Privacy Notice for a webinar on the Blue Book Report 2023
Privacy Notice for a Church of Scotland webinar on the Blue Book Report 2023
Church of Scotland's Office of the Assembly Trustees is providing you with this information to comply with data protection law and to ensure that you are fully informed and we are transparent in how we collect and use your personal data.
Who is collecting the information?
Church of Scotland's Office of the Assembly Trustees is the Data Controller. We have an appointed Data Protection Officer (DPO), Alice Wilson, who can be contacted by emailing: Privacy@churchofscotland.org.uk
Why are we collecting it and what are we doing with it (Purpose)?
Your personal data will be collected for the purpose of running a webinar information session on the Blue Book report 2023 and to enable you to join the webinar.
What personal data do we collect?
Your name and email address.
An email will be issued to all individuals with Church of Scotland email addresses and the General Assembly Commissioners which will contain a link to attend the webinar.
There will also be the opportunity to ask questions in advance of the webinar, this will be via email to the Office of Assembly Trustees (OAT).
How are we collecting this information? What is the source?
There will be an email issued to all individuals with a Church of Scotland email address and all General Assembly (GA) Commissioners. This will contain a link to the webinar to attend.
The lawful basis for the processing
Under data protection law the lawful basis for processing attendee data is UK GDPR Article 6(1)(a) "the data subject has given consent to the processing of his or her personal data for one or more specific purposes."
Who we share the information with:
We use Microsoft to email individuals to advertise the event and includes a link to the webinar. We use Zoom to deliver the webinar. Both of these providers are processors and have appropriate contractual agreements in place with the Church to ensure the appropriate handling of data is done so only on the Church's instruction to Microsoft and Zoom. Both processors hold the data within the UK and the EU so adequate protection of personal data is in place. Other than these processors no other third parties will have access to your data
Details of data transfers to any third countries or international organisations
Participants from outwith the EU can join this webinar. There are appropriate safeguards in place to ensure that data is protected.
The use of Zoom and Microsoft means that data is transferred outside the UK. However, the data is stored in Germany and Ireland where there is already a high standard of data protection laws are in place.
How long do we hold the personal data?
Your personal data will be kept for six weeks after the webinar has taken place and will then be securely deleted following Church procedures. The slides for the event will be made available on the website and a recording of the event will be available. These will be available for six weeks. Following that the recording will be securely deleted following Church procedures.
Do we use automated decision making processes, including profiling?
The Church does not process data in this way.
Individuals' rights in relation to this processing
Individuals have a number of rights under data protection laws. These are detailed here. Not all rights are absolute and some only apply in relation to the lawful basis for processing. For this purpose, the only right that does not apply is the Right to Object. All other rights apply. If you want to exercise any of your rights please contact the DPO at Privacy@churchofscotland.org.uk
As the lawful basis is consent, it's important to note that you can withdraw your consent at any time. To exercise this right please contact OATadmin@churchofscotland.org.uk to withdraw your consent and your request will be processed accordingly.