CHRISTIAN SCIENCE COMMITTEES ON PUBLICATION FOR GREAT BRITAIN AND IRELAND

DATA PRIVACY POLICY

1. The processing and use of personal data is governed by the General Data Protection Regulation (‘GDPR’) which has been incorporated in the Data Protection Act, 2018. This Data Privacy Policy sets out how we handle personal data and explains your rights under the law.

2. The District Manager’s Office (DMO) maintains a list of individuals who are interested to hear about the activities of the Christian Science Committees on Publication. Correspondence with the DMO (and that of the Committee on Publication for Greater London) may be stored electronically, or in an appropriate file.

3. All data is securely held and is available to staff in the DMO and within the office of the Manager, Committees on Publication and in other departments of The First Church of Christ, Scientist in Boston, Massachusetts, as appropriate.

4. All personal data is held either:

a) by consent (persons contacted, recipients of District Manager’s Report, etc.);

b) in our legitimate interest (Committee appointments; Parliamentary monitoring;

Christian Science nursing in the UK; financial records; government relations);

c) in furtherance of our stated charitable objects to ‘correct impositions on the public’ as set out in Article XXXIII of The Manual of The Mother Church); or

d) where required by law.

Some data subjects’ personal information is in the public domain by being listed in The Christian Science Journal.

5. Personal data may be held until the purpose of gathering the data has ceased. Where we make electronic payments to individuals, our bank may store a recipient’s bank details to facilitate future payments.

6. Where personal data is held by consent, you have a right to withdraw your consent, and your personal data will be deleted, unless we are legally required to retain the data. Anyone who has asked to receive news of our activities may request to be removed from the list of subscribers at any time.

7. The DMO complies with its obligations under the Data Protection Act by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure; and by ensuring that appropriate technical measures are in place to protect personal data.

8. All personal data will be treated as strictly confidential and will only be shared with other persons in order to carry out a service to the data subject or for purposes connected with the duties of the DMO. It will not be shared with third parties except with the data subject’s consent; it will not be sold, and it will not be used for marketing.

9. Mailing list data will be retained while it is still current. Data on financial transactions will be retained for at least 6 years, or longer if required.

10. If the DMO wishes to use personal data for a purpose not covered by this Data Privacy Policy, a notice will be issued explaining the use, setting out the purpose and processing conditions and seeking the data subject’s consent.

11. In order to collect the anonymous data described above we use temporary “cookies”, which are small text files sent to your browser and stored on your computer's hard drive.

Cookies by themselves cannot be used to discover the identity of the user, nor do they damage your computer. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer, though this may prevent you from taking full advantage of the website.

12. Data subjects have the right -

• to request a copy of any personal data which the DMO holds about them;

• to request the DMO to correct any personal data that is inaccurate or out of date;

• to request that personal data be erased if it is no longer necessary for the DMO to retain it;

• to request the data controller to provide them with their personal data and, if they wish, send it to another data controller;

• if there is a dispute about the accuracy or processing of personal data, to request a restriction be placed on further processing;

• to object to the processing of personal data;

• to lodge a complaint with the Information Commissioner’s Office; see the website at www.ico.org.uk.

13. This policy will be reviewed every 2 years.

Name and address of organisation:

Christian Science Committee on Publication, UK and Republic of Ireland
Golden Cross House, 8 Duncannon Street
London, WC2N 4JF
Tel. 020 8150 0245

Data controller: District Manager, Committees on Publication, UK and Republic of Ireland

Data protection officer: Field Relations Manager

Adopted: 20 April 2021