The Lakeside Group is committed to respecting your privacy. This notice explains how we use any personal information we collect about you and your rights in relation to it. Please read it carefully.

Who we are

The Lakeside Group is a group of six churches in Chew Valley, northern Somerset.

Our website address: lakesidegroup.org.uk

What personal data we collect and why we collect it

Cookies

Our website, like most, uses cookies. You can prevent their use through your browser settings, but you will then not be able to use all the functionality of our website.

We provide more information about the cookies we use in our Cookies page.

Embedded content from other websites

Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

We use Google services to generate maps on the site.

The website uses web fonts provided by Google but these are hosted locally so no personal data is collected by Google’s content delivery network.

Further information about Google’s handling of user data: policies.google.com/privacy.

Security measures

No personal details are stored in the website database by our security plugins.

Some data (including IP address, hostname, location) is temporarily stored in security logs on the server and/or sent via email to alert the website administrator of critical problems or suspicious activities on the site.

Analytics

We use Google Analytics to track how our site is being used: how users find our website, how they move around on it, how long they stay for.

No personal data is sent to Google Analytics. No Remarketing or Advertising features are set and IP addresses are anonymised while tracking. We enable support for user opt-out and exclude tracking for users sending Do Not Track header.

See also Cookies.

Who we share your data with

Except as set out here, we do not share, or sell, or disclose to a third party, any information collected through our website.

How long we retain your data

Emails sent via the links on the Contact page of this website are retained as per the data protection policies of the individual parishes.

Emails generated by the security systems of the website are retained by the website administrator for a maximum of one year.

What rights you have over your data

You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

The website is hosted at SiteGround in datacentres located in London (UK). It is protected by 256-bit encryption. SSL certificate provided by Let’s Encrypt from the Internet Security Research Group (ISRG).

SiteGround security details: siteground.com/datacenters/
Let’s Encrypt privacy policy: letsencrypt.org/privacy/

Website administrator emails reside in the data centres of Zoho.com, which adhere to GDPR: zoho.com/gdpr.html

Website database backups are encrypted and stored at Amazon S3 – server located in EU (London) and at Dropbox – data centres across the US – for up to 1 year.

AWS data privacy statements: aws.amazon.com/compliance/data-privacy/
Dropbox privacy policy: dropbox.com/terms#privacy

Additional information

How we protect your data

We have various measures in place to protect the website from malicious attack, including firewall protection, malware scanning, bot/spam blocking and encryption.

What data breach procedures we have in place

The website has internal reporting systems and contact mechanisms to alert us to any malicious activity on the site.

Contact information

If you have any privacy-specific concerns, please contact the Group Data Protection Officer.

Last updated: 14 August 2019