Data protection changes and GDPR in archery

Okay, so this is not the normal sort of thing to find on an archery blog, but I don’t think it can have escaped many peoples notice that the Data Protection laws in the UK are changing. Chances are you’ve had emails from different websites you’ve subscribed to asking for you to agree to new terms and conditions. In other words the dreaded GDPR, with a fast approaching deadline of the 25th of May 2018.
Official bit “The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. “
in short it covers everything from signing up to being a follower to a blog, coaching sessions and records,
photographs at an event, even shoot results. It also has an effect on websites like this one, which is why there is a new Page covering the Privacy Notice statement where I have tried to address the concerns and legal aspects.
I have to say I have found it a bit of a pain and huge headache to work through and must thank my better half Sharon for keeping me sane and also for finding this site from the Sports and Recreational Alliance (https://www.sportandrecreation.org.uk/)
It has a very helpful sub page on GDPR for clubs, which many archery clubs might find useful too.  The site has a series of template documents that clubs and individuals can easily download and edit. (https://www.sportandrecreation.org.uk/pages/gdpr-clubs)
I’m not expert, even after reading all this, but have found this site really helpful, as has Sharon when working through club details for Briar Rose Field Archers.
I’m also updating my coaching notes and application form to comply with the new rules. Those coached by me in the past should already have received an email (if not please get in touch asap).
I hope this helps and thanks for reading.

One comment on “Data protection changes and GDPR in archery

  1. The moment when work and archery passion meet! So if your asking for personal data, name, address, contact details you can rely on the following conditions, I’ve picked the ones that are probably most applicable.

    – Explicit consent – so the individual knows why you want their data, what you’ll do with it, how long you keep it for and how they can remove consent. Consent has to be a positive action, so no preticked boxes.

    – Legitimate interest – if it’s in your legitimate interest to process their information for your needs then you can but this can be challenged.

    Vital interest – if someone can not give consent but their life is in danger you can share their information. A practical example of this is your out shooting and someone falls and is knocked out, you can share their medical details with the ambulance service along with next of kin.

    Next we have special category information, health information, sexuality, ethnicity etc. I suspect you may just collect health information.

    – Explicit consent
    – Vital interests

    Where you can just hold the minimal amount of data to achieve your aim then you should just keep that level of data. For a club I’d also recommend creating a privacy notice that sits on the clubs website and is handed out as part of the welcome pack when a member joins.

    Liked by 1 person

Feel free to leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s