Privacy & Cookies
Who We Are
We are a small church in North Wales seeking to take the Gospel of Jesus to the communities around us. We are committed to maintaining trust, transparency, and confidence of those that we interact with. We want to ensure that you feel that we deal with your privacy in such a way that will not only show our commitment to the new GDPR data regulations but you as an individual as we treat your information correctly.
Paul Hadley is the Church’s Data Controller and can be contacted by email firstname.lastname@example.org
Types of Data We Collect
If you are a regular attendee of our church we will ask you if you wish to fill in a GDPR consent form then Your name and contact details will be entered into our church database which is stored on a secure cloud server this information is password protected and accessed only by the trustees, Your contact details will be removed from the database once you are no longer a regular attendee of the church. We will contact you annually to check that the information we are holding is accurate and that you still agree to us holding it.
To enable us to provide adequate pastoral support to you and your family, the church elders may record information which may be regarded as sensitive. This information will be stored in password protected documents on secure cloud servers or documents kept in secure locked cabinets the password and access will only be known by the elders. This information will NOT be disclosed to anyone else without your consent.
The exception to this will be that Banking information will be handled by our treasurer trustee.
Member’s contact details are recorded in our printed church directory. A copy will also be kept in the church office. We will not give copies of the Church Directory to anyone else. We will only include you if you give your specific consent for us to do so. You can ask for all or any of your details to be removed (or amended) at any time.
For employees – we collect the following personal information - your name, telephone number, address, email address and bank account details and characteristics – your gender, country of birth, religion etc. The personal data you provide in your application and as part of the recruitment process will only be held and processed for the purpose of selection processes and in connection with any subsequent employment or placement unless otherwise indicated. Your data will be retained only for as long as is permitted by UK legislation and then destroyed.
We collect non-personal data such as IP addresses, details of pages visited and files downloaded. Website usage information is collected using cookies (see the section on Cookies below). If you provide us with any personal data while using our websites we may use it to provide you with any information or services you have requested.
We collect data using cookies. A cookie is a text file that is sent from our website as soon as you visit the site. It is stored on your computer’s hard drive and helps us to identify your computer (not you) and collects information in an aggregated, anonymous way.
Cookies may be used to collect information about your visit to our website, for example, traffic data, location data, device information, the date and time of your visit and the pages that you visit.
Legal ground for processing the data
For church attendees and members
We collect information to enable the church to keep in touch with you and provide pastoral support as appropriate. Data Protection legislation allows us to process this information as we regard it as being in the church’s legitimate interest.
For parents of children attending church
We are collecting this information about children attending the church to enable the church to run the Children's work safely and ensure we can contact you in case of an emergency. Data Protection legislation allows us to process this information as we regard it as being in the church’s legitimate interest. If you are unable to supply the information requested, then we will be unable to accept your child at our Children's Work. You have given consent for us to use this information in this way.
For church employees
We are collecting this information to enable us to enter into a contract of employment with you. If you are unable to provide this information, then we will be unable to enter into that contract.
The Individuals rights under GDPR
Under Data Protection legislation, you have the right to request access to information about you that we hold. To make a request for your personal information contact
You also have the right to:
object to the processing of personal data that is likely to cause, or is causing, damage or distress
prevent processing for the purpose of direct marketing
object to decisions being taken by automated means
in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
claim compensation for damages caused by a breach of the Data Protection regulations.
For further information on how your information is used, how we maintain the security of your information and your rights to access the information we hold on you please contact
If you have a concern about the way we are collecting or using your personal data, you should raise your concern with us in the first instance or directly to the Information Commissioner’s Office at https://ico.org.uk/concerns/
We as a church will review this statement and our policies annually during the month of May to ensure that we remain compliant with any changes, amendments to the current guidance.
The Last review was 30/11/2021