Your data is important to us
We're a membership organisation which means at our heart is our students and the information process to make your University experience incredible. As a constituent group of the Student’s Association, we also employ staff, work with suppliers and have customers for our commercial services so the information on this page is for those people too.
The way we manage and process your data is governed by the General Data Protection Regulation (GDPR) when it comes into force in May 2018, and this will replace all data protection legislation in EU member states (including the UK's Data Protection Act 1998) without the need for further national legislation.
These web pages aim to explain how we manage your information in line with GDPR and what this means for you. We've been really open and transparent on these pages to help you be fully informed and understand your rights. You can see:
- How we access your data
- How we assess our processing activities
- How we gain consent and how you can change your preferences
- The training any data processors go through
- Who else processes data about you;
- Our policies for processing data
individual data rights
Your data rights
In each of the privacy statements set out above we outline how you can enact your rights. It's important you understand your data rights and we recommend you visit the ICO website for more information.
The Sports Union is not a publicly funded body, and therefore is not subject to FOI requests. However every individual has a right to control the data we hold on themselves. Our privacy statements outline how to complete a SARF.
our legal basis for processing your data
The Sports Union carefully curate marketing and communications that might be relevant to you. Sometimes we need to send essential information where we believe there is a legitimate interest in you receiving this.
We always provide a way to opt out in our communications without affecting your membership and we will never sell your data to third parties.
To help us deliver our charitable services we use external service providers who have limited access to your data and these are carefully managed by contracts and high levels of security standards.
Below we have outlined some of those who may process your data and where possible linked to their security:
We carefully assess data processing activity before handling personal information.
When you use our referral services with USSA, we want you to be assured of our confidentiality.
We regularly review our compliance with statutory regulations and sector best practice.
We have a handbook to guide those processing practices of those who handle personal data.