RCCG Open Heavens Christian Centre, Dundee

PRIVACY NOTICE

WHAT IS THE PURPOSE OF THIS DOCUMENT?

The Redeemed Christian Church of God, Open Heavens Christian Centre, Dundee (RCCG Open Heavens Dundee) is committed to protecting the privacy and security of your personal information. This privacy notice describes how we collect and use personal information about you during and after your working relationship with us, in accordance with the General Data Protection Regulation 2018 (GDPR).

RCCG Open Heavens Dundee is a “data controller”. This means that we are responsible for deciding how we hold and use personal information about you. We are required under data protection legislation to notify you of the information contained in this privacy notice.

This notice applies to all members and volunteers of RCCG Open Heavens Dundee, anyone who attends any of our church services, and all users of our website. This notice does not form part of any contract of employment or other contract to provide services. We may update this notice at any time.

It is important that you read this notice, together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal information about you, so that you are aware of how and why we are using such information.

DATA PROTECTION PRINCIPLES

We will comply with data protection law. This says that the personal information we hold about you must be:
1. Used lawfully, fairly and in a transparent way.
2. Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes.
3. Relevant to the purposes we have told you about and limited only to those purposes.
4. Accurate and kept up to date.
5. Kept only as long as necessary for the purposes we have told you about.
6. Kept securely.

THE KIND OF INFORMATION WE HOLD ABOUT YOU

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (called ‘anonymised’ data).

We may collect, store, and use the following categories of personal information about you:

• Personal contact details such as name, title, addresses, telephone numbers, and personal email addresses.
• Date of birth.
• Gender.
• Marital status and dependents.
• Next of kin and emergency contact information.
• Bank account details.
• Location of employment or workplace.
• Information about your use of our information and communications systems.
• Photographs.
• Videos.

HOW IS YOUR PERSONAL INFORMATION COLLECTED?

We collect personal information about members and volunteers directly from you when you attend RCCG Open Heavens Christian Centre, Dundee. We also collect information from website (www.rccgdundee.org.uk) users when they visit our website and complete any of the forms on the website. We may sometimes collect additional information from third parties including former employers and other local Parishes.

We may collect additional personal information in the course of church-related activities throughout the period of you being a member or volunteer at RCCG Open Heavens Christian Centre, Dundee.

HOW WE WILL USE INFORMATION ABOUT YOU

We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
1. Where we need to send information to you about church-related activities.
2. To keep a record of our members and volunteers.
3. Where we need to process any donations made by you to RCCG Open Heavens Christian Centre, Dundee.
4. Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

We may also use your personal information in the following situations, which are likely to be rare:
1. Where we need to protect your interests (or someone else’s interests).
2. Where it is needed in the public interest or for official purposes.

DATA SECURITY
We have put in place measures to protect the security of your information. Details of these measures are available upon request.
Third parties will only process your personal information on our instructions and where they have agreed to treat the information confidentially and to keep it secure.

We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality. Details of these measures may be obtained from the data protection officer or the designated officer within the Church Office.

We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

DATA RETENTION

How long will you use my information for?

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Details of retention periods for different aspects of your personal information are available in our retention policy which is available from the data protection officer or the designated officer for data protection. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you.

WHAT ARE YOUR RIGHTS?

If at any point you believe the information we process on you is incorrect, you can request to see this information and even have it corrected or deleted. If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Officer at communications@rccgdundee.org.uk who will investigate the matter.

If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office (ICO).

No fee usually required

You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

CHANGES TO THIS PRIVACY NOTICE
We reserve the right to update pthis privacy notice at any time, and we will provide you with a new privacy notice when we make any substantial updates. We may also notify you in other ways from time to time about the processing of your personal information. Where required, we will request additional consent for new processing activities, prior to undertaking such processing.
If you have any questions about this privacy notice, please contact the Church office at communications@rccgdundee.org.uk.