Where shooting clubs and syndicates are concerned there is no definitive answer to the question, ‘Do we have to register under the General Data Protection Regulations (GDPR)?’
However, in most cases the answer is likely to be ‘no’. The exemption clause from registering with the Information Commissioner’s Office (ICO) for clubs and syndicates would be “Not for Profit”. This exempt purpose is intended for small clubs, voluntary organisations, church administration and some charities. For further information click here.
‘Personal data’ means any information relating to an identified or identifiable natural person (‘data subject’) who can be directly or indirectly be identified by reference to an identifier such as name, identification number, location data or online identifier. GDPR can apply to automated personal data and manual filing systems.
‘Processing’ means any operation or set of operations which is performed on the personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
‘Controllers’ determine the purposes and means of processing personal data.
To find out whether you are a ‘Controller’ you can take the ICO’s self-assessment questionnaire here
‘Processors’ are responsible for processing ‘personal data’ on behalf of a ‘Controller’.
What to do when processing:
When processing ‘personal data’ it should be:
Information Commissioner’s Office
In addition to the head office in Wilmslow, there are also offices in Scotland, Wales and Northern Ireland. Please send notification forms to the Wilmslow office, not the regional offices.