The Notice Board
General Data Protection Regulation
The deadline for implementation of the General Data Protection Regulation (GDPR) is 25 May 2018. It applies to grassroot clubs like the Fed. and we are legally obliged to comply.
We must say what we do with the data when we collect it.
We must respond to requests for copies of personal data from members within one calendar month.
Fines for non compliance can be up to 20 million euros (!)
Consent to use your data must be obtained.
We must tell you how long we keep your data and we must erase it after that period.
Breaches must be reported to the Information Commissioner’s Office within 72 hours of discovery.
There are additional protections for children’s data.
Data can only be used for the purpose for which it was collected.
We must have a written data protection policy.
This means we will need specific written or electronic consent from every member to keep their data. If we do not have this in place on 25 May 2018 we will erase all your membership details and we will not be able to contact you again!
You will receive a consent form in the near future. Do not neglect to sign and return it