Privacy Policy

Data Protection

The club does not have to register under the General Data Protection Regulation, as we are an organisation that does not make a profit to enrich others. Nevertheless, we conform to the requirements of the Act

Lawful basis for processing data

The lawful basis for processing data is ‘legitimate interest’. All the personal data is provided by members. Processing of data is for maintaining membership such as subscriptions, disseminating club news/information, distribution of the Fortypluscc magazine Signpost, providing services such as club badges/clothing and insurance when requested via CyclingUK. Fortypluscc does not participate in any marketing activities involving members data. Data processing is limited to that necessary for the day to day management of the club.

Personal Data held

The personal data includes: Membership Type (single/joint), Forename, Known as, Surname, Date of Birth, Email address, Telephone, Mobile, Address, Club section(s) ridden with, Signpost delivery method. Some Forty plus sections retain records of Emergency Contact details for their local area.

We only process information necessary to establish or maintain membership or support, or to provide or administer activities for people who are members of the club or have regular contact with it. Online processing of subscriptions is by Nochex,  Nochex have to comply with financial regulations and retain personal information for six years, but do not retain card numbers  once a transaction is complete. Nochex are not allowed to use personal data for secondary proposes. See Nochex Privacy Policy for details.

Processed personal data includes: Start of membership date, calculated date when honorary status due, date of last financial transaction, next subscription due, last subscription amount paid, last donation paid, last badge amount paid.

We may disclose your information to any of the Officers and Section Leaders of our club and to our suppliers for the purpose of club administration and activities. We may disclose your information to the extent that we are required to by law, legal proceedings or for the purpose of fraud prevention. We do not participate in sharing membership data involving marketing activities.

Security of Personal Data

Personal Data is held in Google Drive document areas and this data is encrypted. Transmission of this data over the internet to and from club officers computers is encrypted.

Retention of Personal data (unless a member requests the right to erasure):

Club membership last received details of current and past members will be kept indefinitely.

Retention of Transactional records:

Check your membership, update your membership, contact Forty Plus CC, Forty Plus CC kit enquiries will be retained for 1 year

Records for membership subscriptions will be retained for 2 years.

Contact emails from committee members containing club news/information will be kept indefinitely.

Member Rights under GDPR

Right of access and rectification:

Members with internet access and an email address should use the online facility, which can be accessed from the main page of the fortypluscc website. (In preparation). An email will be sent to the members recorded email address with details of their personal data held by the club.

Members without internet access or an email address or their email address has changed, will have to contact the membership secretary direct, establish their identity and update their details. Personal details and any revisions will be posted to their address. See contact details at the end of this document.

Rectification/updating can be done by using a new tool available on ????. Where email or postal address is changed the member will be contacted to ensure that the change is genuine, before personal data in the club database is updated.

Right to data portability: This can be arranged, if required in a csv format.

Right for erasure of data also known as right to be forgotten. If this right is requested it will effectively stop reminders for membership renewal, receipt of club news and receipt of the club magazine Signpost.

Website and Cookie Policy

Generally the websites for fortypluscc are open to all. No accounts or passwords are required for viewing any published part of the website and using the web forms, but see exception below. Officers of the club do require accounts and passwords to carry out maintenance and updating activities.

The exception to the above is that viewing ride attendance history, kept by some Forty Plus sections, has to be requested from that section and is allowed only to bona fide members who ride with that section. A member can request that his attendance history is not displayed.

This policy describes what personal information that is collected on the website and how we use it. (This privacy policy is applicable to websites falling under the primary holder

Cookies and Web Beacons

The cookies on the fortypluscc sites are managed by Google. By using the site you are agreeing to Google terms and Privacy Policy. Google allow some control to the content of adverts shown and collected to you on the internet. See and

Routine Information Collection

Google Analytics is used to track site statistics and user demographics,. This information includes, but is not limited to, IP addresses, browser details, timestamps and referring pages. None of this information can personally identify specific visitors to this site. The information is tracked for routine administration and maintenance purposes, and lets us know what pages and information are most visited and therefore useful and helpful to visitors.

Controlling Your Privacy

Note that you can change your browser settings to disable cookies if you have privacy concerns.

Financial processing

Nochex is our payment services provider and they handle all of our website financial transactions, including applying for membership and membership renewal. All electronic financial transactions entered into through their website are protected by encryption technology. These transactions take place on the Nochex website and subject to the Nochex privacy policy.  Nochex share information with us so that we can maintain our membership records and deal with complaints and queries relating to payments and refunds.

Web forms

We use web forms (such as on the Contact Us page) to gather, store and use personal information that you choose to supply to us.  Before you send us personal information of another person, you must obtain that person's consent. We use such information to answer your queries and to provide information about your membership of the club. The transmission of email information over the Internet is inherently insecure, and we cannot guarantee the security of data sent over the Internet.

We are currently investigating more secure methods of sending email data.



Special Note About Google Sites

Our website is hosted by Google and uses the Google Sites platform.  Information we collect may be transferred and stored in countries that do not have data protection laws equivalent to those in the European Economic Area.

We do not use third party advertising services (such as Adsense) on our websites.

Any tracking done by Google through cookies and other mechanisms is subject to Google's own privacy policies.

Third party websites

Our website includes links to third party websites and we have no control over their privacy policies.

Contact Information

Concerns or questions about this privacy policy can be directed to the Website Secretary

Contact Details

Via the Contact Us page on the website

Or directly as given below.

Tony O'Byrne

General Secretary

07936 683989

Roger Hodgson

Membership Secretary

07989 649526

Edward Palmer


07790 640449