Forty Plus CC is committed to protecting and respecting your personal data.
The club does not have to register under the General Data Protection Regulation (GDPR), as we are an organisation that does not make a profit to enrich others. Nevertheless, we conform to the requirements of the Act
Lawful basis for processing data
The lawful basis for processing data is ‘legitimate interest’. All the personal data is provided by members. Processing of data is for maintaining membership such as subscriptions, disseminating club news/information, distribution of the Fortypluscc magazine Signpost, providing services such as club badges/clothing and insurance when requested via CyclingUK. Fortypluscc does not participate in any marketing activities involving member’s data. Data processing is limited to that necessary for the day to day management of the club.
For the purpose of the GDPR, we are the data controller and Membermojo is the data processor.
Personal Data held
Processed personal data includes:
- Identity Data including Membership Type (single/joint), First Name, Last Name, Date of Birth, Contact No’s, Club Section(s) associated with (and in some cases level of interest). Some Forty plus sections retain records of Emergency Contact details for their local area
- Contact Data including; home address, email address and telephone numbers, preferred Signpost delivery method
- Processed Data includes: Section you ride with. Membership type. Start of membership date, calculated date when honorary status due, date of last renewal, next subscription due date, last donation paid.
- Financial Data such as credit/debit card details are not held by fortypluscc or Membermojo. Payment will be using Paypal, STRIPE or cheque.
We may disclose your information to any of the Officers and Section Leaders of our club and to our suppliers for the purpose of club administration and activities. We may disclose your information to the extent that we are required to by law, legal proceedings or for the purpose of fraud prevention. We do not participate in sharing membership data involving marketing activities.
Security of Personal Data
Retention of Personal data
(unless a member requests the right to erasure):
Club membership last known details of current and past members will be kept indefinitely.
Retention of Transactional records:
Forty Plus CC kit orders will be retained for 5 year (HOLD).
Records for membership subscriptions will be retained for 10 years within the Membermojo system.
Contact emails from committee members containing club news/information will be kept indefinitely.
Member Rights under GDPR
Right of access and rectification:
Members with internet access and an email address can access their personal data through the secure Membermojo link. This link also enables them to update their personal details if they wish to change or correct any errors.
Members without internet access or an email address or their email address has changed, will have to contact the membership secretary direct, establish their identity and advise any changes or corrections to their details. Personal details and any revisions will be posted to their address. See contact details at the end of this document.
Right to data portability: This can be arranged, if required in a csv format.
Right for erasure of data also known as right to be forgotten. If this right is requested it will immediately stop reminders for membership renewal, receipt of club news and receipt of the club magazine Signpost.
Generally the website for fortypluscc.co.uk is open to all. No accounts or passwords are required for viewing any published part of the website and using the web forms, but see exception below. Officers of the club require accounts and passwords to carry out maintenance and updating activities.
Access to Membermojo membership details will be using the members email address in a two-step process or email address and password .
The exception to the above is that viewing ride attendance history, kept by some Forty Plus sections, has to be requested from that section and is allowed only to bona fide members who ride with that section. A member can request that his attendance history is not displayed.
Cookies and Web Beacons
We may also gather information about your general Internet use by using a cookie file and/or a tracking pixel file. Where used, these cookies and tracking pixels are downloaded to your computer automatically and stored on the hard drive of your computer. A tracking pixel is not stored on your computer. They help us to improve our Website and the service that we provide to you.
Routine Information Collection
Google Analytics is used to track site statistics and user demographics,. This information includes, but is not limited to, IP addresses, browser details, timestamps and referring pages. None of this information can personally identify specific visitors to this site. The information is tracked for routine administration and maintenance purposes, and lets us know what pages and information are most visited and therefore useful and helpful to visitors.
Any tracking done by Google through cookies and other mechanisms is subject to Google’s own privacy policies.
Third party websites
Our website includes links to third party websites and we have no control over their privacy policies.
Via the Contact Us page on the website.
Or directly as given below.
|Philip Martin||General Secretaryemail@example.com|
|Roger Hodgson||Membership Secretaryfirstname.lastname@example.org|