Amblecote Community Church – Charity Number 1132641, Company Number 7005276
General Data Protection Regulation (GDPR)
Data Protection Statement and Privacy Policy
The Data Protection Statement and Privacy Policy below give you information on how ACC collects and processes your personal information. The Elders, Directors & staff team are committed to protecting and safeguarding personal data and other information you give us, and we want to be transparent about how we do this. Data, whether held on paper or electronically, will be subject to the appropriate legal safeguards specified in the GDPR 2017.
Personal Data ACC Collects and Processes
ACC collect information about you and your family with your permission and consent – it may include some or all of the following:-
1. Your name, address and contact details, including email address, telephone numbers, date of birth and gender.
2. Financial information when you provide your bank details for donations.
3. Information regarding specific prayer needs that you want to share.
4. Information can also be gathered when you visit the ACC Website or other Social Media Platforms associated with the church e.g. YouTube, Facebook or Instagram.
5. When you sign-up to attend a special event, or activity e.g. additional teaching sessions.
6. Details of your arrangements as a volunteer.
Maintaining Confidentiality
1. ACC staff, Elders and Directors treat all personal information as private and confidential and will not disclose any data without your permission.
2. ACC staff, Elders and Directors who have access to Personal Data are required to abide by ACC Confidentiality Policy (signed by all staff) and Data Protection Policy.
3. Information will only be shared with statutory agencies or other charities for legal safeguarding purposes.
4. Data we receive is never sold, given away, or shared with anyone unless required by law.
Why is Personal Data Processed?
1. We use your data to enable us to keep you informed of events, activities and announcements connected to ACC.
2. To maintain financial records.
3. For statistical analysis e.g. demographics of the church or to review the attendance at small groups. In these cases no personal data is disclosed.
4. In some cases data is processed to ensure that we are complying with our legal obligations e.g. to comply with health and safety laws.
Who Has Access To My Data?
1. Some information is held on a Database called ChurchSuite. This is the information you provided when you signed-up to want to have regular contact with ACC.
2. We also store your email address in an online email program called Mailchimp, you can find out more at www.mailchimp.com
3. People who have secure and authorised access to the database include ACC staff, Elders & Directors in order to input and monitor information.
4. Access to the database is strictly controlled through the use of name specific encrypted passwords selected by the individual.
5. Those on the paid staff team are authorised to use ChurchSuite and have access to all information stored there. Certain volunteers have access to only the specific areas they require, this includes children and young people’s data in order to comply with safeguarding and health and safety guidelines.
6. On financial matters, only the Financial Administrator, and two Directors have access to financial information.
How is Data Protected?
ACC takes the security of your data very seriously. There are a number of internal policies and procedures in place to try to ensure that your data is not lost, destroyed, misused or disclosed, and is not accessed except by authorised people.
Any data that is held in paper form is kept in a locked cabinet or the safe in the office.
Data is only held for the duration that it is required. We send out ongoing consent requests every other year and everyone has the option to be removed from the database.
Your Rights
1. Be informed what ACC is doing to comply with the GDPR 2017.
2. Ask what information ACC holds about you and why.
3. Obtain a copy of your data on request.
4. Require ACC to change incorrect or incomplete data.
5. Require ACC to delete (the ‘right to be forgotten’) or stop processing your data, e.g. where the data is no longer necessary.
If you would like to exercise any of these rights, please contact one of the Directors in the first instance. If you consider we have not complied with your data protection rights, you can complain to the Information Commissioner.
Your personal data is only held for the time that you give your consent. If at any time you no longer wish to hear from us you can click the unsubscribe button in any email you receive from us or email us on: – office@amblecotecc.org.uk
Last reviewed: September 2025
Next review due: September 2027
If you would like to discuss anything in this privacy notice, please contact the office. To exercise all relevant rights, queries or complaints please contact the Amblecote Community Church office in the first instance;
Email: office@amblecotecc.org.uk
Phone: 01384 375111