GDPR
Just like any other charity or organisation, all Circuits and Churches must comply with General Data Protection Regulations (GDPR). As a District, it means that we must be able to show that we are complying with the principles. We are accountable to both TMCP and Methodist Church House, from whom the most up-to-date guidelines should always be sought.
The GDPR law is a legal requirement but perhaps it is more about protecting you as an individual/organisation and those who attend your churches, rather than about creating a burden of ‘red tape’. It’s about a professional and responsible handling of all the data we use and process as a church.
Privacy Policy – ABSOLUTELY ESSENTIAL
The Circuit Privacy Policy is the one provided by TMCP. Each Church has a copy, and it is available here. The latest version is always available on the TMCP website. This should be displayed on each Church Notice Board, and referenced on each Church Website. Every member of the congregation is entitled to view or have a copy on request.
General Information about GDPR
The following documents would be recommended reading for all Managing Trustees – in other words all members of Church Council or Circuit Meeting.
GDPR At A Glance
GDPR In A Nutshell (a useful booklet to give to all members of Church Council)
Case Studies
9 Steps to Take Now
Lawful Bases Guidance
Local Directories – Guidance
Record Retention Guidance (.XLS) – Updated guidance on how long to keep things
Guidance on Good Passwords
To those who would like further support on GDPR and the protocols we must follow our friends at Sutton Park Methodist Circuit have produced a series of 10 videos talking about the GDPR Data Protection Annual Checklist for Managing Trustees within the Methodist Church.
Check 1 - Review the personal information the Local Church, Circuit or District holds (known as "Data Mapping") https://youtu.be/Gt_J2lrzY-o
Check 2 - Conduct a "Data Cleansing" exercise to destroy any information that is no longer required https://youtu.be/axiEgFCmIRg
Check 3 - Review the Managing Trustees' Privacy Notice https://youtu.be/HY136cVw-hk
Check 4 - Ensure your contact information is correct https://youtu.be/IwXfqEO04gY
Check 5 - Review and Renew Consents https://youtu.be/Dhj5YD4t4NQ
Check 6 - Review the "Processor Record" of the Local Church, Circuit or District https://youtu.be/PhXwtpB5LZo
Check 7 - Review Your Data Security https://youtu.be/qb0SDb4DNrk
Check 8 - Ensure Managing Trustees are aware of their Data Protection Obligations https://youtu.be/rn_H_gAs6Os
Check 9 - Identify Training Needs - https://youtu.be/mRmditczMOk
Check 10 - Liaise with your District Data Champion ('DDC' Kate Dalton) https://youtu.be/8jLfBCRqOC4