Privacy Policy | Royal Mid-Surrey Golf Club

This website is operated by ROYAL MID-SURREY GOLF CLUB. The privacy of our users is extremely important to us and therefore we encourage all users to read this policy very carefully because it contains important information regarding:

Who we are;
How and why we collect, store, use and share personal information;
Your rights in relation to your personal information; and
How to contact us and supervisory authorities in the event that you have a complaint.

Who we are

ROYAL MID-SURREY GOLF CLUB (‘we’, ‘us’, ‘our’) collect, use and are responsible for storing certain personal information about you (‘you’, ‘your’, ‘yours’).

The personal information we collect and use

Personal information is information which you can be identified from (and does not include any anonymised forms of information).

Types of personal information

We may process the following types of personal information in relation to you:

Contact details such as email addresses, postal addresses, telephone numbers and secure bank details such as : Full card details

How your personal information is collected

This section describes how the above types of personal information are collected by us. Your personal information will be collected as follows:

Personal information obtained from you directly

We will sometimes obtain information from you directly, including when you:

Subscribe to the newsletter, purchase a product, create user profile, contact us using the weblink

Personal information obtained by use of cookies or other automated means

We will sometimes obtain information via automated technology. This shall be by use of cookies and other similar technology. A cookie is a small text file which is placed onto your computer or electronic device when you access our website. Similar technologies include web beacons, action tags, local shared objects (‘flash cookies’) and single-pixel gifs. Such technologies can be used to track users’ actions and activities, and to store information about them. Usually this will be in order to monitor and obtain information regarding:

How many times a user visits the website, which pages a user visits, traffic data, location data.

On the first occasion that you use our site we will ask whether you consent to our use of cookies and/or other similar processing technologies. If you do not consent, such technologies will not be used. Thereafter you can opt-out of using cookies at any time or you can set your browser not to accept cookies. However, some of our website features may not function as a result.

For further information on our use of cookies and other similar technologies, please see our policy document as described below.

Additional sources

We shall collect personal information in relation to you from the following sources:

From our specialist phone application, through your device ID on any personal devices, through social media sign ons and through location services.

Changes to the way in which we collect your personal information

In the event that we need to obtain personal information in relation to you from any other source than those described above, we shall notify you of this.

How we use your personal information

General purposes

In general, your personal information will generally be processed for the following purposes:

To enter into a contact for the sale of goods to you, to manage our business and website, to provide marketing to you

Monitoring

We may monitor communications, and in doing so we may obtain your personal information through this process. We will undertake monitoring in the following circumstances:

All calls and emails will be monitored for quality assurance, training, fraud prevention and compliance.

Use of your information for marketing purposes

We have described above that one of the general purposes for which your data shall be processed is for our marketing purposes.

We wish to make you aware that you have the right to object or to opt-out of any direct marketing by:

Unsubscribing on the link contained in all emails

Fraud prevention

We will undertake fraud checks via use of your personal information. This will involve sharing and working with Fraud Prevention Agencies. We do so to protect our own commercial interests (which is encompassed within our own legitimate interests as a business).

In general, your information will be used for fraud prevention purposes:

We will use your information for fraud prevention purposes (with fraud prevention agencies) at the outset of any transaction.

Fraud prevention agencies can hold your personal information for different periods of time, the maximum period being six years.

Lawful basis for processing of your personal information

We have described above the purposes for which we may process your personal information. These purposes will at all times be justified by UK data protection law.

General lawful bases

The lawful basis upon which we are able to process your personal data are:

(1) where we have your consent to use your data for a specific purpose;

(2) where it is necessary to enter into a legal contract with you or to perform obligations under a legal contract with you;

(3) where it is necessary to enable us to comply with a legal obligation;

(4) where it is necessary to ensure our own legitimate interests or the legitimate interests of a third party (provided that your own interests and rights do not override those interests). Wherever we rely upon this basis, details of the legitimate interests concerned shall be provided to you;

(5) where we need to protect your own vital interests (or the vital interests of another person); and/or

(6) where it is needed in the public interest (or where we are acting in our official functions), provided that the task or function has a clear basis in law.

In general, in order to meet the purposes we have described above, we will process your personal information where we have your express consent on each occasion that the data is processed.

Lawful bases specifically applicable to marketing

We will only ever use your personal information to send you marketing directly where we have your explicit consent (which will be obtained in a format separately to this policy).

Sharing of your personal information

On any occasion where any of your personal information is shared with any third party, we shall only permit them to process such information for our required purposes, under our specific instruction, and not for their own purposes. We are required to enter into a formal legal agreement to enable such sharing to take place.

We do not anticipate that we will need to share your personal information with any third party. We will notify should this position change.

Necessity of information

Where information is requested from you and you do not provide this:

It may prevent you from using certain features of the website and / or receiving products.

We will inform you at the point of collecting information from you, whether you are required to provide the information to us.

How long your personal information will be kept

Your personal information will only be kept for the period of time which is necessary for us to fulfil the above purposes.

We envisage that your personal information shall be retained by us for the following:

Name and Postal address – 4 years, Identity documents – 2 months, email addresses – 4 years, bank details – 3 months, IP address – 7 months

After the period described above, your information shall be properly deleted or anonymised.

Keeping your information secure

We will ensure the proper safety and security of your personal information and have measures in place to do so. We will also use technological and organisation measures to keep your information secure. These measures are as follows:

User account access is controlled by a unique username and password;
All data is stored on secure servers. Payment details are encrypted using SSL.

We are ISO 27001 certified. This certification assists us in ensuring the safety of your personal information.

We have proper procedures in place to deal with any data security breach, which shall be reported and dealt with in accordance with data protection laws and regulations. You shall also be notified of any suspected data breach concerning your personal information.

Children

Our website is not intended for children (anybody under the age of 18). We do not intend to collect data from children.

Your rights

Under the UK General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:

(1) fair processing of information and transparency over how we use your use personal information;

(2) access to your personal information and to certain other supplementary information that this Privacy Statement is already designed to address;

(3) require us to correct any mistakes in your information which we hold;

(4) require the erasure of personal information concerning you in certain situations;

(5) receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit this information to a third party in certain situations;

(6) object at any time to processing of personal information concerning you for direct marketing;

(7) object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you;

(8) object in certain other situations to our continued processing of your personal information, or ask us to suspend the processing procedure in order for you confirm its assurance or our reasoning for processing it;

(9) object to processing our your personal information where we are doing so in reliance upon a legitimate interest of our own or of a third party and where you wish to raise to an objection to this particular ground;

(10) otherwise restrict our processing of your personal information in certain circumstances;

(11) claim compensation for damages caused by our breach of any data protection laws; and/or

(12) in any circumstance where we rely upon your consent for processing personal information, you may withdraw this consent at any time.

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on your rights under the General Data Protection Regulations.

If you would like to exercise any of these rights please contact CARL RUTHERFORD in the following manner:

please contact the enquiry form on the homepage of the website.

Your Requirements

If you would like this policy in another format (for example: audio, large print, braille) please contact us using the details below.

Complaints procedure

We hope that we can resolve any query or concern you raise about our use of your information.

The UK General Data Protection Regulation also gives you right to lodge a complaint with the supervisory authority. The supervisory authority in the United Kingdom is the Information Commissioner.

Changes to the privacy policy

This privacy policy was published on 21st February 2022 and last updated on 21st February 2022.

We may change this privacy policy from time to time and will notify you of any changes by:

________

Contacting us

The relevant person to contact regarding your personal information is: CARL RUTHERFORD.

Any requests or questions regarding the use of your personal information should be made to the above named person using the following method:

please contact the enquiry form on the homepage of the website.

Sources of further Information

This policy provides key information to you regarding the processed of your information. For certain areas of our information processing, we have further comprehensive details contained in other documentation. This information can be located as follows:

Our policy regarding the use of cookies and other similar technologies can be located at:

On our cookie policy page on the main website homepage

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.