PERSONAL DATA PROTECTION POLICY

INTRODUCTION

In compliance to the Personal Data Protection Act (PDPA), Global Harvesters Full Gospel Church (GHFGC) is committed to govern the collection, use and disclosure of personal data in a manner that recognizes both the right of individuals and the need of GHFGC. 

DEFINITION

“Personal data” refers to the data about an individual who can be identified from that data; or from that data and other info that the organization has or is likely to have access may it be electronic or non-electronic form and regardless of whether it is true or false. 

Personal data may include but not limited to the following: 

– Full Name; 

– NRIC, FIN or passport number; 

– Photograph or video; 

– Mobile telephone number; 

– Personal email address; 

– Thumbprint; 

– DNA profile; 

– Name and residential address; 

– Name and residential telephone number; 

– Name and date of birth 

The personal data of deceased individuals applies only for disclosure and safeguarding rules within 10 years after death. 

APPOINTMENT OF DATA PROTECTION OFFICER (DPO) 

A Data Protection Officer (DPO) who will be responsible for ensuring the Church’s compliance with the PDPA is appointed by GHFGC’s Executive Committee. 

The DPO may delegate its roles and responsibilities to other individuals. 

All persons, whether employees or Church members, who collect, process, or use personal information on behalf of GHFGC shall be accountable to the DPO.

PROCEDURES

Collection of Personal Data and Consent 

All membership or registration forms are to provide a clause or notice to clearly state and seek consent for the following: 

  • the purpose for the collection of data 
  • the usage of data collected 
  • the ways the personal data will be disclosed. 

(Please see Schedule.) 

Withdrawal of Consent 

GHFGC will upon written notice of withdrawal of consent take steps to dispose of or anonymize the information. 

2. Accuracy and Correction of Data 

GHFGC will ensure that data collected is accurate and complete. When in doubt, a request will be made to the individual for clarification that the personal data provided is accurate and complete. 

GHFGC will ensure that personal data is updated and amended when requested. 

3. Protection and Confidentiality of Information 

GHFGC will keep all personal data confidential and accessible to only authorised personnel and for authorised purposes. 

Databases and registration files/forms 

  • Soft copies of documents containing personal data, including databases, are to be kept secure and accessible only by authorised persons. 
  • Hard copies of documents containing personal data, including registration forms, are to be securely kept in cupboards with limited authorised access. 
  • Due care shall be taken in handling such documents and to ensure that they not left in an unsecured state such that unauthorised persons may have access to the documents. 
  • No unauthorised copies of such documents shall be made. 
  • If and when copies of such documents are made, they shall be securely kept and properly destroyed when no longer required. For example, a committee organising a project shall properly dispose of or archive documents containing personal data at the conclusion of the project. 

4. Third Parties 

GHFGC will not disclose personal data to third parties without the consent of the individual.

5. Retention of Data 

GHFGC will retain and maintain its personal data records for the purpose of organising and planning of activities, as well as communication of events, programmes and church matters. 

6. Transparency 

GHFGC will make information on data protection policies and procedures available upon written request. 

Feedback may be provided anytime to the DPO. 

GHFGC will consider all feedback and take appropriate action upon such feedback. 

7. Access Obligation 

Requests for information 

Due verification shall be carried out for all queries made, whether verbally or in writing, for personal information. Matters that may be used for verification include the following: 

  • Name as in NRIC/FIN 
  • NRIC/FIN Number 
  • Residential Address 
  • Contact Number(s) 
  • Email Address 

Such verification shall be carried out before disclosure of personal data. 

SCHEDULE

Confidentiality Policy and Consent to Use of Data 

By participating, including signing up for and providing personal information, in the worship services or activities of Global Harvesters Full Gospel Church and her Ministries, you consent to Global Harvesters Full Gospel Church collecting, using, disclosing and sharing amongst the relevant Ministries your personal data, for the purpose of organising and planning of activities, as well as communication of events, programmes and church matters. Global Harvesters Full Gospel Church respects personal data and confidentiality, and will not share such information with any third party unless authorised to do so. Should you wish to withdraw or limit your consent, please write with full particulars to our Data Protection Officer at admin@global-harvesters.org.