S.T. CATHERINES A.C.
We are committed to protecting your privacy and processing your personal data in accordance with the Data Protection Act (DPA) 1988 up to 24 May 2018 and the General Data Protection Regulation (GDPR) on and from 25 May 2018 (Data Protection Legislation). This policy explains how the information we collect about you is used and kept securely. It also explains your privacy choices when using our website as well as your right to access your information under Data Protection Legislation. It is important that every club makes an inventory of the personal data that it holds and examines it under the following headings:
- Why is it being held?
- How was it obtained?
- Why was it originally gathered?
- How long is it being retained for?
- How secure is it?
- Is it shared with any third parties?
The Information we collection about you
We may collect the following information about you through our membership process and our website/social media: Your name, email address, postal address and any other information you voluntarily provide to us via our online and hardcopy forms for the purpose of registering you as a member of our club or/and entering you in an event that you have chosen to participate in
The information provided to us
We may be provided with information about you from clubs with which you are registered. That information may include: name, date of birth, gender, email address, address, telephone number, name of the Athletics Ireland affiliated clubs with which you are registered and any coaching qualifications or officiating licenses that you hold (Athletics Data).
How we use your information
We may use your personal information for a number of purposes, including:
- To process and manage your membership.
- To deal with your requests and enquiries.
- To contact you for reasons related to your enquiry.
- To notify you about athletic events.
Our legal basis for processing your information
We will process your Athletics Data on the basis of the following legitimate interests:
- To provide selected external providers with a facility to check and validate data to support administrative processes. For example: Transfer of name and date of birth to check membership validation at point of entry to athletics and running events
- The transfer of registered members from one club to another. You will maintain the same record but the club name associated with the record will change.
- Providing relevant and necessary information via email, text and post to you about the following:
- Changes to rules and regulation
- Updates to advice and guidance relating to specific roles held within this club
- Transactional information relating to club affiliation and transfers athlete registration, representative teams, competition and events, coach and officiating licenses, road race licensing, courses, CPD events and qualifications.
If you become a registered athlete with our club we will share your athletics data with Athletics Ireland as to facilitate your membership and as part of the administration of your involvement in the sport.
We will share only what is needed for those purposes and, where possible, will anonymise the data before sharing. If we would like to share your information for any other purpose we will ask for your consent.
When we collect information from you, we will tell you if we would like to send you information about our products and services. We will give you the opportunity to opt in to any such communications and will tell you how you can opt-out at any time.
If we wish to share your data with third parties for marketing purposes, we will tell you about this and only do so if we get your consent. You can opt out at any time either by notifying us,
The club may also share your personal information with An Gardai Siochana and other Statutory Agencies for the purposes of crime prevention, crime detection or the safety of our members.
This is done on a strictly case by case basis and through a tightly controlled process to ensure we comply with Data Protection Legislation.
Protecting your information
The data that we collect from you may be transferred to a destination external to Athletics Ireland own secure network. We will not transfer your data outside of the European Economic Area.
Finding out what information this club holds about you
Under the Data Protection Legislation, you can ask to see any personal information that we hold about you. Such requests are called subject access requests. If you would like to make a subject access request, please email@example.com. You will also need to provide two forms of identification, for example, driving licence, utility bill or passport and, if appropriate, any particulars about the source or location of the information you are requesting. Your club has 30 days to respond to your subject access request.
Any data that we collect from you will be deleted in accordance with timescales set out below:
|Type of Data||When Deleted|
|Name, date of birth, gender, email address, address, telephone number, names of the Athletics Ireland affiliated clubs that you are a member of and details of any coaching or officiating licenses you hold||Three years after an individual has not played an active part in athletics|
|Data on any injuries, medical conditions etc as provided by you to St Catherines AC||One year on the receipt of a new annual membership form or after an individual has not played an active part in athletics|
|Membership forms||Three years in line with association membership bye laws|
|Vetting data and application forms||Four years after the receipt of a vetting application on its expiry|
|Competition results||Indefinite as a record of club sporting results|
|Summer Camp or other training camp applications||One year on the receipt of a new application or not Text or messaging systems One year (rolling twelve months)|
|Team sheets and training attendance lists||Four years after the receipt of a vetting application on its expiry|
What are your Personal Information rights?
You have a number of rights in relation to your data, all of which apply in different circumstances:
- Right of access to Personal Information – you have the right to receive a copy of the Personal Information we hold about you and information about how we use it. This right is applicable at all times when we hold your Personal Information (subject to certain exemptions).
- Right to rectification of Personal Information – you have the right to ask us to correct Personal Information we hold about you where it is incorrect or incomplete. This right is applicable at all times when we hold your Personal Information (subject to certain exemptions)
- Right to erasure of Personal Information – this right is sometimes referred to as ‘the right to be forgotten’. This right entitles you to request that your Personal Information be deleted or removed from our systems and records. However, this right only applies in certain circumstances.
Examples of when this right applies to Personal Information we hold include (subject to certain exemptions):
- when we no longer need the Personal Information for the purpose we collected it
- if you withdraw consent to our use of your information and no other legal justification supports our continued use of your information
- if you object to the way we use your information and we have no overriding grounds to continue using it
- if we have used your Personal Information unlawfully
- if the Personal Information needs to be erased for compliance with law.
- Right to restrict processing of Personal Information – you have the right to request that we suspend our use of your Personal Information. However, this right only applies in certain circumstances.
Where we suspend our use of your Personal Information we will still be obliged to store your Personal Information, but any other use of this information while (subject to certain exemptions) our use is suspended will require your consent.