Data Protection Policy (GDPR)
The information that we collect enables the Beach churches to run Holiday Club safely and ensure we can contact you (or other nominated adult) in case of an emergency. Data Protection legislation allows us to process the information as we regard it as being in the Holiday Club’s legitimate interest. If you are unable to supply the information requested then we will be unable to accept your child at our Holiday Club.
​
Policy statement
In accordance with the General Data Protection Regulations (GDPR) which became law across the EU in May 2018, BEACH CHURCHES TOGETHER HOLIDAY CLUB is committed to protecting all personal information (data) that we handle, and to respect people’s rights about how we deal with their information. This policy explains our responsibilities and how we will meet them.
We process personal data to help us:
keep every child safe during Holiday Club by keeping contact numbers in case of an emergency
safeguard children
maintain our accounts and records​
contact you for future events
Why this policy is important
We will make sure that we collect and process all personal data lawfully and fairly, and that it is accurate and up to date. We will also store it securely and ensure it is not kept longer than necessary.
​Anyone processing personal information on behalf of Holiday Club is required to comply with this policy. Anyone who intentionally breaches the Data Protection Policy or has misused any personal data, may be subject to disciplinary action or be liable to prosecution.
What personal information do we process?
The information that you supply to us will be held in paper and electronic form and kept securely and all is protected under data protection law. The personal data we process can include information such as names, contact details, and photographs of children. Only the Holiday Club leaders will have access to this information.
When we need consent to process data​
When we are required to get your consent to collect information, we will clearly set out what data we require, why we need it, and how we plan to use it. Consent can, however, be refused and can also be withdrawn at any time.
Storing and protecting your data
We will not keep personal data longer than is necessary for the purposes that it was collected for unless given permission, and we will use appropriate measures to keep data secure at all points of the processing. Your personal details will be destroyed/deleted once Holiday Club had finished unless you have ticked the box asking us to keep you informed about future activities we think your child might be interested in attending. If this is the case we will retain your details for the sole purpose of notifying you of such events. We will NOT pass on this information to anyone else. You have the right to ask to be removed from this circulation list at any time.
Your rights regarding personal data​
We will process personal data in line with the GDPR and you have the right to:
request access to any of your personal data held by us, and we will respond as soon as possible and at the latest within one calendar month
ask to have inaccurate personal data changed
withdraw your consent at any time
If you are concerned about the way your information is being handled please contact the Holiday Club Administrator (the Data Processor).