General Data Protection Regulation (GDPR)


How we handle your personal data

As you may be aware, new data protection law - the General Data Protection Regulation (GDPR) - came into force on May 25th 2018.

The GDPR will replace the Data Protection Act 1998 in its entirety and now regulates the processing of personal data in the UK.

Suffolk FA recognise that we collect, hold and process personal data - this article is therefore intended to give you further information about the GDPR, what it is, the main concepts and how the changes might impact on your league or club. We have set out a series of Frequently Asked Questions (FAQs) below which provide further information and summarise the work which Suffolk FA and The FA are undertaking in this area.

In summary, where a league or club relies on an FA system, for example the FA Whole Game System or Full-Time, The FA have ensured FA systems meet requirements on information security and have also updated the associated online terms and privacy notices in accordance with the GDPR. In addition, The FA have made sure contracts are in place with any relevant software providers and with other footballing stakeholders as needed under the regulation.

Where your league/club uses non-FA systems, or processes personal data in hard copy format, these will not be reviewed by Suffolk FA or The FA, and compliance activities will need to be undertaken in respect of such systems and/or processing. See FAQ9 for information on the support available for any compliance activities you may need to carry out.

Muckle LLP and Sport England have also provided some excellent guidance on GDPR for members of the grassroots sporting community.

Muckle‚Äôs Online Training Modules can be found by clicking here while a Sport England GDPR Toolkit is available by clicking here

If you would like to sign-up for our new email Newsletter, please click the icon below.


GDPR email sign up


Get in Touch

Richard Neal - Suffolk FA Chief Executive

01449 616606 (Mon-Fri, 9am-5pm) / 07903 842747