PRIVACY POLICY

Lough Rinn Dragons – Privacy Statement (GDPR – Ireland)

1. Introduction

Lough Rinn Dragons is committed to protecting and respecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679 and the Data Protection Act 2018. This Privacy Statement explains how we collect, use, and safeguard your personal data when you engage with our club as a member, volunteer, supporter, or website user.


2. Who We Are (Data Controller)

Lough Rinn Dragons is a community-based dragon boat club operating in Ireland and acts as the “data controller” for the purposes of data protection law.

Contact details:
Email: loughrinndragons@gmail.com
Address: Lough Rynn Amenity Area, Mohill, Co Leitrim, N41 KH22

3. Categories of Personal Data We Collect

We may collect and process the following data:

  • Identity data: name, date of birth

  • Contact data: email address, phone number, address

  • Emergency contact details

  • Membership and participation records

  • Health/medical information (only where necessary for safety)

  • Payment-related information (processed securely where applicable)

  • Images and video recordings from club activities

  • Website data (e.g. IP address, cookies, usage data)

4. Purposes and Legal Bases for Processing

We process your personal data under the following lawful bases:

  • Contract (Article 6(1)(b)) – to manage your membership and participation

  • Legal obligation (Article 6(1)(c)) – to comply with Irish legal requirements

  • Legitimate interests (Article 6(1)(f)) – for the effective running and promotion of the club

  • Consent (Article 6(1)(a)) – for optional communications and use of images

Where health data is processed, this is done under Article 9(2) (explicit consent and/or vital interests).

5. How We Use Your Data

We use your data to:

  • Register and manage membership

  • Communicate training schedules, events, and updates

  • Ensure safety and welfare during activities

  • Organise competitions and liaise with governing bodies

  • Promote the club (e.g. website, social media, press)

  • Administer finances and comply with legal obligations

6. Data Sharing

We only share data where necessary:

  • With national governing bodies, event organisers, or insurers

  • With service providers (e.g. email platforms, payment processors)

  • Where required by law or regulatory authorities

All third parties are required to respect the security of your personal data.

7. International Transfers

Where data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (e.g. standard contractual clauses).

8. Data Retention

We retain personal data only as long as necessary:

  • Membership data: retained for the duration of membership and a reasonable period after

  • Financial records: retained in line with Irish legal requirements

  • Safety-related records: retained only as long as necessary

9. Your Rights Under GDPR

You have the following rights:

  • Right of access

  • Right to rectification

  • Right to erasure (“right to be forgotten”)

  • Right to restrict processing

  • Right to data portability

  • Right to object

  • Right to withdraw consent at any time

You also have the right to lodge a complaint with the Data Protection Commission.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including restricted access, secure storage, and confidentiality procedures.

11. Cookies and Website Usage

Our website may use cookies to enhance user experience and analyse traffic. You can manage cookie preferences through your browser settings.

12. Updates to This Privacy Statement

We may update this statement periodically. The latest version will always be available on our website.