7 - The Gold Standard of giving people access to their personal data
In this article you will: see that you can give people direct access to a submit a Subject Access Request using a sports club management system.
When it comes to GDPR, the ‘standard’ and therefore minimum requirements that you must meet when your club members / parent submit a Subject Access Request (or a Data Request) are:
• Provide them with their data within 30 days of them asking for it
• Provide it to them in a digital format that is easily transferable and can be used elsewhere (such as a CSV file for example)
• Supply them with the information using a secure process
It’s widely accepted that GDPR will bring more admin to any type of club. There more members a club has, the more admin this could potentially involve, especially if there aren’t robust systems in place.
By using a service that enables secure logins by members / parents themselves to access the data you hold on them, huge amounts of your time can be saved when people ask to see their data. The same is true for updating and deleting any personal data.
Although quite a small article, this piece shows you that there is a way to accelerate your GDPR compliance process, and at the same time save lots of time on your club admin.