Status will appear here...
Monday 20/8/18 Course open/ Please call to reserve a buggy
Data Protection & Privacy Policy

Data Collection – Privacy Notice - Visitors

 

Introduction

The Club complies with the Data Protection Act 1988 (DPA) and, from 25th May 2018, its successor, the General Data Protection Regulation (GDPR) which regulates how organisations hold and store information that we keep.

 

Aims of the policy

To inform visitors of the lawful purpose under which the Club asks for and holds the data that you provide.

To provide information about the processing of your data together with your rights in relation to that data.

 

Who does the policy apply to?

All visitors making a formal booking for golf or function.

 

Lawful Basis for holding the data

The information will be held and used under the auspices of contractual necessity (e.g. for the completion of the green fee booking) or legitimate interest or regulatory obligation (e.g. provision of information required by governing body).

 

Type of information that we keep

All contact details.

Financial transactions charged.

Catering provided.

Bank details for green fee and other payments.

Date of visit.

Customer satisfaction assessment.

Buggy hire.

CCTV is used for security and resolution of disputes / complaints.

 

Right to object

Visitors have the right to object to the processing of their data based on legitimate interests. The Club's current policy is for processing for storage only.

 

Right to rectification

Visitors have the right to have inaccurate personal data corrected without undue delay.

 

Right to complain

Visitors have a right of complaint to our supervisory body, which is the Information Commissioners Office.

 

Who has access to visitors’ data?

All office staff.

 

General description of data security

Password protection on computer access.

Password protection on software access.

Local server back up to disc.

Off-site back up to cloud.

Network protection through deployment of security software.

 

When are staff trained on GDPR?

Induction training for GDPR delivered to all office staff during May 2018.

New staff receive briefing as part of induction training when they join.

 

Who is the data owner?

Jon Kaltner,

General Manager.

 

How long do we hold data?

We hold data for 6 years following your visit.

CCTV recordings are held for a period of one month.