BUCKINGHAMSHIRE HISTORIC CHURCHES TRUST

Buckinghamshire Historic Churches Trust and The Friends of Buckinghamshire’s Historic Churches

UK GDPR Privacy Statement

Introduction

Buckinghamshire Historic Churches Trust (BHCT) is a registered charity  (No.206471). The Friends of Buckinghamshire’s Historic Churches (FoBHC) is an autonomous organisation within the charity, in effect the support group of the Trust. For the purpose of this document the phrase “the organisation” refers to both BHCT and FoBHC.

This privacy statement has been written in line with the UK General Data Protection Regulation (UK GDPR). For the purposes of UK GDPR the Data controller in relation to the information you supply is:

Buckinghamshire Historic Churches Trust
The Responsible Officers are

BHCT: Philip Hynard
Trustee and Secretary
Secretary@bucks-historic-churches.org

FoBHC Philip Hynard
For and on behalf of the Friends of Buckinghamshire’s Historic Churches
Secretary@bucks-historic-churches.org

The statement is broken down into the following sections:
 1. Why do we have a privacy statement?
 2. What is covered in the privacy statement?
 3. Updates to our privacy statement
 4. What personal information is collected?
 5. How is the personal information used?
 6. How is the information shared or disclosed?
 7. How is the information kept safe?
 8. How long do we keep your personal information?
 9. How to get a copy of your personal information.
 10. How to let us know if your personal information is wrong.
 11. How to object to the use of your personal information.
 12. How to withdraw your consent.
 13. How to complain.

1. Why do we have a privacy statement?
We want you to feel comfortable with the privacy of your personal information. This statement is provided to inform you on how we use and protect the information that you provide to us through email, telephone conversations or face to face and any other mean we interact with you. As a data controller of your personal information, the organisation is committed to protecting and respecting your personal  information. We promise not to sell your data and to give you ways to manage and review your contact preferences at any time.

2. What is covered in this privacy statement?
This privacy policy covers the collection and use of personal information and lets you know what happens to any personal information that you give to us, or any that we may collect from or about you. It applies to all instances where we collect your personal information.

3. Updates to our privacy statement
The organisation may amend this privacy statement from time to time to reflect changes in the law or our privacy practices. If we make any substantial changes in the way we use your personal information we will notify you by email, telephone, in person or via visiting our website.

4. What personal information is collected?
The organisation is unable to provide you with details of our activities if you do not provide certain information to us, therefore we collect the following information from you when you become a member or a supporter of the organisation, take part in its events, supply services to the organisation or apply for grant assistance from the
organisation:

name, address, email, phone numbers (landline and mobile). In relevant circumstances we will also collect bank account details to allow for the payment of invoices and grants.

5. How is the personal information used?
We use your personal data for the following purposes: –

• To administer membership /supporter records.
• To maintain our own accounts and records (including the processing of gift aid applications).
• To inform you of news, events, activities of the organisation.
• To organise events which you attend.
• To make payments to you.

6. How is the information shared or disclosed?
The organisation will not share your personal information with anyone. However, we will send your personal information to specific third parties to fulfil our statutory obligations and otherwise only with your specific consent (for example in connection with the organisation of events).

7. How is the information kept safe?
We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

You are responsible for your contact information to us, and you should notify us immediately of any unauthorised use.

8. How long do we keep your personal information?
We will keep your personal information for as long as we have reasonable organisational needs, which include managing our ongoing relationship with you. Thereafter we will keep your personal information in line with legal and
regulatory requirements or guidance.

9. How to get a copy of your personal information.
You have the right to receive a copy of the personal information we hold about you at any time. Please contact the appropriate Responsible Officers as detailed above.

10. How to let us know if your personal information is incorrect.
You have the right to question any information we have about you that you think is wrong or incomplete. Please contact us if you want to do this and we will take reasonable steps to check its accuracy and correct it.

11. How to object to the use of your personal information.
You have the right to object to our use of your personal information, or to ask us to delete, remove, or stop using your personal information if there is no need for us to keep it. This is known as the ‘right to object’, and ‘right to erasure’, or the ‘right to be forgotten’.

There may be legal or other official reasons why we need to keep or use your data, but please tell us if you think that we should not be using it.

12. How to withdraw your consent.
You can update your contact preferences at any time by contacting the appropriate Responsible Officer. If you withdraw your consent, we may not be able to provide you with details of the organisation’s future activities.

13. How to complain.
Please let us know if you are unhappy with how we have used your personal information. You can contact us via our website, email, telephone or in writing. You also have the right to complain to the Information Commissioner’s Office. The contact details are given below:

Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Helpline number: 0303 123 1113 ICO website: https://www.ico.org.uk

Adopted by the Trustees

Date 28th March 2022