By providing your details to The Organisation, you are trusting us with your information. We are aware of peoples’ rights to the information that we keep. This policy sets out how The Organisation deals with your data and privacy when you use or provide information on The Organisation’s website or if you provide information via other means to us.

This policy will help you understand the type of information that we may obtain from you, why we collect it, and how we process them.

Information we may collect

• your name and address
• your mobile phone numbers
• your email addresses
• your age or date of birth
• your gender
• to carry out a DBS check
• the result of a DBS check
• information about why you joined The Organisation
• information about which package subscription you would like to join
• payment details when booking events
• donations to The Organisation and the Grace Basket initiative
• any information you provide to us
• any teams or groups you are involved with
• when you are unavailable for serving on the rota
• dates and times that you are on a rota

Your rights

The General Data Protection Regulations (GDPR) provides the following rights for individuals:

• The right to be informed
• The right of access
• The right to rectification
• The right to erasure
• The right to restrict processing
• The right to data portability
• The right to object
• Rights concerning automated decision making and profiling

To know more about your rights please visit the ICO website.

Your duties

In accessing some of the database, some of The Organisation volunteer members or staff may access personal data of subscribers or The Organisation subgroups. The Organisation maintains confidentiality and ensures compliance in the process of collecting and storing identifiable data. Volunteers would adhere to the below:

• Maintain confidentiality and will not use any information for personal gain or growth.
• Not permitted to download or share information with individuals, groups, or any third party unless consent has been obtained.
• Follow The Organisation guidance protocol set out by the Directors and Executive Founder.
• Any changes must go through the managing Trustees.
• Must obtain permission directly from individuals or organisations when setting WhatsApp (The Organisation is unable to guarantee WhatsApp’s compliance with GDPR).
• Must safely delete unwanted and confidential data.
• Must alert the Director if there is any breach in information, not later than 12 hours after the incident.

Information about you

The Organisation collects personal information each time you are in contact with us whether this is electronic, by paper, in person, over the phone, or on arrival at an event. For example, when you:

• Visit our website
• Sign up for our newsletter
• Sign up for Inothink’s packages (online or by paper), to a fellowship group, to serve on a team, or to find out more information
• Register for a church event or conference
• Provide your contact details, in writing or orally, to staff or volunteers
• Communicate with The Organisation by means such as email, letter, telephone, or face to face
• Purchase goods, services or subscribe, including when you provide credit or debit card details
• Access social media platforms

Processing your information

The Organisation submits to General Data Protection Regulation (GDPR) by keeping personal information up to date; ensuring appropriate storage and destroying personal information; avoiding excessive amounts of personal data; securely guarding personal information against unauthorised access, misuse, theft, loss, and inappropriate disclosure; and ensuring the use of relevant software and technical equipment to safely keep personal information.

The Organisation will obtain and share people’s information based on their consent, authentic interests, and legal requirement. Information that you provide to The Organisation or its service provider will be used for the aims of The Organisation.

Where The Organisation works with other companies that help us provide products and services to you, we may use these companies to store or process your data and your personal information in line with the express consent you have given us.

Legally, The Organisation is required to hold some types of information to fulfil statutory obligations. For this purpose, we will keep your personal information on The Organisation’s systems and database for as long as required. Where we are required by law to disclose your personal information, we will do so.

Our website

In analysing traffic on our website (https://www.inothink.org/) we may use a third-party service such as Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. This is to find out about the number of visitors to the various parts of The Organisation website. We will not identify anyone and will process information in such a way that your information is protected. We do not permit any third-party organisations to identify and use the information we have on people visiting our website.

Use of cookies by The Organisation

You can read more about how we use cookies on our cookies policy link here page.

Our newsletter

We deliver our quarterly newsletters via your preferred means of correspondence. We may use images from events that we have had in order to compose our newsletters.

Should you wish that your images do not appear on this, kindly email us at info@inothink.org.

When we move on to an e-newsletter, you can unsubscribe at any time by using the “unsubscribe” link on the emails that will be sent to you.

Database & GoCardless

The details that you have provided through Churchsuite will be accessible by approving staff or volunteers based on your visibility selection. The data on the secured drive will not be shared with anyone else in the organisation.

You have the right to request that your details be removed from the secured database at any time. If you wish that your details be removed, we will honour your request and remove you from The Organisation’s database.

Payment

The Organisation will handle all payments confidentially. Only approved staff will have access to the Inothink account and treat it with the utmost confidence. Personal data collected through events, the website, or electronic means is stored securely. All payments will be used as identified within The Organisation financial plan.

Directors and volunteers

When communicating and interacting with The Organisation’s volunteers about confidential matters, information may be noted, lawfully processed in a fair way, and kept confidentially and secured.

Social media

We use WhatsApp and Instagram social media platforms within The Organisation. If you send us a private or direct message via social media, this will be stored on the social media platform we currently have. It will not be shared with any other organisations.

With your consent, your images may be taken during events and used on social media platforms. Should you prefer we should not use your information, kindly let The Organisation know. We will remove your picture from our social media platforms if requested. However, we can’t guarantee those who had access to your images before your removal request is received.

Email communication

It is your responsibility to ensure that your email correspondence is non-malicious and that its contents and attachments comply with legal obligations. We monitor emails sent to us, including attachments, for viruses or malicious software. By sending an email, you are giving consent for the recipient to respond unless otherwise stated.

Access & keeping details up to date

The Organisation endeavours to maintain and update your details. If you want to know the personal information we have for you on our database, kindly let us know. The accuracy of your information is important to us and we would urge you to tell us as soon as any of your contact details have changed.

You can request the information we hold about you. Such a request needs to be put in writing and emailed to us or posted to the address below.

Complaints or queries

The Organisation endeavours to meet all expected standards when collecting and using personal information. If we perform below the expected standard, you can make a complaint about how we have processed your personal information. Please contact us using the information below.

Changes to this privacy notice

We keep our privacy notice under regular review. This privacy notice was last updated on 24th October 2022.

How to contact us

If you want to request information about our privacy policy you can email us or write to: