Whether or not your PCC uses Safeguarding Hubs, it must have a Data Privacy Notice. This tells church members why and how their personal data is being processed. It should cover all church purposes, not just safeguarding.
If your PCC chooses to use Safeguarding Hubs, this should also be mentioned in your Data Privacy Notice.
Is there a template Data Privacy Notice?
Yes.
The Parish Resources website provides some very helpful information for parishes, including a template Data Privacy Notice.
What should be included in our Data Privacy Notice?
If your PCC has decided to use Safeguarding Hubs, the following table suggests some information that could be included in your Data Privacy Notice.
| Privacy Notice Section | Suggested Information |
| Why do we collect and use your personal data? | We collect and use personal data about church volunteers [and employees] in order to comply with the Church of England's safeguarding requirements. |
| What categories of personal data we process?: |
|
| What is the lawful basis for us to process your personal data? |
We collect and process this data because we have a legal obligation to do so. This obligation is set out in the Church of England's:
|
| Where do we collect your data from? |
We collect this data from:
|
| Processing your data | Some of this data is securely processed in a Safeguarding Hub developed by Clearly Simpler Limited. |
| Sharing personal data |
We may share this data with the Diocese of ... |
| How long do we keep data? | We keep data in accordance with the guidance set out in the guide “Keep or Bin: The Care of Your Parish Records”: See the records management guides issued by The Church of England. |