INTRODUCTION
This Data Privacy Policy tells you how One Rock International uses your personal data. It also tells you about your privacy rights and how the law protects you. It is important that you read this Data Privacy Policy so that you are fully aware of how and why we are using your data.
One Rock holds information in accordance with the UK Data Protection Act 2018, and the EU General Data Protection Regulation of 2018. We will do all we can to protect your privacy and to make sure any personal information you share with us is stored securely.
Keeping your data secure is very important to us. By providing your personal details you agree to allow One Rock International to contact you either on the basis of the consents you have given us or for our Legitimate Interests in accordance with current data protection regulations. We will never make your personal data available for marketing purposes to external individuals or organisations.
This privacy policy was last updated in March 2021.
GOVERNANCE
One Rock International is made up of two different legal entities:
- One Rock head office, located at Church Office, Central Hall Westminster, Storey’s Gate, London SW1H 9NH, United Kingdom; and
- One Rock USA, located at 612 Sutton Creek Road, Pisgah Forest, NC 28768, United States.
One Rock head office is the data controller responsible for the handling of personal data carried out by or on behalf of One Rock International.
COLLECTING & USING INFORMATION
We collect and use personal information in the following five ways:
- If you sign up to our monthly email newsletter. We hold information on your name, email address, city and country. We use this information to send you regular news, prayer requests and resource information via our View from the Rock emails.
- If you book into an event. We hold information on your name, email address, city, country and the event you attended. We use this information to send you occasional emails about further events and resources we think may be of interest via our One Rock Presents emails.
- If you join an Institute as a member or a coach. We hold more detailed personal information in line with the application form completed upon Institute registration. We use this information to match you with the best possible coach/ delegate for the Academy. We pass on your name and email address to the local One Rock leader responsible for the Institute in your city. We also send you regular news, prayer requests and resource information via our View from the Rock emails.
- If you join an Institute and take a PEAKS personality profile we hold a copy of the report info for the full time period of your Institute course plus one year after. This is to ensure we can send the report to you during your time of study with us.
- The One Rock USA office holds postal addresses for supporters and Institute coaches resident in the USA and Canada, and sends out postal mailings for sharing news and fundraising purposes.
FINANCIAL INFORMATION
One Rock International does not receive or hold any credit card details for donations/payments made via our websites. All event payments are handled via Eventbrite. All Standing Orders are handled via Stewardship. All online donations to One Rock USA are handled via PayPal.
CHANGING, STORING & VIEWING YOUR INFORMATION
Please tell us as soon as any of your contact details change so that we can keep our records up to date. You can change the way we contact you or the kind of material we send you at any time by contacting us by mail or email using the contact details on the website.
We keep information related to our MailChimp emails (i.e. name, email address, city and country) for as long as you choose to remain subscribed to our regular emails.
We keep information related to Institute delegates for a minimum period of five years, to enable us to remain in contact with our alumni network.
You may request details of all the information One Rock International holds about you by submitting a request via email.
WHO SEES YOUR INFORMATION?
The information we collect is used exclusively within One Rock International. We do not pass any of your personal information to any other organisations or individuals, except for MailChimp (see Third Parties).
THIRD PARTIES
One Rock International uses MailChimp to send our View from the Rock and One Rock Presents emails. By providing us with your details you are giving One Rock International your express permission to transfer your data to MailChimp. Without transferring this data then One Rock International will not be able to send emails to you.
Each time you receive an email you will be able to update your preferences and subscribe or unsubscribe from regular emails via MailChimp.
We use websites such as Vimeo and YouTube to embed videos on our websites and you may be sent cookies from them via our site. Please look at the cookie and privacy policies on these third party sites if you want more information about this.
We also use third party suppliers such as Facebook, Eventbrite and Google Analytics and these suppliers may also make use of cookies.
As some of these third party services may be based outside of the UK and the EU they may not fall under the jurisdiction of UK courts.
WHAT IS A COOKIE?
A cookie is a piece of information in the form of a very small text file that is placed on an internet user’s hard drive. It is generated by a web page server, which is basically the computer that operates a website. The information the cookie contains is set by the server and it can be used by that server whenever the user visits the site. A cookie can be thought of as an internet user’s identification card, which tell a website when the user has returned.
YOUR LEGAL RIGHTS
If the General Data Protection Regulation applies to you because you are in the European Union, you have rights under data protection laws in relation to your personal data:
- The right to be informed – that’s an obligation on us to inform you how we use your personal data (and that’s what we’re doing that in this privacy policy);
- The right of access – that’s a right to make what’s known as a ‘data subject access request’ for copy of the personal data we hold about you;
- The right to rectification – that’s a right to make us correct personal data about you that may be incomplete or inaccurate;
- The right to erasure – that’s also known as the ‘right to be forgotten’ where in certain circumstances you can ask us to delete the personal data we have about you (unless there’s an overriding legal reason we need to keep it);
- The right to restrict processing – that’s a right for you in certain circumstances to ask us to suspend processing personal data;
- The right to data portability – that’s a right for you to ask us for a copy of your personal data in a common format (for example, a .csv file);
These rights are subject to certain rules around when you can exercise them. You can see a lot more information on them on the UK Information Commissioner’s Office website.
CHANGES TO THIS POLICY
The General Data Protection Regulation is relatively new and the ICO is still issuing new bits of guidance about how businesses should follow it. This policy may be updated periodically over time.
© One Rock International, March 2021.