Privacy Policy

Who we are

Our website address is:

What personal data we collect and why we collect it

The privacy of all those who are connected in any way with Immanuel and St Andrew Church is important to us. However, we do need to hold and use some personal data, and the way we do that is governed by law.

Below are links to read or download our privacy notices which explain what data we may need to hold about you, what we do with it and what are your rights in respect of that data.

There is also a consent form which you can print, complete and sign. If you consider yourself part of Immanuel and St Andrew Church in any way or would like to get information about us, and are over 13 years old, please complete the form, if you have not already done so, and return it to the Church. It can be handed to a steward at a Service or sent to the Church, addressed to “The Data Controller” at the address above.

Please note – you must be over 13 years of age in order to give consent.

Read, print or download our General Privacy Notice.

Read, print or download our Consent form for use of personal data.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

The way we hold and use personal data (‘process’ is the legal term) is governed by law known as the General Data Protection Regulation (GDPR), which came into effect in May 2018. There are a number of things Immanuel and St Andrew Church has to do to comply with GDPR, including issuing privacy notices and getting people to deliberately opt in, or give consent, if they wish to receive information from us.

So, for most members of the congregation and others having an interest in us, the legal basis for our using their personal data to communicate with them is generally achieved by their giving consent to our doing so. For those who have a role in the Church, however (see below for example of roles), it is essential that we hold some personal data about them (name and address, for example) and use it to communicate with them so that they can fulfil their role. The role gives us a legal basis for having and using their data without us needing consent. However, we still need their consent to communicate with them on matters unconnected with their role.

Examples of roles are clergy, other ministers, Churchwardens, Deanery Synod Representatives, PCC members, safeguarding officers, Junior Church leaders and helpers, those who read lessons or lead intercessions in Services, those who help with refreshments, stewards, welcomers and people employed by the PCC.

The consent form relates mainly to communication. There are other ways which may give us a legal basis to have and use your data – for example, if you have completed a Gift Aid declaration it gives us a legal basis to use your data to process your donation(s) and claim Gift Aid – but not to do anything else with it, like invite you to social events.