Loading...

GDPR Compliance Policy

Effective Date: 29/11/24

SEN Sports Ltd ("we", "us", "our") is committed to protecting the privacy and security of personal data and ensuring compliance with the General Data Protection Regulation (GDPR). This policy explains how we manage, process, and protect personal data in accordance with GDPR.

1. Introduction to GDPR
The GDPR is a regulation that protects the personal data of individuals within the European Union (EU) and the European Economic Area (EEA). It applies to all organizations processing personal data of individuals in these regions, including businesses based outside the EU/EEA that offer goods or services to residents.

Under GDPR:

  • Personal Data:is any information that identifies or could identify an individual (e.g., name, email address, IP address).
  • Processing: refers to any action performed on personal data, including collection, storage, use, sharing, or deletion.

2. Data Protection Principles
We comply with GDPR by adhering to the following principles:

  • Lawfulness, fairness, and transparency: Personal data is processed lawfully, fairly, and transparently.
  • Purpose limitation: Data is collected for specific, explicit, and legitimate purposes and not further processed in ways incompatible with those purposes.
  • Data minimization: We only collect data that is adequate, relevant, and limited to what is necessary.
  • Accuracy: Personal data is accurate and kept up to date.
  • Storage limitation: Data is retained only as long as necessary for the purposes it was collected.
  • Integrity and confidentiality: We implement security measures to protect personal data from unauthorized access, disclosure, or destruction.

We do not knowingly collect data relating to children without explicit parental consent.

3. Lawful Basis for Processing
We process personal data only when we have a lawful basis to do so. These lawful bases include:

  • Consent: When you have given clear consent for us to process your data.
  • Contractual necessity: To fulfill a contract we have with you or take steps at your request before entering into a contract.
  • Legal obligation: To comply with the law.
  • Legitimate interests: When processing is necessary for our legitimate business interests, provided these are not overridden by your rights.

4. Data Subject Rights
Under GDPR, you have the following rights:

  • 1. Right to be informed: You have the right to know how your personal data is used.
  • 2. Right of access: You can request a copy of your personal data.
  • 3. Right to rectification: You can ask us to correct inaccurate or incomplete data.
  • 4. Right to erasure (right to be forgotten): You can request the deletion of your data in certain circumstances.
  • 5. Right to restrict processing: You can ask us to limit the use of your data in specific situations.
  • 6. Right to data portability: You can request your data in a structured, commonly used format to transfer it elsewhere.
  • 7. Right to object: You can object to the processing of your data for specific purposes, such as direct marketing.
  • 8. Rights related to automated decision-making: You have the right to object to decisions made solely through automated means, including profiling.

5. Data Security
We implement appropriate technical and organizational measures to safeguard personal data. This includes:

  • Encrypting sensitive data.
  • Using secure servers and firewalls.
  • Regularly reviewing and updating security practices.

In the event of a data breach, we will notify affected individuals and the relevant data protection authority within 72 hours where required by law.

6. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected or to comply with legal, regulatory, or business requirements. Once data is no longer needed, it will be securely deleted or anonymized.

7. Data Transfers
If personal data is transferred outside the UK or EEA, we ensure an adequate level of protection by:

  • Using countries deemed to provide an adequate level of protection by the European Commission.
  • Implementing standard contractual clauses or other approved safeguards.

8. Data Processors
We may engage third-party service providers (data processors) to process personal data on our behalf. We ensure these providers comply with GDPR requirements, including signing data processing agreements.

9. Cookies and Tracking
We use cookies and similar tracking technologies on our website to enhance your experience. You can manage your cookie preferences through our Cookie Policy.

10. Your Responsibility
If you provide us with the personal data of others (e.g., family members), you must ensure you have their consent or other lawful basis to do so.

11. Contact Us
If you have questions about this policy or how we handle your personal data, please contact: