General Data Protection Regulations (GDPR)
Thornbury Indoor Bowls Club (TIBC) GDPR Policy
The General Data Protection Regulation (GDPR) came into force on 25th May 2018. TIBC Executive Committee will be as compliant as possible to help protect Members and prevent the unauthorised use and spread of their personal data.
“The Club” operates from Thornbury Leisure Centre which is run by The Circadian Trust and as such all Club Notice Boards are open to Public View and Membership Details may be made available to the Trust which itself is subject to GDPR.
Personal Data held by The Club comprises Name, Address, Gender, Telephone Number and E-Mail Address where provided. For Junior Members we request the Date of Birth to determine age, but this is not stored. Data is collected via the Registration Process annually.
Data Storage/ Review
Personal Data will be held on computers owned by Club Officers. Club Officers are recommended to ensure active and effective Anti-Virus Software is installed on their computers and that computers are password protected. Data will be stored for up to 3 Years after last registration unless a request to delete the data is received. All members will be required to confirm they have read this policy and consent to their data being used according to it. Parents/Guardians of Junior Members will be required to give consent on the Junior Members’ behalf. Officers of the Club and Team Secretaries will be required to give specific consent for their contact details to be published in the Members Handbook.
Personal Data is held for the sole purpose of effectively managing The Club and any matches that member may play in. No Personal Data held by officers will be passed to any 3rd party except as laid out below nor will it be processed in any way other than to save it in a useable format, e.g. Spreadsheet and/or Email Client Distribution Lists. 3rd Parties that may receive Personal Data include, but are not limited to, Gloucestershire Indoor Bowls Association, English Indoor Bowls Association and The Wessex Bowls League. Note that these organisations use the data to effectively manage their own organisations and will act under their own GDPR Policy. Personal Data may also be posted on Club Notice Boards for the purpose of Match Management and these are on view to the public. When contacting members via e-mail the Club Officers will seek to use BCC so that individual e-mail addresses are not visible to all.
Any breach should be reported immediately to the Chairman and/or Secretary. Your personal rights are in no way impacted by this and you have every right to request a copy of your details or ask us to delete your details if you so wish and if you do not wish to receive any club communications. Please note that e-mail is now the only method used to publish and distribute club information to members, apart from the notice boards in and outside the bowls hall which may be read by the public. Please feel free to contact the Club Chairman if you have any concerns relating to GDPR and our management of it and/or if you wish to have us delete your details.