Privacy Policy

Church Revitalisation Trust (CRT, we, us) collects and processes information so that we can:

·       manage and administer the charity;

·       administer financial transactions and donations;

·       administer our courses or events;

·       manage our websites and social media accounts;

·       manage our People function; and

·       prevent and detect crime.

 

Manage and Administer the Charity

As a charity, we collect and hold records of people who support us and use this information to coordinate our activities and to keep you informed of the work we are undertaking.  

We also collect and use information about our suppliers, contractors, the Church of England’s national and diocesan staff, and personnel working for relevant public bodies.  This information is used to manage and administer the charity and to carry out our charitable purposes.

 

Financial Transactions and Donations

We keep records of any donations or gifts you have made to us to comply with our legal obligations, but sometimes we may also do some analysis of giving data across the charity. 

Our donor records are held in a separate database, Raiser’s Edge, that is shared with our associated charities (Alpha International, Holy Trinity Brompton and St Paul’s Theological Centre) so that we can effectively manage the way we interact with our donors, many of whom give to more than one of our family of charities.  Raiser’s Edge is owned and controlled by Blackbaud, a US based company, and is certified under the EU-U.S. Privacy Shield framework regarding the collection, storage, transfer, use and other processing of Personal Data transferred from the European Union to the United States. You can click on the following links to read Blackbaud’s Privacy Policy and Privacy Shield Notice.

 

Administering Courses and Events

To effectively manage the courses and events we run we collect different types of information and may also use third party companies to manage our bookings on our behalf (www.eventsforce.com or www.eventbrite.co.uk).  Both Eventsforce and Eventbrite are US based companies, and are certified under the EU-U.S. Privacy Shield framework regarding the collection, storage, transfer, use and other processing of Personal Data transferred from the European Union to the United States.  For more information about how these companies processes data, you can find their privacy notices via these links Eventsforce and Eventbrite.  The Eventsforce Privacy Shield Notice can be found at the top of their Privacy Policy and Eventbrite’s notice can be read at the following page.

 

Collecting Personal Information Provided by Someone Else

Usually we will only process information about you that you have given us yourself, but sometimes someone else, such as a member of your family or a friend, may pass us your details. 

If someone other than yourself provides us with your information, as part of an event or course registration, we may keep your details on record for up to 18 months.  Otherwise, we will generally only keep your details for up to 90 days before we will either delete them or contact you to ask whether you are happy for us to use your information.

 

Cookies and Tracking Visitors

Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. You can read more about how we use cookies by reading our Cookies Policy.

We use Hotjar and Google Analytics to monitor and track visitor behaviour patterns and other information about visitors to our website.  This is entirely anonymous and we do not use this information to try and identify individuals visiting www.crtrust.org. You can opt out of interest-based ads from Google by clicking here and following the directions on that page.

 

Social Media

We do not collect any personal information about you when you interact with us on social media.

 

Staff and Volunteer Management

When you apply for a job or a volunteer role with us your information will be shared with Holy Trinity Brompton who provide HR services to CRT, including recruitment. We use the information you submit to us to process your application and monitor recruitment.

We may need to disclose some of your information to a third party, such as when we need to contact your referees or to carry out a DBS check on you.  We may also share your details with the police or similar statutory bodies if we receive a request from them to do so.  The personal details of unsuccessful candidates may be retained for up to 12 months from the date we notify you.  All employee records are retained for six years after the end of your employment, although in some cases records may be retained for longer periods, but such retention will be subject to periodic review.

 

Holy Trinity Brompton

We use Holy Trinity Brompton to provide us with various operational, financial and professional services including IT, legal, HR and creative services (including some social media).  These functions are provided by HTB to all its associated charities.  You can read HTB’s Privacy Policy here.

 

Contacting CRT

If you have any questions or concerns about how we use your personal information, please do get in contact with us by emailing service@htb.org.

 

Access to Personal Information

If you would like to make a formal Subject Access Request to find out what personal information we may hold about you, your request should be made in writing addressed to Subject Access Requests, Legal Department, Holy Trinity Brompton, Brompton Road, London, SW7 1JA. 

 

Changes to Our Privacy Policy

We keep our Privacy Policy under regular review. The policy was last updated on 1 February 2018.