JJIF

Sanctions

Ju Jitsu International Federation (JJIF) Anti-Doping Data Protection Policy

 

Introduction

At JJIF, we are committed to protecting the privacy and security of personal information in accordance with the World Anti-Doping Agency’s (WADA) International Standard for the Protection of Privacy and Personal Information (ISPPPI). This policy outlines our commitments and practices concerning the handling of personal information of athletes and other individuals involved in sports, ensuring compliance with applicable laws, and maintaining the integrity and ethics of the anti-doping processes.

 

Scope

This policy applies to all staff, contractors, and agents of JJIF who may handle personal data about athletes, support personnel, and other relevant stakeholders.

 

Definitions

– Personal Information: Any information relating to an identified or identifiable natural person.

– Processing: Any operation or set of operations which is performed on personal data, whether or not by automated means.

 

Principles of Data Protection

Our data protection practices adhere to the following principles:

1.        Lawfulness, Fairness, and Transparency: Processing of personal data will be lawful, fair, and transparent to the data subject.

2.        Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes related to anti-doping activities only.

3.        Data Minimization: We ensure that the personal data collected is adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.

4.        Accuracy: Personal data will be accurate and, where necessary, kept up to date.

5.        Storage Limitation: Personal data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.

6.        Integrity and Confidentiality: Personal data will be processed in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

 

Rights of Data Subjects

Data subjects have the following rights:

·      The right to access their personal data.

·      The right to request the rectification of inaccurate personal data.

·      The right to request the erasure of personal data.

·      The right to restrict processing of personal data.

·      The right to data portability.

·      The right to object to processing of personal data.

 

Data Collection

Personal information will be collected only by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.

 

Data Use, Retention, and Disposal

Personal data shall only be retained for as long as necessary to fulfill the statutory purposes of anti-doping activities or as required by applicable law. Procedures for the secure disposal of personal data that is no longer needed will be strictly followed.

 

Data Security

We implement suitable security measures to protect personal data, including physical security, technical measures, and organizational procedures designed to safeguard data against unauthorized access, alteration, disclosure, or destruction.

 

Data Breaches

1.        Identification and Classification: Any identified breach of personal data will be assessed for its severity and potential impact on data subject’s rights and freedoms.

2.        Notification: In the event of a breach likely to result in a high risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority without undue delay and, where feasible, within 72 hours. If the breach is likely to result in a high risk to the rights and freedoms of the data subject, we will also notify the affected individuals directly without undue delay.

3.        Containment and Recovery: Immediate steps will be taken to minimize the impact of the breach and recover any lost data.

4.        Evaluation and Response: An investigation will be conducted to understand the cause of the breach and to prevent recurrence.

 

Data Sharing and International Transfers

Personal data may be shared with other anti-doping organizations, third parties and service providers like the International Testing Agency (ITA) or relevant authorities as required by WADA regulations or applicable laws. All international transfers of personal data will be carried out in compliance with the ISPPPI and applicable legal requirements.

 

Compliance and Training

All employees, agents, and contractors of JJIF involved with the handling of personal data will receive or have already received training on these policies and the relevant legal obligations. Compliance with this policy will be monitored and enforced by the Data Protection Officer (DPO).

 

Policy Review and Updates

This policy will be reviewed annually and updated as necessary to reflect best practices and legal requirements.

 

Contact Information

For any inquiries regarding data protection, please contact the Data Protection Officer via email: [email protected]