Ashley Green Bridge Club
Release 2.19p
0 0 0 0 0 0
Pages viewed in 2021
Comments?

Any comments on the website please advise Steve Elms

Privacy Policy
AGBC Privacy Notice

The purpose of the General Data Protection Regulation (GDPR) is to provide a set of standard data protection laws across the European Union, making it easier for people to understand how their data is being used and to give individual people greater control over its use. Ashley Green Bridge Club undertakes to collect and use provided personal data in compliance with the GDPR.

 

Contents:

1.    What personal data does the Club collect?

2.    What is this personal data used for?

3.    With whom is Member data shared with?

4.    How is Member data stored?

5.    Who is responsible for ensuring compliance with the relevant laws and regulations?

6.    Who has access to Member data?

7.    What is the legal basis for collecting this data?

8.    How can Members check what data the Club has?

9.    Does the Club pass any data to the EBU or EBED?

10. How can Members ask for data to be removed, limited or corrected?

11. How long does the Club keep Member data for and why?

12. What happens if a Member dies?

13. Can Members download other Member data to use it elsewhere?

14. Can the Club down-load Member data to use it elsewhere?

  1. What personal data does the Club collect?

The data the Club collects is limited to Members’ names, email addresses and telephone numbers. The Club collect this data directly from Members and store it on BridgeWebs.

Some Club Members may have additional information such as Directors, Scorers and teaching qualifications recorded.

The Club collects the scores from games Members play, which are used in maintaining results displayed on the club website, hosted by BridgeWebs.

Members’ and Visitor names are also held within the ScoreBridge system and during an event only on the ArcScorer tablets.

  1. What is this personal data used for?

The Club uses Members’ data for Membership administration and for the communication of information relating to the playing of bridge and the organisation of any special events. The Club provides a limited amount of data for use by the scoring program to ensure that Members’ results are correctly attributed to them.

  1. With whom is Member data shared with?

Membership data is not shared with the EBU or other Bridge Clubs. Indeed, your personal data is not provided by Ashley Green Bridge Club for use by any organisation.

A limited amount of information e.g. name, EBU number (if applicable) listed in the Club Membership database on BridgeWebs is made available for use in the scoring system ScoreBridge to allow the correct identification of players for scoring purposes only.

Members' data will be accessible by the BridgeWebs capability operator as BridgeWebs is resident in "the cloud" as they act as Data Processors on behalf of Ashley Green Bridge Club but they are not free to pass this on to other organisations. BridgeWebs has its own Privacy Policy – refer to the BridgeWebs web site at URL below;

https://www.bridgewebs.com/cgi-bin/bwom/bw.cgi?club=bw&pid=display_home&sessid=802191815071947

ScoreBridge data is retained only on the Club’s specific scoring laptop. Name data stored in ScoreBridge on the computers of scorers prior to the implementation of the ArcScorer electronic scoring system in April 2017 is considered out of date and not relevant, as the ScoreBridge license for those instances has expired.

The telephone numbers and email addresses data that ScoreBridge Software Limited holds on ScoreBridge licensees is solely for ScoreBridge Software Limited to communicate with the licensee. That is restricted to the Webmaster and the Club Treasurer.

When an event is created on ScoreBridge names are sent to ArcScorer in a file on the Club’s specific scoring laptop, which in turn sends a copy to each tablet via a local private network connection that only functions for the duration of the event. Members’ name data is accessible on ArcScorer during the event only. Once an event is over the names are still on the tablet but in a temporary location (the app data folder). No other app can read that data as that is how the operating system is designed on the tablet.

Uploads of ScoreBridge files to BridgeWebs require a password as agreed by the Webmaster with BridgeWebs and the upload takes place over a secure connection.

The ArcScorer tablets and scoring computer (which runs the Club’s instance of ScoreBridge) are always stored in the nominated scorer’s property and are never left in the Memorial Hall.

The Club Webmaster is permitted to have a full backup of the ScoreBridge, BridgeWebs and ArcScorer software on his/her personal home computer.

Members' personal data is not provided by the Club for use by any organisation.

  1. How is Member data stored?

The Club's main Membership database is stored in digital form using the BridgeWebs capability which is operated in “the cloud” in compliance with the GDPR.

Consent Forms are kept in hardcopy stored in a file retained by the elected Ashley Green Bridge Club Membership Secretary.

  1. Who is responsible for ensuring compliance with the relevant laws and regulations?

Under the GDPR the Club does not have a statutory requirement to have a Data Protection Officer. The person who ultimately is responsible for ensuring that the Club discharges its obligations under the GDPR is the Ashley Green Bridge Club Committee Chairman. The day-to-day operation and enforcement of the policy is delegated to the Club Webmaster.

  1. Who has access to Member data?

All Members can access the Membership List via their personal login to BridgeWebs – each Member can see the name, home and mobile phone numbers but not individual email addresses.

Access to the full personal information held on BridgeWebs is restricted to the Club Webmaster and Membership Secretary (both elected Members of the Ashley Green Bridge Club Committee).

Only members of the Club Committee are permitted to send out bulk emails on behalf of the Club.

The Club Committee, listing the up-to-date personnel by role, is available on the website.

  1. What is the legal basis for collecting this data?

The lawful bases for processing are set out in Article 6 of the GDPR. The Legal Basis that applies to the Club is that of Consent where the individual has given clear consent to the Club to process their personal data for a specific purpose.

The Club only collects personal data that is necessary for the purposes of its legitimate interests as a Members Club.

  1. How can Members check what data we have?

Members can see the basic Membership data the Club retains by loging into the Club website using their personal password and select the Members tab option. There Members can see and update all their details and change the permissions as required via the Personal Details page under the Account tab.

Members can contact the Club Webmaster if they wish a hard copy version of the information retained. Legally the Club is required to provide this within one month, though in reality it will be done more quickly.

  1. Does the Club pass any data to the EBU or EBED?

The Club is not affiliated to the English Bridge Union (EBU) so no personal data is passed to them or the English Bridge Education Department (EBED).

  1. How can Members ask for data to be removed, limited or corrected?

If Members want to remove the basic Membership data the Club retain they can log in to the Club website using their personal password and select the Members tab option. Using the Personal Details page under the Account tab the Member can view and amend any or all their details and correct the permissions granted for the use of personal data e.g.

  • Members can select to not be included in the Membership list.
  • Members can select not to be included in any bulk email that may be sent out on behalf of the Club (the Club does not send any email on behalf of other organisations).

Also, Members can on receipt of any email from the Club, click on “Unsubscribe” which will ensure their email address is removed from future emails until at such a time they select to receive emails again. Note only the Member can select to re-subscribe.

  1. How long does the Club keep Member data for and why?

The Club normally retains Members’ data after they resign or their Membership lapses. The data continues to be necessary in relation to the purpose for which it was originally collected and processed e.g. scoring.

  1. What happens if a Member dies?

The Club normally deletes a Member’s information after they die as it can be upsetting to their partner and other Members to be reminded of the deceased.

  1. Can Members download other Member data to use it elsewhere?

Technically it is possible for a Member to copy/paste the Membership List for inclusion in some other format e.g. Word or Excel. Such practice is not permitted.

14.  Can the Club Committee download Member data to use it elsewhere?

Ashley Green Bridge Club Membership Secretary and Webmaster may download Members’ information for use at Committee meetings, but it will not be distributed outside of the elected Ashley Green Bridge Club Committee.

Any queries with this Policy please liaise with either the Club Chairman or Webmaster.

END

SE11May18