GDPR

On May 25th 2018, the EU GDPR regulations come into force. These regulations are designed to protect the privacy of individuals and details the steps that organisations must follow.

These replace the current EU Data Protection Directive (95/46/EC) and the UK Data Protection Act (1998).

Under the GDPR legisation, organisations with under 250 employees are exempt from the requirement to maintain a record of all data processing activities (Regulation 30).

However, we want to be as transparent as possible with the data we hold and how we use it. The following information is in addition to the information in our Privacy page.

As a Data Controller

The controller is simply the organisation or person who collects, uses and is responsible for, the protection of personal data.

As a Data Controller we collect information about golf events and the organisation holding the event. This includes details of a contact from the organiser who is to be our point of contact.

This details of event organisers includes:

  • Organisation name
  • Contact name
  • Email address
  • Telephone number

To make our platform more interactive, players can choose to share their details with other players and event organisers. When doing this, players can select which details they share.

Players can choose to share their information with:

  • Event Organisers
  • Friends
  • Friends-of-Friends
  • Everyone

Players can create an account with us to view the events they have played in. When creating an account, we ask for the following details:

  • First name
  • Last name
  • Email address
  • Phone number
  • Date of birth
  • Profile photo
  • Dietary requirements

As a Data Processor

Data Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

As a Data Processor we shall not process the data provided, except on instructions from the data controller, or the individual player whos details we have been given, unless required to do so by Union or Member State law.

When creating an event, we ask to be supplied with the following information, which is needed to add and identify the player within the event scoring system:

  • Player name
  • Player handicap
  • Email address (optional)
  • Profile photo (optional)

Emails

We will not send newsletters to website users without their consent. All of our newsletters will contain a way to unsubscribe from future newsletters.

We may send transactional emails to users to allow them to use our system without interruption. Transactional emails are emails that are sent as the result of an action taken on the website or by a trigger action.

Transactional emails include:

  • Registration confirmation
  • Forgotten password emails
  • Event registration emails

We may also send transactional and other emails to players with the consent of the events Data Controller. When doing this, the Data Controller will be mentioned in the emails, along with the reason the email has been sent.

These emails may include:

  • Event registration confirmation
  • Event updates
  • Event results