GODFIRST CHRISTCHURCH [GodFirst]
GodFirst is committed to protecting and respecting your privacy.
This policy and any other documents referred to in it, together with any other forms for collecting data, sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
We will take all reasonable measures to protect any information you provide to us in accordance with the Data Protection Act 1998 and the General Data Protection Regulations 2018 [GDPR] which states that personal data shall be:
- processed lawfully
- collected for specified, explicit and legitimate purposes
- adequate, relevant and limited to the purposes of collecting the data
- accurate and kept up to date and that inaccurate data is erased or rectified
- kept for no longer than is necessary
- processed in manner that ensures security of such data
- and that the Data Controller shall be able to demonstrate compliance with the regulations.
For this purpose, our Data Controller is the Operations Leader.
Information we collect from you and process
- Information that you provide by completing one of our written forms.
- Additional or renewed information which you provide to us in writing, by email or by telephone.
- Information that you provide by using the church management software – ChurchSuite.
- When you contact us on the telephone, we may ask you to answer questions in order to verify your identity and we may keep a record of any communication.
- Details of transactions which we process for you.
- For Employees: Employment information for the payment of salaries, pensions, PAYE and National Insurance Contributions
- Historical data for compliance, the Giving Statement and Gift Aid audit purposes.
- Other data which is reasonably and fairly obtained to assist us in operating events and safeguarding children and vulnerable adults.
We rely on the information which you provide to us. It is your responsibility to ensure that we are kept advised of any changes to your personal information.
Where we store your personal data
Lawful uses made of personal information
We may process information held about you in the following ways:
- Consent: Where you have given written or online consent. The Trustees of GodFirst consider that this is the primary lawful use of data we receive and process.
- Contract: where there is a specific contract e.g. employment
- Legal obligation: when processing data is necessary for GodFirst to comply with the law. Eg Gift Aid or Safeguarding.
- Vital interests: to protect someone’s life
- Public task: to perform a task that is in the public interest and the task has a clear basis in law.
Disclosure of your information
We will not sell or make available personal data to third parties for any marketing purposes.
Members who resign from GodFirst and the right to have data erased
We will maintain data held on resigned members of GodFirst for audit, regulatory and legal compliance purposes or subsequent follow up. However, anyone whose personal information is stored by GodFirst, has the right to have that data erased from our records at any time.
Access to information
The 1998 Data Protection Act and GDPR gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request will be provided within the timescale set out in the regulations.
All our Terms and Policies are governed by English law and subject to the exclusive jurisdiction of the English Courts.
Written and Approved by the GodFirst Trustee Team