Data Protection and Privacy

The congregation takes the security and privacy of personal information seriously.  As part of our activities we need to gather and use personal information about a variety of people including members, former members, adherents, employees, office-holders and generally people who are in contact with us. We do not pass any information we hold on to third parties without permission. The Data Protection Act 2018 (the “2018 Act”) and the EU General Data Protection Regulation (“GDPR”) regulate the way in which personal information about living individuals is collected, processed, stored or transferred.  

This policy explains the provisions that we will adhere to when any personal data belonging to or provided by data subjects, is collected, processed, stored or transferred on behalf of the congregation.

This policy contains three main catagories. These are Data Protection, Data Retention and Privacy. Our policies on these can be found by following the relevant links below:

Data Protection
Data Retention

Privacy Notice

In the event of a data security breach the following breach management plan will be implemented:

Data Security Breach Management