We are registered with the Information Commissioner, registration number ZA443002. Our nominated representative for the purpose of the Act is Sharon Money.
Who are we? St Benet’s Multi Academy Trust, referenced in this document as ‘St Benet’s MAT, is the data controller (see contact details below). This means that we determine how, and why, your data is processed and stored.
Information we collect from you on our main website
We will collect and process the following data about you in the following ways:
- Information you give us. This is information about you that you give us by registering for an account or filling in forms on our site www.st-benets.org or staff.diocesan.co.uk or by corresponding with us by phone, email or otherwise. It includes information you provide when you register to access our services, use any social media functions on our site, surveys campaigns and when you report a problem with our site. The information you give us may include your name, address, email address and phone number. If you chose not to provide your data at any point, it may mean we cannot provide the service required.
- Information we collect about you. With regard to each of your visits to our site we will automatically collect the following information:
- technical information, including your IP address, your login information, browser type and version, time zone setting, browser plug-in types and versions, and operating system and platform;
- information about your visit, including the URL, clickstream to, through and from our site (including date and time), page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page and any phone number used to call our customer service number.
Information we collect from you through third party websites
When you give us information through any other website we operate or other services we provide, we may share this data internally and combine it with data collected on our main website.
We also work closely with other Church of England bodies including The Archbishop’s Council, The Church Commissioners for England, the Church of England Central Services (“National Church Institutions” or “NCIs”), and the Diocesan Registry. We will only request data from these organisations when it is necessary to fulfil our role in providing a service to you.
Information you give us through other methods
Our Data Retention Policy outlines what personal data we hold and the reason for holding it. Examples include if you give us your contact details on a paper Data Protection Form, or if you give us your contact through our website. A copy of this can be requested from us.
Uses made of the information
Information you give us. We use information you give us for the purposes it was given, e.g. if you give us your email address to receive information from us, we will only use your email address for this purpose.
Information we collect about you (e.g. technical information about your website visit). We will use this information:
- to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
- as part of our efforts to keep our site safe and secure;
- to make suggestions and recommendations to you and other users of our site about courses, and other events that we think may interest you.
Information we receive from other sources. We may combine this information with information you give to us and information we collect about you. We may use this information and the combined information for the purposes set out above (depending on the types of information we receive).
Further processing or use of your information. If we use your personal data for a new purpose then we will seek your consent to do so where and whenever necessary, prior to the new processing.
We will remove your personal data when we no longer have reason or consent to hold it. Our Data Retention Policy outlines how long we hold personal data for and the reason for holding it. A copy of this can be requested from us.
Disclosure of your information
You agree that we have the right to share your personal information with the offices of the Bishops of Norwich, Thetford and Lynn, the Diocesan Registry, Spire Property Consultants, the Archbishop’s Council and National Church Institutions. We will only share this data between offices where necessary to carry out the services we provide.
We will disclose your personal information to third parties if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, other agreements; or to protect the rights, property, or safety of our users, or others.
Where we store your personal data
All information you provide to us is stored on secure servers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Under certain circumstances, you have rights under data protection laws in relation to your personal data. These can be found on the ICO website.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Access to information
You have the right to access information held about you. You can exercise this right at any time by contacting firstname.lastname@example.org You may be subject to a fee to meet our costs in providing you with the data we hold about you.
By using this website, you agree that we can place cookies on your computer unless you change your browser settings. We believe there is no reason for any concern over any of the cookies used on our website; however certain users may have privacy concerns or consider some cookies to be intrusive. Below we outline what cookies we use and why, to help you make an informed choice.
First-party cookies (created by ourselves):
Third-party cookies (created by others):
- Google Analytics (to record statistics such as how many people visit our website)
- Cerber Security (to protect the website from hackers, cyber criminals, spammers and bots)
- Additional cookies are set only for administrators and staff who edit the website
- _ga This cookie name is associated with Google Universal Analytics – which is a significant update to Google’s more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports.
- _gid _gid cookie is responsible for tracking user behavior.
- PHPSESSID The PHPSESSID cookie is native to PHP and enables websites to store serialised state data. On the Action website it is used to establish a user session and to pass state data via a temporary cookie, which is commonly referred to as a session cookie.
Controlling and Blocking Cookies
If you use your browser settings to block all cookies, certain parts of our site may not function correctly.
The Information Commissioner’s Office
Policy last modified by St Benet’s MAT 18/08/2022