GDPR (General Data Protection Regulation)
On Friday 25th May 2018 the General Data Protection Regulation (GDPR) replaced the Data Protection Act 1998. GDPR has brought significant changes regarding accountability and how data is captured.
If your sports club/ organisation collects and uses personal data, then GDPR does apply directly to your club.
Personal data refers to any information that allows an individual to be identified directly or indirectly by that information, it can include but is not limited to; name, IP address, email addresses, photographs.
To comply with GDPR make sure you have a record of all the personal data you hold, you may want to carry out an audit. An audit template can be found here.
Under the GDPR you are not permitted to handle or process any such data without satisfying a relevant condition for processing as set out in the GDPR. This is not optional.
There are several organisations with information available to help your club navigate GDPR. Below are some ideas of where to start:
Both the Sport and Recreation Alliance and Club Matters have resources available regarding GDPR including, a toolkit with templates for you to download; and a podcast produced by Club Matters which any club can access.
For further support and information, you can contact your local Council for Voluntary Services:
Local law firm Muckle, Newcastle has some grassroots specific advice and guidance available for community clubs and organisations.
If you require further information on GDPR, there is a wealth of knowledge on the following websites:
Remember, complying with the GDPR is not optional and organisations that breach the regulations can be subject to extremely heavy fines.
If you have any questions please contact Jade Scott, Club Development Manager, email@example.com or 0191 497 2329.