Grace Pentecostal Church uses personal data about living individuals for the purpose of general church administration and communication.

Grace Pentecostal Church recognises the importance of the correct and lawful treatment of personal data. All personal data, whether it is held on paper, on computer or other media, will be subject to the legal safeguards as specified in the General Data Protection Regulation 2017.

​

Grace Pentecostal Church fully endorses and adheres to the eight principles of the GDPR. These principles specify the legal conditions that must be satisfied in relation to obtaining, handling, processing, transportation, and storage of personal data. Employees and any others who obtain, handle, process, transport, and store personal data for Grace Pentecostal Church must adhere to these principles.

The Principles

The principles require that personal data shall:

• Be processed fairly and lawfully and shall not be processed unless certain conditions are met.

• Be obtained for a specified and lawful purpose and shall not be processed in any manner incompatible with that purpose.

• Be adequate, relevant, and not excessive for those purposes.

• Be accurate and where necessary, kept up to date.