Sports Clubs and data: Is it OK to keep all my data on a PC?

QUESTION

Sports Clubs and data: Is it OK to keep all my data on a PC?

ANSWER

Simple answer: YES

More detail:  Data should be accurate, private and safe. This means that only people who need access can get the data, and the data is up-to-date, and secure. There are other issues, but in summary the following procedures will help meet the needs of GDPR. Be aware that the data-subject (You or Me) have rights to know what personal information is held and why, so don’t keep more than you need or more than is agreed.

Paperwork

Make sure paperwork is locked-away and only people who are authorised have access. When the paperwork has passed its “sell-by-date” make sure it is secure shredded.

If “snoopy Shiela” is going through your files you are responsible!

Computer Files

Make sure PCs are password protected and encrypted so that if you loose the PC the person finding it (or stolen it) does not have any access to the data on it. Make sure you have up-to-date software and adequate protection against malware. If you share data, or back-it-up make sure they have all the right authority and projections too. When the paperwork has passed its “sell-by-date” make sure it is deleted, and that there are no copies anywhere.

If you give data to or share data with  “dodgy Dave” you are responsible!

MORE DETAIL

If you go to https://gdprjersey.blogspot.com/ you’ll see a lot of Q&As, and down the right column lots of links to advice from Jersey Data Protection Association, Jersey Information Commission Office, as well as Jersey Community Partnership and the Association of Jersey Charities. We are also organising a number of presentations and workshops.