Channel Islands Family History Society
Non Profit-Making Organization No. 0435 registered with the Jersey Financial Commission
Address: PO Box 507, Jersey JE4 5TN
The General Data Protection Regulation (GDPR, hereafter ‘the Act’) replaces the Data Protection Act from 25 May 2018 and applies, like the Data Protection Act, to personal information about living EU citizens.
Under the terms of the Act the Channel Island Family History Society is defined as a ‘Data Controller’.
On what lawful basis do we hold your personal information?
The Executive Council of the CIFHS, have determined that the storage and processing of basic personal data is covered by the assumption of ‘legitimate interest’ allowed by the Act.
Under The Privacy and Electronic Communications Regulations (PECR) which sits alongside the GDPR, we do need the express permission of members to send electronic newsletters, since these are regarded as being ‘marketing’. When you join the Society, or, in the future, when you renew an annual subscription, you will be asked if they would like to give consent (or, if it has already been given, to renew consent on a regular basis) to receive enewsletters sent to members.
If you chose not to receive enewsletters from us, this will not affect our ability to send you communications on non-marketing matters in connection with your membership of the Society.
For some personal information we have a legal obligation to process and retain records.
How do we collect your personal information?
The personal information that we hold about you is acquired from your application form when you joined the Society, from your annual renewal payments, or from letters and emails that you send to us.
If you provide personal information to the Society electronically, for example when joining, renewing membership or making purchases, you are responsible for ensuring that you input your personal information correctly since we have no way of independently validating the information you have provided.
What personal information do we hold and process?
The personal information we hold and store for membership purposes is your membership number, name, postal address, details of annual subscription payments (including Standing Order forms, but not credit/debit card details), your telephone number(s), email address and, if your consent has been given, preference for receiving enewsletters from us.
We also store personal information (name, address, email address and/or telephone number) related to purchases (publications, places for events, etc) from our Bookshop or our online shop. This personal information may relate to either members or non-members.
The Society does not undertake research on anyone who is, or may be, alive.
Research requests submitted to the Society contain personal information (eg: the enquirer’s postal or email address and/or telephone number). This personal information may relate to either members or non-members.
Pedigrees submitted to the Society may contain personal information (eg: name, address, date and place of birth) on living people. This personal information may relate to either members or non-members.
4. Contact Lists
Trustees, Local Groups and/or Centre Volunteers may store contact details outside the Society’s Family History Centre for specific purposes (eg. organising meetings) connected with the Society’s aims and purposes. This personal information may relate to either members or non-members.
To ensure that your personal information is accurate and up-to-date, please inform us as soon as possible of any changes (eg: a new address). Please also contact us if you believe that any of the personal information we hold about you is inaccurate. You may also ask us (verbally or in writing) to restrict processing of your personal information if you have issues with the content of the information we hold or how we have processed your data.
You may ask (verbally or in writing) for a copy of the personal information we hold on you and we will provide this to you, either by post or electronically, within one month of the request being received. If we are unable to provide the information within one month, then we will keep you informed of the reason(s) and progress made towards complying with your request.
You may also, at any time, ask us (verbally or in writing) to delete any personal information that we hold about you. Data other than your membership number, name and address (which are required for the mailing of the journal) and subscription payment details (required to prove current membership) will be deleted on request.
How do we use your personal information?
We will use your personal information to:
provide you with membership services (eg: mailing of our journal, sending subscription renewal notices, answering your enquiries about your membership)
send reminders if you have not renewed your subscription
send Standing Order forms to your bank
supply you with any products (eg. books) that you have ordered from us
send you information (eg. answers to your research enquiries) that you have requested.
We will only use your personal information to send you an enewsletter if you have consented to this. You may, at any time, ask to be removed from our emailing list.
Do we share your information with anyone else?
In order to post to you our journal we send lists with your membership number, name and postal address to a mailing house. The mailing house retains the lists for a period of three months, to allow time for the resolution of any issues that might arise, and then deletes them.
If you have signed a Standing Order in our favour, then the form which you have completed will be posted to your bank.
If you have consented to receive electronic newsletters from us, then we may, from time to time, upload to a direct mailing website your e-mail address only. We delete a mailing list a week afterwards, to allow you time to unsubscribe from the list (and therefore from receiving our enewsletters) if you decide you no longer wish to receive them. You may also notify us directly at any time if you do not wish to continue receiving enewsletters.
Please bear in mind that any information, such as your public profile, or other content that you make public in our journal, or on Facebook are all available to others. Public information may also be indexed by search engines or used by third parties. The Society has no control over circulation of media, whether print or electronic, and any personal information that you have shared in these media will be available online or in libraries and therefore accessible by the general public.
The Society will never pass your personal information on to a third party for any reason, other than those listed above which are necessary to provide you with membership services.
How do we protect your personal information?
We will always take appropriate measures to ensure that your personal information is kept secure, accurate and up-to-date and kept only for so long as is necessary for the purposes for which it is used.
Your personal information is entered into our password-protected membership database on the Society’s computer, and to which access is restricted. Personal information relating to membership (application or renewal forms, copies of Standing Order forms) held on paper are stored securely.
The records of members who resign or who have died are deleted from the current year’s database as soon as we are informed. Members who do not renew a subscription are deleted from the database in the Autumn of the year for which they have not renewed.
Copies of the database are stored on the computer for the previous seven years.
Paper application forms and subscription renewal forms are retained for a year in case of queries and are then shredded. Standing Order forms are retained for seven years and/or while the person is still a member.
Publications. Basic on-line sales information (order reference, order details, customer name, customer location country, date of order and date of dispatch) is entered into a spreadsheet on the Society’s computer. Access is allowed only for the those volunteers with a need to use the information.
Paper copies of all sales orders, and dispatch notes are retained for seven years in case of complaints or returns, and as part of the Society’s financial data.
Events. Booking details (name, number of places, amount paid, email address and/or phone number) is entered into a spreadsheet on the Society’s computer, and lists of names, only, are generated for use on the day of an event. Spreadsheets and lists are deleted at the end of the calendar year.
Research requests can be received by post or electronically and printed. The paper documents are stored securely until the end of the following calendar year and then shredded.
Pedigrees submitted by members may contain details of living people, but this information is never passed on to a third party.
4. Contact Lists
What to do if you believe we are mishandling your personal information
Please contact us and we will investigate your complaint and do our best to resolve the issue. In the first instance, please contact the Society’s Secretary: firstname.lastname@example.org or by post (please mark the envelope ‘Private and Confidential’): The Secretary, CIFHS, PO Box 507, Jersey JE4 5TN
If you then still have concerns, you may make a complaint to the Information Commissioner’s Office, either online (https://oicjersey.org/online-enquiry/#/complain/form) or by post to:
The Office of the Information Commissioner
Jersey JE2 3RG