Privacy Policy

Privacy Policy

DATA PRIVACY NOTICE – THE TAB CHURCH, LONDON

The Tabernacle Global Ministries (“the Tab Church”) is committed to protecting and respecting your data privacy. This policy outlines the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following to understand our processes regarding your data and how we will treat it.

 

1. WHO WE ARE?

The Tabernacle Global Ministries (referred to below as “The Tab Church”, “we”, “our”, “us”) is the data controller. This means it decides how your personal data is processed and shared and for what purposes. This Privacy Notice covers all activities of our organisation. We operate a limited company (company reg. 07022352) and a (charity reg. 1132617) from our registered office address at 233-241 Lewisham High Street, London, England, SE13 6NQ.

 

2. YOUR PERSONAL DATA – WHAT IS IT?

Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation (GDPR).

 

3. PRIVACY NOTICE SUMMARY

This Privacy Notice describes how we collect, use, share, store or otherwise process the information we hold about you. Your personal information allows us to provide a range of services related to environment, social, and governance reporting and mitigation solutions.

 

4. HOW DO WE MANAGE AND YOUR PERSONAL DATA?

We keep personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure; and by ensuring that appropriate technical measures are in place to protect personal data.

 

5. WHAT INFORMATION DO WE COLLECT?

When you interact with our organisation, our products, and our services, we collect information about you and our interaction. Generally, this may include:
• Your personal details,
• Contact information, and preferences,
• More sensitive information, for example when you tell us about dietary requirements, or disabilities, such as when you attend one of our events,
• Information about your activities within our organisation,
• Conversations when you call us,
• Information about the devices you use to interact with us.

Where you provide information to us about other people, you need to make sure you have their permission to do so.

 

6. WHEN AND HOW WE COLLECT YOUR INFORMATION

We may collect information you provide to us directly and indirectly when interacting with our activities. This may include such interactions as:
• Make an initial approach to use by email or on the phone,
• Create, use or manage an online account, if you have one,
• Visit our website or use our apps,
• Fill out our online forms or registration cards,
• Access our internet facilities,
• Use social media login functionality,
• Interact with us in online forums, by email, text, or on social media,
• Complete our research surveys.

 

7. OUR PROCESSORS

There may be situations where we use data processors – companies who act on our behalf – to collect your information for us. These processors can only use your information in accordance with our instructions and for the purposes stated in this Notice published on our websites and partner websites.

We also receive information about you indirectly when you interact with us. For example, when you visit our websites or use our apps the devices you use may provide us with your general location (like which country or region you’re in), if you are using ad-blockers, and your IP address. We may also receive information from cookies and other technologies that are on your device or browser. For more information on our use of cookies, please see our Cookies Notice.

 

8. OUR PARTNERS AND THIRD PARTIES

We may receive personal information about you from various third parties, including individuals and organisations that support and promote our activities and charitable work. It is important for you to be aware of and review the privacy policies of these third parties, as they will handle your information according to their own privacy practices.

In our mission-driven work, we may also gather information about you from our partners and other organisations, who have obtained your consent to share your data with us. This can occur through both online and offline channels and may include insight providers. We are committed to ensuring that your personal information is handled with care and respect, in alignment with our values and principles.

 

9. LEGAL BASIS FOR USING YOUR INFORMATION

All organisations need a legal reason to use your personal information, if they don’t have one, they can’t use it. There are a number of legal grounds that enable data processing. It’s quite complicated but below are the most relevant grounds you should be aware of:
With your consent (C)

There are some activities where we process personal information with your consent, which you are able to withdraw at any time. For example, where we want to send you newsletters and similar messages by email, we would ask your permission first and you could opt-out at any time. We will indicate in the Notice where we rely on consent.
To fulfil a contract (A)

We also process your personal information to fulfil a contract we have with you. For example, when you gain employment or purchase a service from us, we will process your information to administer that transaction.
For a legitimate interest (LI)

Legitimate Interest means the interest of our charity in conducting and managing our charitable activities to enable us to give you the best church community, events, products and services and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
To comply with legal obligations (LO)

There may be situations where we need to use your information to comply with legal obligations. For example, we are required by law to keep certain records of visitors in case there is an emergency, so we can make sure you’re safe, or carrying out obligations under social security or social protection law.

 

10. PURPOSE AND USE OF PROCESSING YOUR PERSONAL DATA

The reason we use your information will often be obvious from the way you interact with us. We have detailed below, the legal bases for processing your personal data. Where there is more than one, the exact grounds will depend on the activity. See the section above for an explanation of each.

(a) To enable us to provide a voluntary service for the benefit of the public in a particular geographical area as specified in our constitution; (b) to manage our relationship with you, such as for support, or to tailor our activities to your preferences, where you tell us about them, (c) to provide linked services, like joint activities with partners, (d) Allow social sharing functionality (e) for carrying out obligations under employment and collective agreements C, LI, A
Make decisions about what direct marketing to show you based on how you have interacted with us, to improve our products and services online and offline, including our websites and apps LI
(a) Comply with legal obligations on us, and (b) to keep you safe and ensure your security, especially to safeguard children, young people and vulnerable adults (c) To help prevent and detect crime (including, for example, the prevention or detection of fraud). LO, LI
(a) To send you product or service related communications, service messages; (b) Facilitate the restructuring or sale of all or part of our business; (c) To manage our employees and volunteers; (d) To maintain our own accounts and records (including the processing of Gift Aid claims, borrowing); (e) To audit and/or administer our accounts; (f) establishment, defence and/or enforcement of legal claims. LO, LI, C, A
(a) To administer membership records; (b) To raise funds, fundraise and promote the interests of the charity; meet contractual requirements (c) To inform you of news, events, activities, and services running at The Tab Church and send you direct marketing, where you have consented; (d) To provide services through our community initiatives. C, LI

Processing special categories of data
As we fall into the category of not-for-profit body engaged in political, philosophical, religious, or trade union activities, under specific circumstances we can process special categories of data. We can only process these types of data of our current and former members (or those who have regular contact with it in connection with those purposes).

Additionally, we maintain a strict policy that prohibits the sharing of your special personal data with any third parties unless we have received your explicit consent.

 

11. USE OF CCTV CAMERAS

In compliance with the General Data Protection Regulation (GDPR), the Tab Church and Headquarters (HQ) operate CCTV cameras to enhance the safety and security of all individuals present on the premises. The CCTV cameras are positioned to capture images of individuals in public spaces, including all public areas, classrooms, and car parks at both the Church and HQ.

We ensure that clear and visible signs are displayed to inform individuals that CCTV is in operation. The data captured by the CCTV cameras is retained for a period of 28 days, after which it is securely deleted.
We adhere to strict data protection principles and ensure that the use of CCTV is proportionate, and the data collected is kept secure and only accessed by authorised personnel.

Any individual captured on CCTV has the right to access the footage in which they appear, and we are committed to responding to such requests in a timely manner, in accordance with GDPR guidelines.

 

12. CHANGE OF PURPOSE

If we wish to use your personal data for a new purpose, not covered by this Data Protection Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.

We will only use your personal data for the purposes for which we collected it unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please email

If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

 

13. SHARING YOUR PERSONAL DATA

Your personal data will be treated as strictly confidential and will only be shared with other members of the Tab Church to carry out a service to other church members or for purposes connected with the Church.
Your information will only be shared and used in accordance with this notice, and where an agreement is in place to ensure that your information is protected. We won’t sell your personal information without your consent.

SHARING WITH OUR PROCESSORS

There may be situations where we use data processors – companies who act on our behalf – to process your information for us. These processors can only use your information in accordance with our instructions and for the purposes in this Policy.
Our processors are trusted third parties outside of The Tab Church and these may include:
• Service providers acting as processors based in the UK who provide IT and system administration services,
• Disclosure and Barring Service checks,
• Course and event management systems,
• Web hosting services,
• Electronic marketing and survey services,
• Customer Relationship Management systems,
• Professional advisers including lawyers, bankers, auditors, pension advisors and insurers, based in the United Kingdom who provide consultancy, banking, legal, insurance, lending/funding and accounting services,
• HMRC, government regulators, and other authorities who require reporting of processing activities in certain circumstances,
• Online video conferencing service that we use for meetings, courses, events, and training.

We typically do not depend on your consent as the legal ground for processing your personal data, except in specific situations. These situations include when we need to process special categories of personal data or when we want to send you direct marketing communications via email or text message.

Please note that you always have the right to opt out of receiving marketing communications from us. You can exercise this right at any time by clicking the ‘unsubscribe’ link in any of our email communications to you or by sending an email to . Withdrawal of your consent does not affect the lawfulness of the processing based on consent before its withdrawal.

 

14. HOW LONG DO WE KEEP YOUR PERSONAL DATA?

We will not keep personal data longer than is necessary for the purposes for which it was collected and we will comply with legal guidance issued in relation to retention periods for specific records.
Specifically, we retain Gift Aid declarations and associated paperwork for up to 6 years after the calendar year to which they relate; and registers (baptisms, marriages, funerals) permanently.

 

15. FURTHER INFORMATION ON HOW WE USE YOUR DATA

We sometimes use your information for other reasons, so to help we have added more information to these below.
Direct marketing

In addition to sending you information about the services you use, and where we have your permission, we may send you direct marketing communications about our products, services, events and offers, as well as those of our commercial partners that we think you’ll be interested in.

Direct marketing communications may be sent by post, email, telephone, social media  (including but not limited to WhatsApp, Instagram, X (Twitter), and Meta (Facebook), messages including push notifications to your mobile devices, and via other electronic means such as when you visit our websites or use our apps.

We may send you direct marketing while you have an ongoing relationship with us and for a reasonable time after you have used one of our products or services. Please note that such marketing communications sent by email may record your interaction with the communication, such as recording that your opened, forwarded or deleted the email.
You will be able to opt out of direct marketing by following the instructions in the communications you receive or by changing your device settings.
Linked services, third-party sites and content

Our website may, from time to time, contain links to other websites which are outside of our control and are not covered by this Notice. We do not accept any responsibility or liability for other sites’ privacy notices or privacy policies. If you access other websites using the links provided, please check their policies before submitting any personal information.

Donations
Your information may be used to take funds for charities and may be used to verify credit details related to donations.
Disclosures required by law

Your information will be disclosed where we are obliged by law to do so. We may also disclose your information where we are allowed by law to protect or enforce our rights or the rights of others and for the detection and prevention of crimes, such as fraud.

Data Transfers within the EEA
When you complete our registration forms or participate in our activities, we may transfer your information to our processors - companies that carry out activities on our behalf, and only on our instructions.
Training and quality.
If you contact us by phone or on chat the conversation may be recorded and listened to for training and quality purposes.

Social media login

Our websites and apps may provide plug-ins to social media websites, including but not limited to Meta (Facebook), X (Twitter), Google, Yahoo and LinkedIn.

If you make use of, or log-in to, the social media features on our websites or apps, we may (depending on your privacy settings) access, use and store information about you, including, but not limited to your name, e-mail address, gender, location, profile, picture, contacts, and any other information you have chosen to make available.

To find out more about the reasons and extent to which social media sites collect and process your data, or to change your privacy settings, please refer to your social media provider’s privacy policy.

 

16. INTERNATIONAL DATA TRANSFERS

When you complete our registration forms or participate in our activities, we may transfer your information to our processors - companies that carry out activities on our behalf, only on our instructions - outside the European Economic Area (EEA) to countries that may not have data protection rules that provide the same level of protection to your personal information as countries in the EEA. However, we will only transfer your information if we have appropriate measures in place to ensure the protection of your information in accordance with applicable data protection legislation.

When you give us information about other individuals, you confirm that you have the authority to act for them and have made them aware of the potential transfer of their information outside the EEA.

 

17. DETECTING AD BLOCKERS

When you visit our websites, we may check (by using script, code, cookies or other technical means) if you are using ad-blocker or other privacy tools. If we do detect one of these tools, we may ask you or ask your browser to ask you, if you would give us permission to ignore those settings and continue to serve adverts and/or collect your information using cookies and similar technologies.

 

18. YOUR RIGHTS AND YOUR PERSONAL DATA

Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data: the right to:
• request a copy of your personal data;
• request that we correct any personal data which may be inaccurate;
• request your personal data is erased where it is no longer necessary;
• withdraw your consent to the processing at any time;
• request that the data controller transmit your personal data directly to another data controller (known as the right to data portability);
• where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing;
• object to the processing of personal data for direct marketing and processing for the purposes of scientific/historical research and statistics
• lodge a complaint with the Information Commissioner's Office.

 

19. COMPLAINING TO THE REGULATOR

If you have any comments, concerns or complaints about how we use your information we would ask that you contact us first, so that we can try and resolve any matter.
However, where we are unable to help, you can complain to the Information Commissioner’s Office in the United Kingdom or the data protection regulator in your country of residence, who will be able to liaise with the UK Information Commissioner in the UK.

 

20. RETENTION OF YOUR INFORMATION

We shall retain your information in accordance with our records retention policy, or for as long as necessary for the uses set out in this notice or while there is a legitimate business reason for doing so.
If you ask us to delete your information before this time, we may not be able to do so because of technical, legal, regulatory or contractual constraints. For example, where you wish to be suppressed from direct marketing, we would need to retain your information for this purpose.

Where you ask for your account to be closed, we will do this as soon as possible subject to any terms and conditions relating to the account. Your information will be retained to comply with legal and regulatory obligations as well as for analysis, to prevent fraud, collect any monies owed, and to resolve disputes.

 

21. CONTACT DETAILS

To exercise all relevant rights, queries, and complaints please in the first instance contact:
The Tab Church London, The Tab HQ, 330 Lewisham High Street
London SE13 6JZ

We can also be reached by contacting us directly via our website at www.thetab.org.uk or you may email us via

Alternatively, you may raise your queries or concerns with the Supervisory Authority. In the United Kingdom, this is the Information Commissioner’s Office:
by Email:
by telephone: 0303 123 1113 (local rate) or 01625 545 745 (national rate), or by post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF