Managing risk is not just about health and safety and insurance. It’s about data protection too.
Your club has a responsibility to protect any personal information it holds. Data protection legislation covers everyone about whom you keep personal data. This includes employees, volunteers, service users and funders.
What You Need To Know About the Changes to Data Protection
If your sports club or association holds the personal data (i.e. information that identifies a living individual) about a number of individuals including employees, members, volunteers, athletes, coaches and others, then you need to be aware of the General Data Protection Regulation (‘GDPR’).
The GDPR has been described by the ICO as a “game changer for everyone” and will require all sports clubs and associations to change the way they think about personal data. It comes into effect on 25th May 2018, and organisations will need to use the lead in time wisely in order to ensure compliance by that deadline.
If your organisation is a member of its National Governing Body, then you should contact them with any queries you have on meeting the requirements of GDPR.
Digital Toolkit for Your Club.
Sport and Recreation Alliance provide a handy digital toolkit. It contains advice notes on accountability, data breaches and transfers, guidance on data subject rights and template responses, and a standard club data protection policy.
Watch our short film with Geldards - which offers a basic explanation of what GDPR is, and how it will affect you.
The Information Commissioner's Office also has useful information on how to get ready for the changes.
- WCVA Guidance Sheet
- England Athletics also have some useful guidance for clubs.