The Good Shepherd Mission
Approved by Trustees on: 11 April 2018
Next Review Date: April 2021
This policy sets out how The Good Shepherd Mission (GSM) protects your privacy. This policy sets out the different types of personal data we collect, why we collect it and what you can do if you would like to remove your data or change any details we may hold. It also outlines the legal rights you have in respect to your personal data. This policy seeks to provide you with the information required by the European General Data Protection Regulations (GDPR), coming into force on 25 May 2018. These rights are not affected by Brexit.
2. The basis and purposes for GSM holding personal data
Your consent will be obtained for GSM to hold personal data about you. This will be obtained through you giving consent by emailed or paper consent forms or through our website. We will ask for your consent when you request information about our activities, make a donation, or volunteer with us.
The purposes for us holding your data are:
GSM will never use your data for automated ‘profiling’, i.e. to evaluate personal attributes such as economic situations or personal preferences.
3. Categories of Personal Data held by GSM
We collect information such as your name, home address, email address and phone number for the above purposes. If you support GSM financially, we will hold data provided by you on donation, standing order or Gift Aid forms. This is so that we can process your gifts and keep necessary charity accounting records. We do not store details of any debit/credit cards. Any other information you provide, such as feedback on activities/newsletters, are used to develop the work of GSM.
3.1. Data stored by the GSM website
4. Who is my data shared with?
Personal data held by GSM is not shared with external parties unless required for:
5. How do we ensure your data is secure?
The main GSM database of supporters is stored on the GSM computer and backed up to secure online storage. All digital storage of data is password protected, with access restricted to GSM staff as necessary. Similarly, financial records are password protected and backed up online. Names of donors are kept anonymous when possible. Paper forms are stored in a locked filing cabinet in an office which is locked when nobody is using it. Banking information is protected by our bank’s strict security measures.
6. How long do we hold your personal data for?
GSM seeks to build long-term relationships with our supports over a period of years. In view of this, we retain your details as follows:
You have the right to request that your data is deleted at any time. However, there are some situations where we are legally required to hold information for a certain amount of time, eg relating to donors. If you request that your data is deleted we will either delete your data or inform you why we are unable to do so.
7. Your rights and your personal data
You have the following rights with respect to your personal data:
When exercising any of the rights listed below, in order to process your request, we may need to verify your identity for your security. In such cases we will need you to respond with proof of your identity before you can exercise these rights.
1. The right to access information we hold on you
we will respond within one month.
2. The right to correct and update the information we hold on you
3. The right to have your information erased
4. The right to object to processing of your data
5. The right to data portability
6. The right to withdraw your consent to the processing at any time for any processing of data to which consent was sought.
7. The right to lodge a complaint with the Information Commissioner’s Office.
Good Shepherd Mission
17 Three Colts Lane, London, E2 6JL
Tel: 020 7739 3822