1. Introduction
The Presbyterian Church of Eastern Australia is an unincorporated association. The church collects data from users of church services, and from persons and businesses that provide services to the church and its organisations. The data collected by the church includes information which can identify you as a person such as your name, your address and other details about you. This information is referred to in Australian Government legislation as ‘personally identifiable information’. The church may also collect sensitive information about or related to you from time to time. Sensitive information includes information which may not personally identify you but is related to a person’s:
· health
· financial status
· racial or ethnic origin
· political opinions
· membership of a political association
· religious beliefs or affiliations
· philosophical beliefs
· membership of a professional or trade association · membership of a trade union
· sexual preferences or practices
· criminal record.
The collection and management of personally identifiable and sensitive information is regulated in Australia and other countries. The church will take every reasonable measure to protect your information. The church’s approach to your privacy conforms to the Australian Privacy Principles extracted from the Privacy Act 1988 (as amended in 2012), which provides guidance about the collection of personal information, how it should be used and disclosed and its storage and security.
The church is committed to protecting your privacy and any personally identifiable and sensitive data you supply to us. This Privacy Policy sets out:
· how and why we collect data including personally identifiable and sensitive data
· what we do with data we collect · how we manage collected data
· with whom we share that data
If you have any questions about this policy please contact us as set out at the end of this document.
2. Scope of this Privacy Policy
As required by government registration or accreditation obligations, certain organisations and activities that may be operated by the church in the future may have separate privacy policies in place.
This Privacy Policy for the church will apply to the collection of data by the church where no other church privacy policy applies.
3. Collection and use of personal information
The church will use collected data including personally identifiable and sensitive information in furtherance of the mission and activities of the church. The church will include some of the information it collects in the church’s permanent archival records.
The church will review information not included in the church archival records, and delete information no longer required for church activities.
The church will use data it collects to promote all of the spiritual, pastoral, social, educational, administrative, legal, and historical functions of the church and for the business requirements of the church.
These church purposes include but are not limited to administration and communication throughout the church, analysing the role of the church in society, recording the histories of church members, adherents, and persons in regular contact with the church, and maintaining records in the public interest, including baptism rolls, wedding registers and other related purposes.
Data collected by the church will only be shared with third parties where such parties have agreed in writing to abide by this policy and to only use such information disclosed for the purposes for which access has been given. In general, information provided to third parties should not be able to identify you as an individual; such information can only be disclosed with your express written consent.
Anyone seeking access to any sensitive information will need to be authorised by the Law & Advisory Committee Convener and the Synod Clerk to ensure there is a specific need for such information and provision of such data does not breach any legislative or confidentiality requirements.
Whenever we share information with third parties, the church will take all reasonable efforts to make sure that these third parties keep such information in the same manner as it is kept by the church, and consistent with the principles as set out in the Privacy Act 1988 as amended.
The majority of the service providers used by the church are based in Australia and are therefore subject to the Australian laws. However the church may from time to time work with service providers such as charities and other church related bodies who are located outside of Australia.
Confidential Pastoral duties
If a minister, other church staff or another body of the church intends to record personal and sensitive information arising from deputations or counselling sessions, any person whose data will be collected should be informed of this and advised that:
a) the records will be kept pursuant to the church’s privacy policy;
b) the purposes for which the collected information will be used; and
c) information collected will not be disclosed to any third party and securely destroyed when the purpose for collection is no longer relevant or it is no longer appropriate to maintain the record(s). For example, the minister has moved parishes or retired.
4. Security and disclosure of information
The church will take all reasonable steps to keep personal, sensitive, and all other confidential or restricted information secure, and to prevent its unlawful use and/or inappropriate disclosure.
The church will, as far as practicable, develop and implement practices and procedures in respect to church archival records. These policies will address:
a) Requiring researchers seeking access to archival records to acknowledge prior to access being granted to the archival records, that:
i) the archival records made available to them are subject to this privacy policy and all applicable legislation; and
ii) the researcher is solely responsible for obtaining any further consent required if the information is to be used outside of the purposes for which it was collected; and
iii) the researcher will be responsible for any breach of this privacy policy and/or relevant legislation caused by the use of information made available by the church; and
iv) the researcher will be required to indemnify the church and the Synod, and/or its agencies in respect of liability for such breach.
b) Require all applicants/researchers seeking access to personal and sensitive information from registers of baptism and/or marriage prior to the provision of such information to:
i) produce evidence that he/she is a subject of the record concerned, or holds the consent of the subject(s) of the record to obtain the information; or ii) establish that the subject(s) of the record are deceased, or can reasonably be presumed to be deceased.
Where the subject of data collected by the church seeks access to his or her personal information or sensitive information collected, it is the policy of the church to grant access, subject to the production of appropriate identification. Such identification must meet the 100‐ point identification test as used by banks and government organisations.
5. Archival records
From time to time in order to assure the preservation of data collected by the church that this church will transfer church registers, minute books, correspondence, photographs and other images, and all other records containing personal and sensitive information to the archives of the Presbyterian Church of Eastern Australia. The exception to this policy is data collected under Confidential Pastoral Duties above.
6. Complaints procedure, designation of Privacy Officer and contact information
Enquiries concerning this privacy policy, and any complaints concerning failure of the church to comply with this policy, or relevant legislation should be addressed in the first instance to the Church’s designated Privacy Officer, who can be contacted via the email address below.
If any complaint is not readily resolved to the satisfaction of the complainant, the matter will be referred to the Synod Clerk, who can be contacted as noted on www.pcea.org.au
The complaint resolution process will include but is not limited to:
a) the matter being handled in a proficient and confidential manner at executive level;
and/or
b) referred to the courts of the church under the provisions of the Handbook of Practice and Procedure of the church; and/or
c) independent arbitration initiated depending on the most suitable action necessary in an attempt to best resolve the matter.
Your acceptance of these terms
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.
Contacting us
If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at:
privacy@pcea.org.au