top of page

Privacy Policy

Last Updated: 20th March 2026

1. Who We Are

Nightcraft (“we”, “us”, “our”) is a UK-based event and festival bar operations business.

 

If you have any questions about this Privacy Policy or how we use your personal data, contact us at:

 

Email: info@wearenightcraft.com

Phone: +44 77 16708466

Address: Nightcraft LTD. The Cottage, Stafford Clays Road, Orsett, Essex, RM16 3LX

2. What this policy covers.

This policy explains how we collect, use, store and share personal data when you:

 

  • visit our website

  • contact us by email, phone or contact form

  • enquire about our services

  • work with us as a client, supplier or business contact

3. What personal data we collect.

Depending on how you interact with us, we may collect:

 

  • your name

  • your email address

  • your phone number

  • your company name

  • details of your enquiry or project

  • correspondence you send to us

  • website usage data, such as IP address, browser type, device information and pages visited

  • cookie and analytics data, where used

4. How we collect your data.

We collect personal data when:

 

  • you fill in a contact form

  • you email or call us

  • you communicate with us about a project or enquiry

  • you browse our website

  • cookies or analytics tools collect technical usage data

5. Why we use your data.

We use personal data to:

 

  • respond to enquiries

  • discuss potential work and provide quotes

  • deliver services to clients

  • manage business relationships

  • maintain records of communications

  • operate, improve and secure our website

  • understand how people use our website

  • comply with legal, tax, accounting and regulatory obligations

6. Our lawful bases for using your data.

Under UK GDPR, we rely on the following lawful bases where relevant:

Contract

Where processing is necessary to take steps at your request before entering into a contract, or to perform a contract with you.

Legitimate interests

 

Where it is necessary for our legitimate interests in running and improving our business, responding to enquiries, managing relationships, keeping records, and operating a secure website, provided those interests are not overridden by your rights.

Consent

 

Where required, including for non-essential cookies or similar technologies. Where we rely on consent, you can withdraw it at any time.

Legal obligation

Where we need to process personal data to comply with legal or regulatory requirements.

7. Cookies & abakytics

Our website may use cookies and similar technologies to help it function, understand traffic and improve performance.

 

Where non-essential cookies are used, we will ask for consent before placing them on your device.

 

You can also control cookies through your browser settings.

 

If you use analytics or tracking tools, name them here, for example:

 

  • Google Analytics

  • Wix Analytics

  • Meta Pixel

 

 

If you do not use non-essential cookies or tracking, remove this section and keep it simple.

8. Who we share personal data with.

We may share personal data with trusted service providers where necessary, including:

 

  • website hosting and website platform providers

  • email and communications providers

  • analytics providers

  • IT and security providers

  • professional advisers such as accountants, legal advisers or insurers

 

 

We only share data where necessary and where there is an appropriate legal basis.

9. International transfers.

Some of our service providers may process personal data outside the UK.

 

Where that happens, we take steps to ensure personal data is protected appropriately, such as relying on adequacy regulations or approved contractual safeguards.

 

If you know your providers, name them here.

10. How long we keep personal data 

We keep personal data only for as long as necessary for the purposes we collected it for, including legal, accounting and record-keeping requirements.

 

As a guide:

 

  • general enquiries: up to 12 months

  • client and project records: up to 6 years after the end of the relationship

  • financial and tax records: up to 6 years or longer where legally required

  • analytics data: according to the retention settings of the relevant provider

 

 

If you use different periods in practice, change them. Do not invent retention periods you will ignore.

11. Your rights

Under UK data protection law, you may have the right to:

 

  • request access to your personal data

  • request correction of inaccurate data

  • request deletion of your data

  • request restriction of processing

  • object to processing based on legitimate interests

  • request transfer of your data in some cases

  • withdraw consent where processing is based on consent

 

 

To exercise any of these rights, contact us using the details above.

12. Complaints

If you have concerns about how we use your personal data, please contact us first.

 

You also have the right to complain to the Information Commissioner’s Office (ICO), the UK regulator for data protection matters.

13. Third-party links

Our website may include links to third-party websites. We are not responsible for their privacy practices. You should read their own privacy policies.

14. Changes to this policy.

We may update this Privacy Policy from time to time. The latest version will always be published on this page.

bottom of page