Betfair Trading Community is dedicated to ensuring that personal information is handled with care and securely, to protect our members and guests of the website. This page aims to help you understand what information we may collect, how we will use it, and how it is stored and protected.
What is the GDPR?
The General Data Protection Regulations came into force on 25th May 2018. These regulations replace the Data Protection Act 1998 and enforce stricter rules on how companies within the European Economic Area (EEA) are able to process and store data. The regulations also give individuals more rights to access and manage the data that companies hold.
The rules not only apply to all companies that are based within the EU, but also companies that offer products or services to individuals within the EU. The UK government have also already written the new GDPR rules into UK Law, so they will still apply once the UK leaves the EEA.
What are the legal bases for data collection?
We need to collect and process personal data to perform our contractual obligations with you. This legal basis is normally used when you purchase one of our services.
For Example: We need to collect your name and email address when you sign up, so that we can send you information on how to access the website and our software.
We may be required by law to collect and process your personal data.
For Example: We can pass details of people involved in fraud or other criminal activity affecting Betfair Trading Community to law enforcement.
We may collect and process personal data for our own legitimate interests in ways that are reasonably expected to run our business.
For Example: We use member data to monitor trends in demand to help our marketing and setting our prices. We monitor members to offer our members exclusive discounts and offers.
We may collect and process your personal data with your consent.
For Example: You join our mailing list to receive relevant content from us.
What personal data does Betfair Trading Community collect?
Betfair Trading Community collects data at all stages of the customer journey. This is to ensure that we can provide the best customer service and fulfil all our contractual obligations.
When you visit our website we anonymously collect data on which pages you visit and how you use our website. We use this data to make improvements to our website and ensure that users are able to easily sign up to our services. You may be shown a cookie banner for us to obtain consent to this.
When you sign up via the website or submit a contact form on the website, we collect some or all of the following information: Your name, your email address. We use this data to fulfil our contractual obligation to you in setting up your member account or delivering the content you have requested.
When you sign up or add paid modules to your membership, we may collect your payment method details, for example your Paypal address or payment card details. We use this data to fulfil our contractual obligation to you.
When you make an enquiry through the website contact form we may collect some or all: Your name, your contact number, your email address. We use this data to respond to your enquiry.
When you enter competitions we may collect: Your name, your email address. We use this data to pick a winner and keep entries updated on the competition.
When you sign up for our newsletter. We use this data to send out our regular newsletter to individuals who have consented to direct marketing.
When you interact with us on social media. We use this data to monitor our customer service performance.
Data use for legitimate interests
We may also process all data that we hold for legitimate interests of the company. This may include the following activities:
- Monitoring website performance
- Monitoring customer service performance
- Monitoring social media performance
- Reporting on trends within the market to better help plan promotions and prices
How does Betfair Trading Community store your data?
We know how much security matters to all of our customers, therefore, we always treat your data with the utmost care and take all appropriate steps to protect it. We ensure all of our websites are secured using ‘https’ technology to ensure data in transit is encrypted and secure. Where possible we do not store any personal data locally on company premises. All data is stored in our third-party systems and any local copies are immediately destroyed. We have strict data security policies in place that all our staff understand and agree to. This is to ensure that all data is processed and stored correctly and in a secure manner. We ensure all our third-party systems meet the General Data Protection Regulations and are PCI compliant where required, which enforces even stricter rules. Access to these systems is only given to staff members who require it to complete their daily tasks. Each system is secured via a ‘https’ connection and only accessible via a password-protected portal. All sensitive data such as payment card details are secured and tokenised outside of the systems our staff can access to ensure they are protected. We regularly monitor our systems for possible vulnerability and attacks, and we carry out penetration testing to identify ways to further strengthen security.
How long do we keep your data?
When we collect or process your personal data we will only keep it for as long as necessary for the purpose for which it was collected. After this retention period, your personal data will either be deleted completely or anonymised, for example by aggregation with other data so that it can be used in a non-identifiable way for business statistical analysis and planning
Who do we share your data with?
We do not share your personal information with any third party.
The GDPR gives individuals more rights to how companies collect and process their personal data. Under the guidelines you have the following rights:
- You should always be informed how personal data will be used at the point of collection
- You have the right to request access to any and all personal data that a company holds
- You should be able to instruct a company to update and correct any information that they hold on you
- You have the right to request a company deletes any personal data that they may hold
- You can instruct a company how they can and cannot process your personal data
- You have the right to request a copy of all data a company hold on you in an easily usable electronic format
Right to access personal information
Under the new guidelines, you have the right to request a copy of any information Betfair Trading Community currently holds about you at any time and also to have that information corrected if it is inaccurate. To ask for your information please email firstname.lastname@example.org . To ask for your information to be updated please contact a member of the team.
Right to withdraw consent
Whenever you have given us consent to process your personal data, you have the right to change your mind and withdraw that consent at any time.
Where we rely on our legitimate interest
In cases where we are processing your personal data for legitimate business interests, you can ask us to stop for reasons connected to your individual situation. We must then do so unless we believe we have a legitimate overriding reason to continue processing your data.
You have the right to stop the processing of your data for any and all direct marketing activity through all channels, or selected channels. We must always comply with your request. You can either contact us directly to stop direct marketing or click the unsubscribe button on any marketing email you may receive from us to stop all future marketing campaigns being sent.
Checking your identity
To protect the confidentiality of all personal data we hold, we will ask you to verify your identity before proceeding with any request for information. If you have instructed a third-party to make the request on your behalf, we will ask them to prove they have your permission to do so. Contacting the regulator If at any point you feel that your data hasn’t been handled correctly, or you are unhappy with any response to requests you have the right to lodge a complaint with the Information Commissioner's Office. You can contact them on 0303 123 1113 or go to www.ico.org.uk/concerns. If you are based outside of the UK, you have the right to lodge your complaint with the relevant data protection regulator in your country.
We hope that this privacy notice is helpful to understand how and why we process your personal data when using our services. If, however, you have any questions or concerns about the information provided in this notice, or about how we process your data, please feel free to contact us. You can email us at email@example.com .
This notice was last updated on 22/05/2018