← Back to London VolleyFest Legal

Privacy Policy

Last updated: 7 March 2026 (v3)  ·  Applies to: volleyfest.co.uk

1. Who We Are

London VolleyFest is a volleyball festival taking place on 12 & 13 September 2026 at Crystal Palace Sports Centre, London. The event is organised by John Lowney (info@volleyfest.co.uk).

The data controller responsible for personal data collected through this website is:

James Love

Email: privacy@volleyfest.co.uk

ICO Registration Number: ZC102226

This privacy policy explains what data we collect, why, and how it is used and protected.

2. Legal Framework

This privacy policy is written in accordance with the following legislation:

  • UK General Data Protection Regulation (UK GDPR) — governs the collection, storage, use and protection of personal data
  • Data Protection Act 2018 — supplements UK GDPR and sets out additional obligations for data controllers in the UK
  • Privacy and Electronic Communications Regulations 2003 (PECR) — governs electronic marketing communications, including emails and cookies. We rely on your explicit consent (given via the registration form checkbox) as our lawful basis for sending you emails about London VolleyFest 2026. Every marketing email we send includes a clear way to unsubscribe or withdraw consent.

As the data controller, James Love is registered with the Information Commissioner's Office (ICO) under registration number ZC102226. You can verify this registration at ico.org.uk.

3. What Data We Collect

When you submit the registration of interest form on this website, we collect:

  • First name and last name
  • Email address
  • Phone number (optional)
  • Club or organisation name (optional)
  • Event(s) you are interested in entering
  • Number of teams you intend to enter
  • Your role (player, coach, club administrator, etc.)
  • Any additional information you choose to provide in the free-text field

We do not collect payment card details through this website. When booking opens in May 2026, you will be directed to Ticket Tailor — a third-party booking platform — where payment is processed securely. We never see or store your card details.

Beach Volleyball at London VolleyFest 2026 is managed independently by Deep Dish Beach Sports. If you wish to enter the beach volleyball, please register directly with Deep Dish via their website. Any data you provide to Deep Dish is governed by their own privacy policy — we do not collect, receive or process that data.

4. Why We Collect Your Data

We collect and use your personal data for the following purposes:

  • To record and manage your pre-registration of interest for London VolleyFest 2026
  • To send you an automated acknowledgement confirming your interest and event selections
  • To contact you in May 2026 with your personalised booking link when registration opens
  • To manage event logistics, team allocations and capacity planning
  • To send you booking confirmation and event entry details via Ticket Tailor
  • To respond to any queries or requests you submit

The lawful basis for processing your data is consent — you provide this by ticking the consent checkbox on the registration form. You may withdraw your consent at any time by contacting us at privacy@volleyfest.co.uk.

5. Third-Party Services (Data Processors)

To operate this website and manage registrations, we use the following third-party services. Each acts as a data processor on our behalf and is contractually required to handle your data securely and in accordance with UK GDPR.

Please note — Beach Volleyball: The Beach Volleyball element of London VolleyFest is managed and operated independently by Deep Dish Beach Sports (deepdishbeach.com). If you register for Beach Volleyball, you will be directed to Deep Dish's own website and will be subject to their privacy policy and terms. We do not collect, store or process any personal data on behalf of Deep Dish, and Deep Dish is not a data processor acting on our behalf.

Service Purpose Data Shared
Zapier Receives form submissions via secure webhook, routes data between services and triggers automated emails Name, email, phone number (if provided), club name (if provided), event selections, team quantities, role, message (if provided)
Google Sheets Registration tracking and capacity management — provides a readable record for event organisers Name, email, phone number (if provided), club name (if provided), event selections, team quantities
MailerLite Subscriber list management and sending personalised booking emails when registration opens in May 2026 Name, email, phone number (if provided), club name (if provided), event selections
Ticket Tailor Event booking platform — manages spaces, payments and confirmation emails Name, email (when you complete your booking)
Stripe Payment processing (via Ticket Tailor) Payment details handled directly by Stripe — we never see card data
Cloudflare Turnstile Spam and bot protection on the registration form — analyses browser behaviour to verify you are human Browser and device signals (no personal data stored by Cloudflare beyond what is required for verification)
Deep Dish Beach Sports Independent operator of the Beach Volleyball element — manages their own registrations, payments and data Any data you provide to Deep Dish is governed by their own privacy policy

We do not sell, rent or share your personal data with any other third parties for marketing or commercial purposes.

6. How Long We Keep Your Data

We will retain your personal data for a maximum of 12 months after the event (i.e. until September 2027), after which it will be securely deleted from all systems under our control (Zapier, Google Sheets, MailerLite).

Ticket Tailor retains booking records in accordance with their own privacy policy, which you will be asked to accept when completing your booking on their platform.

Stripe is required by law to retain payment transaction records for up to 7 years for accounting and tax purposes. This is governed by Stripe's own privacy policy and is outside our control.

7. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of access — you can request a copy of the data we hold about you
  • Right to rectification — you can ask us to correct inaccurate data
  • Right to erasure — you can ask us to delete your data ("right to be forgotten")
  • Right to restrict processing — you can ask us to limit how we use your data
  • Right to data portability — you can request your data in a portable format
  • Right to withdraw consent — you can withdraw consent at any time without affecting the lawfulness of prior processing
  • Right to object — you can object to us processing your data

To exercise any of these rights, please contact us at privacy@volleyfest.co.uk. We will respond within 30 days.

8. Data Security

We take reasonable steps to protect your personal data. All third-party services we use (Zapier, Google, MailerLite, Ticket Tailor and Stripe) employ industry-standard encryption and security practices. Data is transmitted over HTTPS at all times. Payment card data is handled exclusively by Stripe and is never stored or accessed by us.

While we take all reasonable precautions, no method of transmission over the internet is 100% secure. If you have concerns about data security, please contact us.

9. International Data Transfers

Some of the third-party services we use are based outside the United Kingdom. In particular, Zapier, MailerLite, Cloudflare and Stripe are headquartered in the United States. When your data is processed by these services, it may be transferred to and stored in countries outside the UK.

Where such transfers occur, we rely on appropriate safeguards to ensure your data is protected to the same standard as required under UK GDPR. These safeguards include the use of Standard Contractual Clauses (SCCs) and, where applicable, the UK International Data Transfer Agreement (IDTA). Each provider's data transfer mechanisms are documented in their own privacy policies.

10. Data Breaches

In the unlikely event of a personal data breach that poses a risk to your rights and freedoms, we are legally required under UK GDPR to notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach.

If a breach is likely to result in a high risk to you personally, we will also notify you directly without undue delay, explaining what happened and what steps we are taking to address it.

11. Cookies

This website does not currently use tracking cookies or analytics tools. If this changes, this policy will be updated and a cookie notice will be displayed on the site.

12. Children's Data

This website is intended for adults (18+) registering on behalf of themselves or their team. Junior event registrations should be submitted by a parent, guardian or club administrator. We do not knowingly collect personal data directly from individuals under the age of 16.

13. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated date at the top. We encourage you to review this page periodically.

14. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the UK's data protection authority:

Information Commissioner's Office (ICO)

Website: ico.org.uk

Helpline: 0303 123 1113

We would, however, appreciate the opportunity to address your concerns before you contact the ICO — please reach out to us first at privacy@volleyfest.co.uk.

15. Contact

For any privacy-related queries, please contact the data controller:

James Love — Data Controller

Email: privacy@volleyfest.co.uk

John Lowney — Event Organiser

Email: info@volleyfest.co.uk