We use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
We utilise Google’s services to receive and send emails and to store and access data (the G Suite). Details around Google’s compliance to GDPR can be found here. These security precautions are combined with internal policies to ensure data is protected (e.g. the implementation of 2FA, password policies, etc).
We use a third-party service, JotForm, to provide us with customisable forms. Any information you enter onto an Acts 29 form is stored on the JotForm website before being emailed to an Acts 29 email address, which uses a third-party service, G Suite by Google. The forms we use may be a booking form for an event, a survey, questionnaire or quiz. If we do want to collect personally identifiable information through our web forms, we will be up-front about this. We will make it clear when we collect personal information and will explain what we intend to do with it. JotForm’s data security approach is described here https://www.jotform.com/security/.
Email and E-newsletter/ updates
We use a third-party provider, MailChimp, to deliver regular updates and communications about events or new specific initiatives. We gather statistics around email opening and clicks, using industry-standard technologies to help us monitor and improve our e-newsletter. All recipients will be given a simple option to unsubscribe, found at the bottom of all our emails.
Mailchimp’s security approach is described here https://mailchimp.com/about/security/.
We operate on Facebook, Twitter, Instagram and LinkedIn. If you send us a private or direct message via social media, the message will be stored by Facebook and Twitter for their standard terms. It will not be shared with any other organisations.
People who call us
When you call Acts 29, we may collect personal information. We use this information to help us answer your query and to improve our efficiency and effectiveness.
People who email us
Any email sent to us, including any attachments, may be monitored and used by us for reasons of security and for monitoring compliance with our office policy. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.
We use Eventbrite, a platform that facilitates organising events from invitations through to registration and accommodation. Events can be customised and delegates registration and payment details captured. Their security approach is described here: http://www.eventbrite.co.uk/security.
Other software platforms that are used to facilitate payments for events; these include Stripe Stripe and Paypal Paypal ; their approach to privacy and security for account holders and customers are described on their respective sites.
Customer Relationship Management
We use a CRM and marketing platform called Virtuous which has been designed to be used by not-for-profits. The system enables us to capture the contact details and communication history of our Acts 29 family, donors and supporters.
We work with a developer / design agency www.adozeneggs.co.uk who have built a bespoke database which supports the Acts 29 assessment process for applicant and candidate pastors. The platform has multiple security features including encryption, user authentication, account lockouts for incorrect login attempts and closely controlled access levels to safeguard data subject privacy.
This post is also available in: Italian