Data Protection: Privacy Notification.
Why we collect information about you, how we might make use of that information, and your rights to see any information held about you.
Under UK Data Protection legislation, the Church Charity Trustees (Elders) of Redhill Baptist Church are the Data Controller and we have an appointed Data Protection Officer (DPO). Redhill Baptist Church is registered with the UK Information Commissioners Office.
We collect some information about you to enable the Church to keep in touch with you, provide pastoral support, assist in matching your skills and interests to volunteering opportunities and to meet its aims and objectives. UK Data Protection legislation allows us to collect, store and process this information as we regard it as being in the Church’s legitimate interest. (In other words, the Church could not function if we were not able to do this!).
The information we hold about you will be stored and utilised in accordance with the UK legislation. This includes limiting access to the information and storage in a secure manner. The information will be removed from our records as specified in our Data Protection policy (available on our website), for example after you cease to be connected to the Church.
If you are joining the Church as a Member, or you are a regular adherent, your name, contact details and information you provide about your areas of interest will be included in our Church Membership files which are available only to the Church leadership, selected pastoral team members and the Church office staff. If you agree, limited contact details will also be included in the Church Directory. This is available online only by secure log-in to Church Members and regular attenders who are provided with a user name and password if their application to the Church Administrator is approved. Your contact details can be removed from this Directory by asking the Church Administrator or the DPO.
Some of the details we may record in order to meet our safeguarding obligations or to provide appropriate pastoral support are classified as “Special Category” data under the regulations. For example, details relating to religious belief, health or DBS checks.
This information will be stored under limited and restricted access conditions and will never be shared or released without your specific consent. You can give permission for the pastoral team to include such information in prayer requests or in the Church Bulletin.
It should be noted that although normally we can remove or destroy your stored details on request, this may not be possible where legal obligations apply.
Occasionally photographs or videos of church events are used for publicity purposes, and may be included on the church website or social media. If you do not wish to appear in any such images, please notify the DPO.
You have the right under legislation to ask to see any information we hold about you (including pastoral support information) by submitting, in writing, a ‘Subject Access Request’ to the DPO (email: firstname.lastname@example.org). You also have the right to ask the DPO for any information about you to be rectified if you believe it to be incorrect.
If you are concerned about the way in which your information is being handled, please contact the DPO in the first instance. If you are not happy with the outcome of this discussion, please speak to the Pastor or one of the Elders who will seek to resolve the matter. If you are still unhappy you have the right to complain to the UK Information Commissioners Office.
Brochure GDPR 1: 11 May 18