What personal data does Crewkerne Bridge Club collect?
The personal data we routinely collect includes members’ names, contact details (such as email address, postal address and telephone number), and EBU numbers. This data is provided directly by members when they join the club or renew their membership.
For some members, we may also hold additional information such as committee roles, teaching qualifications, tournament director roles, DBS checks (where relevant and with the member’s knowledge), or disciplinary information where necessary.
We collect scoring and results data from club games you play.
How is this personal data used?
Members’ data is used for:
-
administration of club membership
-
communication about club activities and events
-
organisation and running of bridge sessions and competitions
-
publication of results
As an EBU-affiliated club, results data is uploaded to Bridgewebs and to the English Bridge Union for scoring, ranking and Masterpoint purposes.
Who is your data shared with?
Some of your data is processed on our behalf by Bridgewebs as a data processor.
Results and related data are also shared with the English Bridge Union as part of our affiliation and competition reporting.
We do not share members’ personal data with other organisations beyond those connected with the administration of bridge, unless legally required to do so.
Where does this data come from?
Membership data is provided directly by members.
Scoring data is generated from the results of club games in which members participate.
How is your data stored?
Personal data is stored securely in digital form and, where necessary, in paper records.
Digital data is held on password-protected systems, and any remotely stored data is held in compliance with UK GDPR requirements.
Who is responsible for data protection?
Crewkerne Bridge Club is not required to appoint a formal Data Protection Officer. Responsibility for data protection compliance rests with the club committee, with day-to-day oversight delegated to the club secretary.
Who has access to your data?
Access to members’ data is limited to committee members and others who require it to carry out legitimate club functions.
Any third parties given access to data for specific tasks are required to use it only for those purposes.
What is the legal basis for collecting this data?
Personal data is collected and processed under the club’s legitimate interests as a membership organisation and participant in a regulated competitive mind sport.
Some data is retained to comply with legal and accounting obligations.
Special category data
The club does not routinely collect special category data.
The only exception is information about disabilities where a member has explicitly requested reasonable adjustments (for example stationary seating). This information can be updated or removed at any time by contacting the secretary.
Your rights
Members may request access to their personal data by contacting the secretary.
Formal Subject Access Requests will be responded to within one month, in accordance with UK GDPR.
Data may be corrected, restricted or removed on request, subject to legal and operational requirements.
Data retention
Membership contact details may be retained after membership lapses in case a member later rejoins, but will be deleted on request.
Results, rankings and prize lists are retained for historical and statistical purposes and cannot be retrospectively altered.
Financial and administrative records are retained for legally required periods.
If a member dies
The club does not normally retain personal contact data after a member’s death, other than historical results records.
|