Privacy policy

As the organizers of the Athina Onassis Horse Show, Victory Equestrian Events B.V. and affiliated companies ("Victory", "we", "us") act as data controllers under the General Data Protection Regulation (“GDPR”) and relevant GDPR implementation Acts and the provisions of other applicable laws, regulations and rules.

As an international equestrian sports organizer, we endeavour to meet and surpass your expectations in all domains, including that of your privacy. We do this by ensuring that we provide quality service and at the same time, protect all your personal data entrusted to us.

Therefore, we would like you to have a clear view of how we are using personal data and the ways in which you can access your personal data and protect your privacy. We do so by way of this privacy policy.

Our privacy policy explains:

  • What personal data information we have and / or collect, and why we collect it;
  • How we use that personal data;
  • Your options and choices with respect to accessing, updating or deleting your personal data;

We encourage you to read this privacy policy very carefully. From time to time, we may need to change this privacy policy. The most recent version of this privacy policy is available on the website of the Athina Onassis Horse Show at If we deem the changes to be significant, we may also inform you via email or when you access our website, of any updates to this privacy policy. You may also write to us at if you have any queries about our privacy policy.

Whose personal data do we collect?

Contracting Partners, Sponsors and Suppliers We retain essential information about our sponsors and suppliers, as required by law, and to fulfil our contractual obligations with them and for protecting legitimate business interests.

Riders and Crewmembers
As required by law, equestrian competition rules, and to fulfil our contractual obligations, we record the personal data of riders, their teams and crewmembers.

Marketing, Communications, Website visitors
We provide you with information, including news, event invitations, or important updates, on a limited-frequency basis, which we think, may interest you. For this reason, we process your personal data in our client relation management systems. You may at any time unsubscribe yourself from our mailing list, by clicking the unsubscribe button at the bottom of each newsletter email. We do not share, license or sell your email addresses.

With respect to other communications, we collect your personal data because you are or have been a participant in or visitor to our events, a visitor to our website or other valued contacts. At all times, we try to send only the most pertinent communications and personalize our communications to the extent possible. Furthermore, we use the information provided by you to better understand the recipients of our communications and to improve our communications.

How do we collect your personal data?

We may collect information about you:
  • directly from you, such as the information you have provided to us at the time of opting-in for any of our communications, such as when you interact with us directly (by email, telephone or letter) or at any event;
  • when you enter into an agreement with us; or
  • when we collect personal data from other sources, such as the FEI, third-party event organizers or publicly available sources such as, the Trade Register, LinkedIn or business' corporate websites.
What are our legal bases for collecting your personal data?

There are six legal bases for lawfully collecting and processing your personal data:
  • Your consent – which is self-evident;
  • Contractual obligations – that we may have to each other;
  • Our legitimate interest – (e.g. managing and administering the relationship with our clients and suppliers, which may include marketing activities)
  • Legal compliance – if we are required by law to process some personal data, such as for identification purposes.
  • Vital interest – if it is in your vital interest that we store some personal information – for example, food allergy information.
  • Public interest – if required by a public authority or in public interest.
In general, we shall collect and process personal data based on your consent, contractual obligations, our legitimate interest and in order to comply with legal obligations.

What personal data do we collect from you?
  • Basic information (such as your name, gender, title, position, the company you work for, your relationship to our organization);
  • Contact details (email, address, telephone numbers);
  • Data necessary for processing invoices;
  • Personal data provided to us in the course of rendering services which may include special categories of data (such as passport number, citizen service number);
  • Data relating to your attendance of events, areas of interest, dietary requirements;
  • Current or future opt-in / opt-out for marketing materials;
  • Current or future opt-in / opt-out for other communications;
  • whether you have opened the communications and or clicked on any links included in the communications;
  • Metrics of your visit to our website;
  • Any other relevant personal data relating to you that you provide to us;
  • Photos, videos with or without sound as captured at any of the events you attend.
For what purposes do we collect this personal data from you?

We collect your personal data to:
  • correctly address you in any communication;
  • process and to respond to requests, enquiries or complaints received from you;
  • manage and administer our relationship with you;
  • comply with regulatory and policy requirements;
  • provide services requested by you;
  • identify services you may be interested in;
  • communicate with you about our services;
  • provide and improve our website by generating statistics regarding the use of the website;
  • monitor and analyse our business processes and systems;
  • handle your job application;
  • business development activities;
  • customize our communications.
With whom do we share your personal data?

Our Partners in the EU
In the context of the purposes as listed above, we may share your personal data with third parties, such as parties that help us organize or host our events and researchers that help us analyse our communications. However, we ensure that there are contractual obligations on all our third-party entities with respect to the handling and protection of your personal data.

Our Partners outside the EU
As a general rule, we do not share your personal data as set out above with other parties located in countries outside the European Union, which countries may offer a lower level of data protection than in the Netherlands. However, this may be difficult if, for example, in the future, we organize an event in a country outside the EU and, hence, the host of our event is located in such country. In such cases, if entities based in non-EU countries are to handle your data, we shall ensure that sufficient measures are always taken to ensure adequate protection of your personal data.

Future Owners
We reserve the right to disclose your personal data to a party who may purchase any or all of our assets. However, we ensure that there are contractual obligations on such third-party with respect to the handling and protection of your personal data.

Law Enforcement Agencies
We reserve the right to disclose your personal data to any law enforcement agency requesting it in connection with the commission of any offence, once we are reasonably satisfied as to the circumstances surrounding the request. We also reserve the right to access and disclose your personal data in order to comply with applicable laws and lawful government requests, to operate our systems properly or to protect our users and ourselves.

How long do we store your personal data?

We will store your personal data no longer than necessary to achieve the purpose stated in this privacy policy or as required by law. The retention period for each category of personal data is based on regulatory and policy requirements and the purpose for which the information is collected and used. How do we protect your personal data?

We have taken appropriate technical and organizational measures to protect personal data against loss or against any form of unlawful processing. The latest version of our data protection policy is available upon request.

What are your rights and how you can exercise them?

The GDPR foresees certain rights for data subjects. You, as a data subject, have the right to:
  • information about and access to your personal data;
  • rectify or correct your personal data;
  • request erasure of your personal data (‘right to be forgotten’);
  • restrict or object to the processing of your personal data;
  • receive your personal data in a structured, commonly used and machine-readable format and to (have) transmit(ted) your personal data to another organization;
  • object against profiling;
  • withdraw your consent for the future to the extent that the processing of your personal that takes place on the basis of your consent.
Should you wish to exercise any of your rights, you may contact our Privacy Officer. The contact details for the Privacy Officer are provided at the bottom of this privacy policy.

Finally, you have the right to lodge a complaint with the Netherlands Data Protection Authority, i.e., the Dutch Data Protection Authority.

If you have any questions, comments or complaints in relation to this privacy policy or the processing of your personal data by us in the context of the communications, please feel free to contact your regular contact within Victory or our Privacy Officer at:


Victory Equestrian Events B.V. Attn.: Privacy Officer Maastrichterweg 245 5556 VB Valkenswaard The Netherlands

30 May - 1 June