At Sport Changes Life we’re committed to protecting and respecting your privacy.
This notice explains how we collect, use, store, retain and disclose the personal data and information that we hold.
The following Privacy Notice forms a part of our ongoing commitment to the fair and lawful processing of all personal data.
We are governed by the following guidelines and legislation:
Data Protection Act 1998
General Data Protection Regulations (GDPR) 2018
What information do we collect about you and why?
Sport Changes Life process personal information and data in order to enable us to support our programmes and fundraising events, maintain our own accounts and records, promote our services, and to support and manage our employees. This also when you use our website, for example, when you contact us about our products and services, to make a donation or if you register to receive our newsletters.
We also use information to support and monitor our services to enable the delivery of high quality healthcare. This type of information will usually be provided in an aggregate or anonymised form, so that we cannot identify an individual.
What type of information is collected from you?
Personal information we collect might include
- Your name, address, IP address and email address.
- employment details, for example for those that work for us either directly or are commissioned by us to provide a service.
- Marketing preferences and services, for example details of the services access or offered by providers.
- visual images, personal appearance and behaviour, for example if CCTV images are used as part of building security.
- Any further information that you choose to tell us.
The information and data described above is collected in a number of different ways and can include:
- Information directly given to us by yourself
- Marketing opt ins
- Completed satisfaction surveys
Note: If you make a donation online your card information is not held by us, it is collected by our third party payment processors, who specialise in the secure online capture and processing of credit/debit card transactions.
How is your Information and Data is used?
- To ensure that our services meet your current and any future needs
- To provide you with any goods and/or services that have been ordered
- To contact you with regards to any enquires that have been made
- Marketing activities for example to send you other Sport Changes Life services such as courses, newsletters or product releases that we feel may be of interest to you
- For Audit and proper administration of our business
- To prepare statistics on fundraising activities
- To help us to establish, exercise, or defend legal claims
How is your Information and Data kept safe, confidential and retained?
To protect your confidentiality it is important to us that all of your information is kept safe and secure.
Information and data that is collected is kept within secure paper and electronic records. Access to these records is restricted to only those who require access.
The Data Protection Act 1998 and as of 25th May, GDPR, regulate the processing of personal information and data. The strict principles within these Acts govern our duty and our use of any data.
The use of Technology allows us to protect personal data in various ways, including the restriction of access. When keeping your information safe, our guiding principle is that we are holding your data within the strictest confidence.
Everyone that works within Sport Changes Life is subject to the Common Law Duty of Confidentiality, the Data Protection Act 1998 and GDPR 2018.
Information that is provided to us in confidence will only be used for the purpose that it was collected for, unless there are other circumstances which are covered by law.
All Sport Changes Life Staff are required to undertake training in Data Protection/GDPR, Confidentiality, IT and Cyber Security and other specialist training dependent on job role.
Who will your Information and Data be shared with?
Unless stated, we have no reason to share any of your personal data with any person or persons outside of our company unless it is required for the use of any third party services relating to any fundraising activities or events hosted by Sport Changes Life. We make sure any third parties with whom we share personal data will use the data only for the purpose of providing their services in relation to the Sport Changes Life project. All third party service providers will be GDPR compliant.
Contacting us regarding your Information and Data.
One of the main objectives of GDPR is to protect and clarify the rights of EU citizens and individuals in the EU with regards to data privacy. This means that you retain various rights in respect of your data, even once you have given it to us. These are described in more detail below.
Within Sport Changes Life there is a designated person who has responsibility for protecting the confidentiality of all of your information.
Under GDPR this person is known as the Data Protection Office (DPO). They can be contacted with any queries relating to your Data and how this is being used.
Data Protection Officer
Under The Data Protections Act 1998 and GDPR any person may request access to the information (with some exemptions) that is held about them.
Data Subject Access Requests (DSAR):
Within the law you have the right to ask us to confirm what information we hold about you at any time, and you may ask us to modify, update or delete such information. At this point we may comply with your request or, additionally do one of the following:
- You may be asked you to verify your identity, or we may ask you for more information about your request
- Where we are legally permitted or obliged to do so, we may decline your request, if this is the case you will receive an explanation why if we do so.
Right to erasure:
In some situations (for example, where your data has been processed unlawfully), you have the right to request us to “erase” your personal data.
Your request will be responded to within 30 days (although we may be allowed to extend this period in certain cases) and will only disagree if certain limited conditions apply.
Once your request has been agreed, we will delete your data but will generally assume that you would prefer us to keep a note of your name on our register of individuals who would prefer not to be contacted. This will in turn minimise the chances of you being contacted in the future where your data are collected in unconnected circumstances. If you would prefer us not to do this, you are free to say so.
You can unsubscribe to our marketing at any time by contacting us and letting us know your preference.
Right to lodge a complaint with a supervisory authority:
You also have the right to lodge a complaint with your local supervisory authority, details of which can be found below:
The Information Commissioner’s Office:
0303 123 1113
How do we store and transfer your Information and Data internationally?
In order for us to operate in the most efficient way, it is possible that we may have to transfer or store your data internationally.
It is important to us to make sure that your data are stored and transferred only in ways which are secure. Therefore we will only transfer personal data outside of the European Economic Area or EEA (i.e. the Member States of the European Union, together with Norway, Iceland and Liechtenstein) where it is compliant with data protection legislation and the means of transfer provides adequate safeguards in relation to your data, for example:
– by way of data transfer agreement, incorporating the current standard contractual clauses adopted by the European Commission for the transfer of personal data by data controllers in the EEA to data controllers and processors in jurisdictions without adequate data protection laws; or
– by signing up to the EU-U.S. Privacy Shield Framework for the transfer of personal data from entities in the EU to entities in the United States of America or any equivalent agreement in respect of other jurisdictions; or
– transferring your data to a country where there has been a finding of adequacy by the European Commission in respect of that country’s levels of data protection via its legislation; or
– where it is necessary for the conclusion or performance of a contract between ourselves and a third party and the transfer is in your interests for the purposes of your ‘opt-in’
- To ensure that your personal information receives an adequate level of protection, we have put in place appropriate procedures with the third parties we share your personal data with to ensure that your personal information is treated by those third parties in a way that is consistent with and which respects the law on data protection.
From 26 May 2012, UK websites are required by law to comply with the EU “Cookie Law” which means that companies must gain the consent of web users before serving them web cookies. The problem is, most people don’t really understand what cookies are and how they are being used already.
As such, we’ve tried to create a simple guide to cookies and help to explain what ‘cookies’ are and how they may affect you.
This website only use’s non-essential cookies and these are used for analytical information only to help us understand where our customers from, when you are on our site which pages you enjoy and also understand which pages are not relevant. We do not hold any information about you and certainly do not pass this on to any third parties.
What is a cookie?
A cookie is a very simple text file that gets downloaded onto your device when you visit a website. They generally contain two bits of information: a site name and a unique user ID. Once the cookie is on your computer, the site “knows” that you have been there before and can then use that knowledge to tailor the experience that you have. The vast majority of commercial websites — be they major online publishers, banks or ecommerce sites — will use them.
What are cookies used for?
Cookies are used for many different functions including auto-filling forms, counting visitors, storing shopping basket items, personalising content, targeting advertising, recording user preferences and for authentication and security. All of this detail will be taken care of by our digital guru.
What is the so-called “Cookie Law”?
The “Cookie Law” stems from a modification to the EU Privacy and Electronic Communications Directive, which took place in November 2009. It aims to safeguard privacy online and protect web users from unwanted marketing. Cookies can be used to build up a profile of where you have been and how you have behaved online. The law aims to make sure that any company seeking to collect information about a web user must ask for their consent first. Prior to this modification, websites had to allow people to opt out of cookies. Now they have to opt in to all “non-essential” cookies. The law was imported into UK law in May 2011, but UK companies were given one year to comply. The deadline for compliance is 26 May, 2012.
Who needs to comply with it?
The law applies to all member states of the European Union. Websites outside of the EU must comply with the law if they are targeting people within member states. So a website based in the USA that sells to people in the UK will also have to comply
What is a non-essential cookie?
Any cookies used for analytical purposes to count the number of visitors to a website, any cookies used by first party or third party advertisers, including affiliates, and cookies used to recognise the user when they return to a website so they receive a tailored greeting or optimised landing page. These are the cookies being targeted by the new EU legislation.