1. Introduction to Data Policy
IFB Gaming (hereinafter referred to as “the Organization”), located in London, is dedicated to advancing research and learning in the gaming industry. This Data Policy outlines the principles, procedures, and responsibilities regarding the collection, use, and protection of data within the organization.
2. Data Governance
2.1 Data Stewardship: IFB Gaming designates data stewards responsible for overseeing the collection, processing, and use of data within their respective domains. Data stewards ensure compliance with data protection laws and regulations.
2.2 Data Classification: Data is classified based on sensitivity and importance, with categories such as personal data, research data, financial data, and public information.
3. Data Collection
3.1 Purpose: Data is collected for specific and legitimate purposes related to research, learning, and organizational activities.
3.2 Consent: Whenever applicable, explicit and informed consent is obtained from individuals for the collection and processing of their personal data.
3.3 Data Minimization: IFB Gaming collects only the minimum amount of data necessary to achieve the stated purposes.
4. Data Use and Processing
4.1 Legal Basis: Data processing is carried out in compliance with applicable data protection laws and regulations, relying on legal bases such as contract performance, consent, legitimate interests, and legal obligations.
4.2 Transparency: Individuals are informed about how their data will be used and processed, and any subsequent changes to data usage are communicated transparently.
4.3 Data Accuracy: Reasonable efforts are made to maintain accurate and up-to-date data, with mechanisms in place for individuals to rectify inaccuracies.
4.4 Data Retention: Data is retained for no longer than necessary for the purposes for which it was collected and in accordance with legal requirements.
5. Data Security
5.1 Data Access Control: Access to data is restricted to authorized personnel who require it for their responsibilities.
5.2 Data Encryption: Sensitive data is encrypted during transmission and storage to protect against unauthorized access.
5.3 Data Backups: Regular data backups are performed to ensure data availability and integrity.
6. Data Sharing and Disclosure
6.1 Third Parties: Data is shared with third parties only when necessary for research collaborations, learning programs, or legal compliance. Data sharing agreements are established to safeguard data.
6.2 Data Protection Impact Assessments (DPIAs): DPIAs are conducted for high-risk data processing activities to assess and mitigate potential privacy risks.
7. Data Subject Rights
IFB Gaming respects the rights of data subjects, including the right to access, rectify, erase, restrict processing, data portability, object, and not be subject to automated decision-making.
8. Data Breach Response
In the event of a data breach, IFB Gaming has established procedures to assess and mitigate the breach’s impact and to notify affected individuals and authorities as required by law.
9. Training and Awareness
IFB Gaming provides training and awareness programs to ensure that personnel are knowledgeable about data protection policies and practices.
10. Policy Review
This Data Policy will be reviewed and updated regularly to reflect changes in data processing practices and compliance with relevant laws and regulations.
11. Conclusion
IFB Gaming is committed to responsible data management to support its research and learning objectives while respecting individual privacy and complying with data protection laws and regulations. Any questions or concerns about this Data Policy can be directed to the designated contact point within the organization.
John Adewole
[Founder] IFB Gaming