BARNET CHRISTADELPHIANS: DATA PRIVACY NOTICE
1. Your Personal Data
Personal data relates to a living individual who can be identified from that information. Identification can be from the information alone or in conjunction with other information in the data controller’s possession. The processing of personal data in the UK will be governed by the General Data Protection Regulation (GDPR) which came into force on 25 May 2018.
2. Who are we?
The Trustees of Barnet Christadelphians (also known as the Arranging Committee under the ‘Rules and guidelines for the governance of the church and the spiritual development of its congregation’ of the Barnet Christadelphians [hereafter called ‘the Church’] dated 2017) are collectively the data controller for the church. This means these members decide how your personal data is processed and for what purposes.
3. How is your personal data processed?
The Church complies with its obligations under the GDPR by keeping personal data up to date, by storing and destroying it securely, by not collecting or retaining excessive amounts of data, by protecting person data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate measures are in place to protect personal data.
Personal data is used for the following purposes:
a) Personal data about members: names, addresses, email addresses and ‘phone numbers, dates of birth and baptism and attendance at services:
- for membership purposes; to maintain a list of names and addresses of members
- for financial purposes: to maintain accounting records, including processing gift aid mandates
- for communicating information on services, welfare needs, other activities and news
- for supporting past or present members or their children in times of need where evidence of membership is required
b) Personal data about others (names, addresses and email addresses)
- for communicating information about services
- for sending copies of magazines or educational materials
4. What is the legal basis for processing your data?
a) explicit consent of the data subject
b) processing of data is being carried out by a church which is a not for profit charitable body:
- on behalf of its members, former members or other contacts, for purposes relating only to the activities of the church
- with no disclosure to a third party without the individual’s consent
5. Sharing your personal data
Your personal data will be treated confidentially and will only be shared with other members of the church in order to carry out a service to other members or for purposes connected with the church. We would not share your data with a third party in any circumstances.
6. How long do we keep your personal data?
Data on members:
- contact details are kept whilst members are current
- gift aid declarations and associated paperwork for up to six years after the calendar year to which they relate
- church registers (attendance lists), permanently as part of the archive
- for 5 years after the last contact, after which we would seek renewed permission from recipients of literature, etc
7. Your rights and your personal data
You have the following rights with respect to your personal data:
- you can request a copy of your personal data that the Church holds about you and expect a response within one month
- you can request a correction to any personal data held on you if it is found to be inaccurate or out of date
- you can request that your personal data is removed when it is no longer necessary for the Church to retain it
- you can withdraw your consent to the processing at any time
- you can lodge a complaint with the Information Commissioner’s Office if you think there is a problem with the way your data is being handled
8. Contact Details
Any queries or complains should be directed in the first instance to the Church Secretary at life@the-church-in-a- house.org