All you need to know about or club
- In line with the Data Protection Act 2018 principles, Smokin Aces Poker Club will ensure that personal data will:
- Be obtained fairly and lawfully and shall not be processed unless certain conditions are met
- Be obtained for a specific and lawful purpose
- Be adequate, relevant but not excessive
- Be accurate and kept up to date
- Not be held longer than necessary
- Be processed in accordance with the rights of data subjects
- Be subject to appropriate security measures
- Not to be transferred outside the European Economic Area (EEA)
Accountability: those handling personal data follow publicised data principles to help gain public trust and safeguard personal data. Visibility: Data subjects should have access to the information about themselves that an organisation holds. This includes the right to have incorrect personal data corrected and to know who has had access to this data. Consent: The collection and use of personal data must be fair and lawful and in accordance with the DPA’s eight data protection principles. Personal data should only be used for the purposes agreed by the data subject. If personal data is to be shared with a third party or used for another purpose, the data subject’s consent should be explicitly obtained. Access: Everyone should have the right to know the roles and groups of people within the organisation who have access to their personal data and who has used this data. Stewardship: Those collecting personal data have a duty of care to protect this data throughout the data life span.
Smokin Aces Poker Club processes the following personal information: NAME, DATE OF BIRTH, ADDRESS, POSTCODE, EMAIL ADDRESS AND PHONE NUMBER of which this Personal information is kept in the site database and at no other location. The stewardship and groups of responsible people within the organisation who will process personal information are Daniel Mitchell, Ian Swanson, Matthew Taylor and Emma Keaveny. Under the Data Protection Guardianship Code, overall responsibility for personal data in Smokin Aces Poker Club rests with Daniel Mitchell. Smokin Aces Poker Club delegates tasks to the Data Controller. The Data Controller is responsible for:- understanding and communicating obligations under the Act
- identifying potential problem areas or risks
- producing clear and effective procedures
- notifying and annually renewing notification to the Information Commissioner, plus notifying of any relevant interim changes
- Ensure any personal data is collected in a fair and lawful way;
- Explain why it is needed at the start;
- Ensure that only the minimum amount of information needed is collected and used;
- Ensure the information used is up to date and accurate;
- Review the length of time information is held;
- Ensure it is kept safely;
- Ensure the rights people have in relation to their personal data can be exercised
- Everyone managing and handling personal information is trained to do so.
- Anyone wanting to make enquiries about handling personal information, whether a member of staff, volunteer or service user, knows what to do;
- Any disclosure of personal data will be in line with our procedures.
- Queries about handling personal information will be dealt with swiftly and politely.
- What information we hold and process on them
- How to gain access to this information
- How to keep it up to date
- What we are doing to comply with the Act.