Privacy Notice & GDPR Consent

Data Controller

Graham Spicer Table Tennis Club is the data controller for the personal information collected through this website. The club determines why and how your data is processed.

What Data We Collect

Name, email address, and phone number
Membership type and join date
Table Tennis England registration status
Medical information / disabilities (if voluntarily provided)
Payment references (card/bank details are held securely by our payment providers, not by the club)

How We Use Your Data

Managing your club membership and subscription payments
Communicating with you about club activities, sessions, and events
Processing payments via GoCardless or Stripe
Registering you with Table Tennis England where applicable
Generating anonymised reports for club administration

Your Rights

Under UK GDPR you have the right to access, correct, or delete your personal data. You can also request a copy of your data in a portable format. To exercise any of these rights, please contact the club committee.

Data Retention

Your data is retained for the duration of your active membership plus 2 years. Financial records may be retained for up to 6 years to comply with HMRC requirements.

Data Security

Your data is stored securely using Amazon Web Services (AWS) with encryption at rest and in transit. Authentication is managed by Amazon Cognito with multi-factor authentication support.

The full GDPR consent wording will be provided by the club committee and displayed here prior to launch. By registering, you will be asked to confirm that you have read and agree to this privacy notice.

Back to Registration