General Data Protection Regulation
The General Data Protection Regulation (GDPR) came into UK law under the Data Protection Act 2018. This provides individuals with more rights and protection regarding how their personal data is used by organisations. It also requires organisations to be more conscious of, and intentional about, data protection.
A toolkit has been developed to help parishes and churches manage personal data protection within their context, drawing from feedback and experience across the Diocese. This is provided along with other useful resources below:
We advise our parishes to take the following policies into account as they implement their own personal data protection policy:
Keep or Bin - The Care of Your Parish Records, The Church of England Record Centre - provides guidance on the retention period for personal data in the context of parish records.
A Safe Church, Southwark Diocese - provides guidance on data collection and retention relating to safeguarding.
If you have data protection queries, concerns or comments we would love to hear from you, please email firstname.lastname@example.org