Scope of Policy
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purpose of the Data Protection Act 1998 (the Act), the Data Controller is the Trinitarian Bible Society of William Tyndale House, 29 Deer Park Road, London SW19 3NN, England [Registered Charity No: 233082 (England) SC038379 (Scotland)]. For further information, please contact Mr Ian Docksey, our Facilities Manager, via our Contact Form.
Personal Information We may Collect
We may collect and process the following data:
- Information that you provide by filling in forms on our website www.tbsbibles.org (“our site”). This includes information provided at the time of registering to use our site, subscribing to our services or requesting further services. We may also ask you for information, for example, when you report a problem with our site.
- Correspondence by email, telephone or letter in connection with matters you contact the Society about.
- Details of transactions you carry out with us, principally (but not limited to) sales orders, donations, membership subscriptions and grant requests.
- Details of your visits to our website including, but not limited to, traffic data, location data, weblogs and other communication data (whether this is required for our own billing purposes or otherwise) and the resources that you access.
- Information about your device, including, where available, your IP address, operating system and browser type, for system administration and to report aggregate information - this is statistical data about our users' browsing actions and patterns, and does not identify you or any other individual.
As set out above some of our external third parties are based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we ensure adequacy of protection is afforded by ensuring at least one of the following safeguards is implemented:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission. For further details, see European Commission: Adequacy of the protection of personal data in non-EU countries.
- Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe. For further details, see European Commission: Model contracts for the transfer of personal data to third countries.
- Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US. For further details, see European Commission: EU-US Privacy Shield.
Where and How We Store Your Personal Information
- The Society has offices in the UK, Australia, Brazil, Canada, New Zealand and the United States of America, all of which may store and process your personal data.
- The Society’s main business system and website (through “YourMembership”) is hosted in the United States of America. Therefore, the data that we collect from you will be securely transferred to, and securely stored at, a destination outside the European Economic Area (“EEA”).
- Your data may also be processed by our staff or one of our suppliers working outside the EEA. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing outside the EEA.
- All financial information received in connection with a payment on the Society’s website is encrypted and held on the secure servers of our third party payment gateway providers, and in the case of recurring payments only, on our website also.
- We will transmit your personal data over the internet. The transmission of information via the internet cannot be guaranteed to be completely secure and any data you send is transmitted at your own risk. However, all financial information and all data in transit between your device and our website is encrypted.
- Once we have received your information, we will use strict procedures and security features to prevent unauthorised access. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share your password with anyone and we will never ask you to share it with our staff or agents.
Uses Made of Your Personal Information
We may use your personal information in the following ways:
- To provide you with products and services that you have requested, including membership, sales orders and Scripture grants.
- To carry out our obligations arising from any contracts entered into between you and us.
- To keep you up to date in connection with the Society’s charitable activities.
- To provide you with information about products or services, where you have pro-actively consented to be contacted for such purposes.
- To endeavour to ensure that content from our site is presented in the most effective manner for you and for your device.
- To allow you to participate in interactive features of our service, when you choose to do so.
- To administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes.
We will never (and will not allow any third party to) use any statistical analytics tool to track or to collect any Personally Identifiable Information (PII) from visitors to our site. Neither will we, or any third party, link or seek to link an IP address with the identity of a computer user. We will not associate any data gathered from this site with any PII from any source, unless you explicitly submit that information via a fill-in form on our website.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after the year they cease being customers for tax purposes.
In some circumstances you can ask us to delete your data: please contact us for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
If you are completing a financial transaction with us, we may request financial information, including your payment card number, expiration date, and security code. We use third party secure payment gateways for debit and credit card transactions and all personal information which they hold is encrypted. Any financial information we collect will be used only in connection with your transaction and will not be disclosed to any third parties, except your own payment card provider for the purposes of completing the transaction.
- You can block cookies by activating the setting on your browser which allows you to refuse the setting of all or some cookies. However, if you do this, you may not be able to access all or parts of our site.
If when making a purchase or donation you opt to use our site only as a guest, your personal details will be handled securely and will only be used for the purpose of processing that specific transaction.
- If you create an online account the information will be gathered securely and stored on our database.
- Information stored is only used by the Trinitarian Bible Society.
Our website may, from time to time, contain links to and from other websites. If you follow a link to any of these websites, please note that these websites have their own Privacy Policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Disclosure of Your Information
We may disclose your personal information within the Trinitarian Bible Society, which includes its London Headquarters, its international branches and its local auxiliaries.
Otherwise, we will not disclose to or share your personal information with third parties, except where:
- the Trinitarian Bible Society or substantially all of its assets are acquired whether by a third party, in which case personal data held by it about its customers will be one of the transferred assets; or
- we need to engage external computer or data consultants, subject to confidentiality agreements, in respect of maintenance and support in connection with our IT systems and website; or
- we enable third parties to process information and provide services on our behalf to facilitate the activities described in ‘Uses Made of Your Personal Information’ above. We carefully select our third party relationships and will ensure appropriate safeguards are put in place to protect your information; or
- we are under a duty to disclose or share your personal data in order to comply with any legal obligation, including:
- requests from the authorities in the USA under the terms of the US Patriot Act; or
- to protect the rights, property, or safety of the Trinitarian Bible Society and our customers, includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
To Unsubscribe or Change Your Communication Preferences
You can change your Communication Preferences on our website at any time on the Communication Preferences page. Should you wish to delete your account with the Society, you can do so by contacting us through our Contact Form.
You have the legal right to ask us not to process your personal data for marketing purposes. We will always inform you, before collecting your data, if we intend to use your data for such purposes. You can exercise your right to prevent such processing by contacting us at any time, by the method outlined in the previous section.
Access to Information
You are legally entitled to access the information we hold about you and we will always respond within all the terms of the prevailing legislation to provide this to you.