstances, especially where it is used for direct marketing.
  • Right to restriction of processing: to request that the use of their data be restricted in the cases legally provided for.
  • Right to data portability: to receive their data in a structured, commonly used and machine-readable format, where applicable.
  • Right to withdraw consent: to withdraw consent at any time, without affecting the lawfulness of processing carried out before such withdrawal.
  • Right not to be subject to automated decisions: not to be subject to decisions based solely on automated processing that produce legal effects or significantly affect them, except in cases legally permitted.

To exercise these rights, the user may send a communication to: This email address is being protected from spambots. You need JavaScript enabled to view it.

The request must clearly indicate the right the user wishes to exercise. The Organisation may request additional information to verify the identity of the applicant where necessary.

The exercise of these rights is free of charge, except in the case of manifestly unfounded, excessive or repetitive requests, in which case the measures provided for by applicable regulations may be applied.

9. COMMERCIAL COMMUNICATIONS

The user may receive commercial communications, newsletters or information about events, products and services of the Organisation where they have given consent or where another valid legal basis exists in accordance with applicable regulations.

Each commercial communication sent by electronic means will include, where appropriate, a simple and free mechanism to unsubscribe or stop receiving future communications.

The user may also request to unsubscribe by writing to This email address is being protected from spambots. You need JavaScript enabled to view it..

10. COOKIES AND SIMILAR TECHNOLOGIES

The website may use cookies and similar technologies to enable its operation, analyse browsing, improve the user experience, personalise content or display tailored communications.

The use of cookies is regulated in the website's Cookie Policy, which provides information about the types of cookies used, their purpose, duration, third parties involved and how to configure or reject their use.

11. DATA OF MINORS

Minors may access the event under the terms established in the General Terms and Conditions of Sale and in the festival access rules.

Where it is necessary to process data relating to minors in order to manage authorisations, access, security or compliance with legal obligations, such data must be provided by their parents, legal guardians or authorised persons.

The Organisation will process minors' data with special care and only for the necessary purposes related to the event.

12. ACCURACY OF DATA

The user guarantees that the personal data provided is true, accurate, complete and up to date.

The user shall be responsible for any direct or indirect damage or loss that may arise as a result of failure to comply with this obligation.

If the user provides personal data relating to third parties, they declare that they have previously informed such third parties of the content of this Privacy Policy and have obtained the corresponding authorisation where necessary.

13. SECURITY AND CONFIDENTIALITY

The Organisation will process personal data confidentially and will adopt the necessary technical and organisational measures to ensure the security of the data and prevent its alteration, loss, unauthorised processing or access.

These measures will be applied taking into account the state of the art, the cost of implementation, the nature of the data processed, the scope, context and purposes of processing, as well as the risks to the rights and freedoms of individuals.

Staff, collaborators and providers who may have access to personal data must comply with the corresponding confidentiality and data protection obligations.

14. COMPLAINT TO THE SUPERVISORY AUTHORITY

If the user considers that the processing of their personal data does not comply with applicable regulations, they may lodge a complaint with the competent supervisory authority.

In Spain, the competent authority is the Spanish Data Protection Agency, through www.aepd.es.

15. CHANGES TO THIS PRIVACY POLICY

The Organisation reserves the right to modify this Privacy Policy in order to adapt it to legislative developments, criteria of supervisory authorities, technical, organisational or operational changes to the website and the services offered.

Users are advised to review this Privacy Policy periodically.