Home Tunbridge Wells Cricket Club Membership Site

Privacy Policy

TWCC has policies in place to ensure that the Club complies with the ‘General Data Protection Regulation’ (GDPR), which came into effect on May 25th 2018. The GDPR gives people more control over how organisations use personal information, or data. We value your privacy and want to be clear about the data we collect, how we use it and your rights to control that information. Our policy reflects the high standards established by the General Data Protection Regulation (GDPR). We respect your personal data and we keep it safe and secure We will never sell your data or pass it to third parties. For more detailed information, or if you have specific questions or concerns, please contact our Personal Data Protection Officer, to whom you can send a secure email from the contacts page on our website.

Our policy describes how we collect, store and use personal data

Personal data is collected and used by TWCC for the purpose of recording and managing:

  • Membership, and hence access to the benefits members may derive from the Club, i.e. playing cricket, or participating in, or organising, the social activities of the Club, or being notified of your entitlement to apply for Tunbridge Wells Kent Week tickets
  • volunteers’ participation in supporting and running Club activities
  • paid employee’s payment and tax

The Club acknowledges that:

  • the Committee is aware that Data Protection legislation applies to the Club
  • all officials, staff and members understand how to handle personal data
  • Club officials have given permission for their names and contact details to be made publicly available
  • there is a process to follow if any Personal Data is lost or stolen
  • changes within the Club that affect the use of Personal Data are communicated
  • members understand that broadcast emails can present a security risk
  • personal data will only be used for Club purposes
  • failure to comply with the Data Protection legislation can mean substantial fines as well as reputational damage
  • if a breach occurs, we must notify Information Commissioner’s Office (ICO) within 72 hours
  • if our Club fails to follow these regulations, we may be subjected to GDPR fines
  • our data protection policy must be accessible and that it will be made available on the TWCC website

Personal data

In compliance with the key data protection principles for personal data*, TWCC confirms that data are:

  • processed fairly, lawfully and transparently
  • collected for specified, explicit and legitimate purposes
  • adequate, relevant and limited
  • accurate and, where necessary, kept up to date
  • kept for no longer than is necessary
  • processed in a manner that ensures appropriate security of the personal data
  • not used for automated decision making or and profiling
  • never made available to third parties.

* Data collected are the minimum necessary to manage our activities appropriately on behalf of our members, volunteers and paid employees. Some of specific data that we collect are specified by other organisations, e.g. HMRC and ‘Play Cricket’ (for cricket competitions).

Data security

Personal are held on secure websites

  • TWCC website holds contact details of Club officials, supplied by them
  • Emailmeform website holds details of youth membership original applications supplied by parents/guardians to facilitate membership invitations to join the Club
  • MailChimp website contains lists of members’ email addresses (only) for the purposes of communication with members

Personal data are kept by authorised TWCC Club officers on their own computers

  • Only the Membership Secretary, the Club Chairman and The Youth Chairman have access to the entire membership data
  • Other Club officers are given extracts of the data on a ‘need to know basis,’ e.g. for the purpose of training groups or match management

We operate clear processes for deleting data when they are no longer required for the purposes they were collected.

How we contact members, volunteers, and staff

We seek permission for personal data to be used by us as required, described above, from members, parents/guardians, Club officials, and staff.

Most written Club communications are by email, centred on annual Club memberships. Those who have no access to the internet receive membership-related communications in the post.

We use email handler MailChimp for mass communications and dedicated, @tunbridgewellscc.org.uk, email addresses. We authorise NXT Sportswear to email a shirt voucher to playing members each season. Club officers also send emails from their personal addresses. Where an individual has no access to internet we use the postal system.

Rights given to individuals

Under our policy individuals have the right:

  • to be informed of access
  • to rectification
  • to erasure
  • to restrict processing
  • to data portability
  • to object

Use of Email Tracking Pixels

All emails sent by the system contain a tracking pixel. This is used to track whether each email has been opened by the recipient, and when. This information can be viewed by those users of the system with permission to view email delivery reports. We do not display any information regarding the location of the recipient. Note that the tracking pixel is only activated if the recipient chooses to download images into their email client.

Data Processor

We, Tunbridge Wells Cricket Club, make use of the myClubhouse software supplied by Simmetrics Ltd to process personal data we include on our myClubhouse website in accordance with our privacy policy set out above. Simmetrics Ltd processes your personal data on our behalf and they can only do so in accordance with our written instructions. You can find the details of our data processor’s privacy policy here: http://www.myclubhouse.co.uk/Home/PrivacyPolicy.