Privacy and Cookies
Cathedral Music Trust (the Trust) is committed to protecting your personal information. This Privacy Notice relates to our use of any personal information we collect from you via the following channels:
- Our website (www.cathedralmusictrust.org.uk) when you become a Friend of Cathedral Music
- Social media channels (for example Facebook and Twitter)
- By phone (for example, if you call us to request a service)
- Email (either person-to-person or via mass-mailing tools such as our Customer Relationship Management System)
- By post (for example, if you send us a subscription form).
Whenever you provide personal or sensitive information, we are legally obliged to use your information in line with all laws concerning the protection of personal information, including the UK General Data Protection Regulation.
How we use your information
We process your personal data for the legitimate business interest of corresponding with you and keeping you informed about our work.
If you become a subscriber, make a purchase or register for an event, we process your personal data to fulfil your contract, process donations and payments and to claim Gift Aid.
We also process your data to help us monitor and improve the services we offer (legitimate interest) and, with your consent, to raise funds and market our services/merchandise.
In some cases, we need to process your data to ensure that we are complying with our legal obligations (for example, in reporting to HMRC or the Charity Commission)
Below you can find out more detail about what data we gather, for what reason and how it is used.
What information do we collect?
We collect information from our website:
- when you become a Friend of Cathedral Music
- when you donate, make a purchase or register for an event
- when you sign up to our mailing list or e-newsletters
- through cookies
- if you email us via a link on our website
We also collect information when you apply to become a Friend of Cathedral Music and when you provide us with details, updates or information by email, post or telephone.
The type of information we hold
The information we hold may include your name, address, email addresses, telephone numbers, date of birth, your role within cathedral music (if applicable) and any choral foundations you are associated with, details of any financial transactions, event registrations, donations (including Gift Aid declarations) and your subscription history.
E-newsletters
We will send you newsletters or other information by email after you have registered to receive them. At any time, you can decide not to receive these emails and will be able to ‘unsubscribe’ through a link at the bottom of any newsletter or marketing email.
Postal correspondence
If you become a Friend of Cathedral Music, we will send you our Magazine (Cathedral Music) by post. You are welcome to opt out of receiving this by contacting us on 020 3151 6096 or emailing [email protected].
Use of children's data
Where we knowingly collect or store data of children under 13, we will ensure the person with parental responsibility for the child has seen the relevant information relating to the child’s data or has given consent on behalf of the child.
Once a child is over 13 years old, parental consent to use their data will no longer be sufficient. We will only continue to hold/use the data if the child themselves also gives their consent.
Storing your information
Your personal information will be stored on systems owned or operated by Cathedral Music Trust or those of our specific suppliers.
Our Database is stored within the UK. All our data storage services are secure, and we have internal measures in place to govern their use and protection.
Transfers outside the UK
In certain circumstances we will send your information to countries outside the UK, where the level of protection for personal data is not deemed to be as high as that in the UK and the European Union.
We use cloud computing providers that store information outside the UK. We have agreements in place with these providers in order to ensure that there is adequate protection for your data.
Who we share data with
We share your personal information with third party contractors working on our behalf (e.g. to send subscribers our magazines). Any organisations who access your information in the course of providing services on our behalf will be governed by strict contractual restrictions to make sure that they protect your information and keep to data protection and privacy laws which apply. We may also independently audit these service providers to make sure that they meet our standards.
We may use service providers to help us run our website (or services available on the site), some of whom may be based outside the UK.
If you attend an event organised by an event partner, data may be shared for event administration purposes.
We may access and release personal information to keep to relevant laws and government requests, to operate our systems properly and to protect both us and our users.
Some of our web pages may use plug-ins from other organisations (such as Facebook). These other organisations may use information about your visit to our website on their pages. For more information on how these organisations use information, please read their privacy policies.
We may also share information for the following purposes:
- We will share your personal data with third parties where required by law, where it is necessary to administer the working relationship with you or where we have another legitimate interest in doing so.
- We may need to share information with regulators, such as the Charity Commission or Information Commissioner's Office, or with other government bodies such as HMRC. In some cases, we will have a legal obligation to provide the information. Where no legal obligation exists, we may be transferring the information for the purposes of a public task in the public interest, or on the basis of the legitimate interests of the Trust or the body making the request.
- If ever in the future, we are considering restructuring or expanding the Trust, we may share your information with the other parties involved and with the relevant professional advisors. This is for our legitimate interest in ensuring that the Trust continues to fulfil its objects.
- If we have a legal obligation to do so or for the purposes of fraud protection and credit risk reduction.
- We may share your personal data with third party service providers who act on our behalf such as IT services providers, as detailed above.
We will only share your information with other people and organisations where we have a good reason to do so. In exceptional circumstances, we may need to share it more widely than we would normally. Where possible, we will make you aware of this, and if appropriate, will seek your prior consent. However, you should be aware that it will not always be possible or appropriate to seek such consent.
Automated decision making
No decision will be made about you on the basis of automated decision making (where a decision is taken about you using an electronic system without human involvement).
Retention
We will retain your personal information in accordance with legal and regulatory requirements. We will only retain your information while we are actively engaged with you. Where we have had no interaction with you for a period of seven years, we will delete your data.