Effective Date: 21 January 2021
The website, www.morningtonspiritualistchurch.com (“The Site”) has created this privacy statement in order to demonstrate our firm commitment to your privacy.
Since 1975, the Mornington Spiritualist Church has been sharing information about Spirituality and Spiritualism with the aim to help people improve the quality of their lives, discover and align with their purpose, and raise their awareness of Spirit within their lives. Protecting your privacy is one of the core believes of this organisation and wish to provide you with a straightforward and clear policy statement about how we collect, use and store your information.
When you interact with our site, we collect two types of information: Personally Identifiable Information (PII) and Non-Personally Identifiable Information (NPII). The processing of personal data is governed by the General Data Protection Regulation 2016/679 (the “GDPR”). Under the EU’s General Data Protection Regulation (GDPR) personal data is defined as:
“Any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”
“The Site” complies with its obligations under GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.
Through our website and social media platforms we ask our users to give us contact information including name, e-mail address, and other optional communication preferences such as topics of interest and products of interest.
To fulfil order requests, we collect contact information including name, billing address, shipping address, financial payment information, and names of live event attendees. We do not store your credit card data on any of our servers and are fully PCI compliant.
Our website may include customer testimonials and service reviews where you may post information, or we may post information with your consent.
We also collect some information automatically when you visit our website(s) or log into one of our platform(s). This includes IP address and other online identifiers. We also record the pages that you visit, products you interacted with and other information about your activity on the site(s).
Non-Personally Identifiable Information (“NPII”) data is collected by “The Site” and ad technology partners and is used for retargeting. We, and/or one or more of our ad technology partners, may collect NPII from people who visit our website. This data is anonymous, and can include information such as web pages you’ve viewed, date and time of pageviews, domain type, location information associated with your IP address, and your interactions to an ad delivered by us or our ad technology partners. Our ad technology partners use different methods to collect this type of data, including cookies and web beacons (pixel tags or clear gifs).
Our Use of Data “The Site” may use your personal information to:
- Provide information and services Send requested event or service information Send marketing communications through subscribed channels about news, products, offers and events
- Send you emails to respond to questions, concerns and customer support inquiries
- Send email confirmations, receipts and other transactional emails related to orders from the websites
- Provide you with continuing access to your customer account on “The Site”, including your order history and access to digital products, event passes and subscription services
- Administer membership records
- Contact you (where necessary) in relation to orders
- Maintain our own accounts and records
- Personalise your experience using automated decision-making for products, services, personalised content, recommendations, and features
- Improve the services we offer you, or the functionality of our site and ensure technical functionality
- Process your payment or prevent or detect fraud
Marketing “The Site” Events and Services
We may use Personal Information to provide you with materials about offers, products, and Services that may be of interest, including new content or Services. We may provide you with these materials by newsletter, or email, as permitted by applicable law. Such uses include:
- To tailor content, advertisements, and offers
- To notify you about offers, products, and services that may be of interest to you
- To provide Services to you and our sponsors
- For other purposes disclosed at the time that Individuals provide Personal Information, or Otherwise with your consent
Financial information that is collected is used to bill the user for products and services. We do not store credit card details nor do we share customer details with any 3rd parties in a manner that personally identifies the customer.
If you sign up for a membership, payment plan or purchase any of our paid subscription service, your credit or debit card information (such as card type and expiration date) and other financial data that we need to process your payment may be collected and stored by us and/or the payment processors with which we work. We may also collect some limited information, such as your postal code, mobile number, and details of your transaction history, all of which are necessary to provide the Service. In addition, the payment processors generally provide us with some limited information related to you, such as a unique token that enables you to make additional purchases using the information they’ve stored, and your card’s type, expiration date, and certain digits of your card number.
Legal basis for processing your personal data
Article 6 of the General Data Protection Regulation (2016/679) states that:
“Processing shall be lawful only if and to the extent that at least one of the following applies:
- the data subject has given consent to the processing of his or her personal data for one or more specific purposes;
- processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
- processing is necessary for compliance with a legal obligation to which the controller is subject;
- processing is necessary in order to protect the vital interests of the data subject or of another natural person;
- processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
- processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Point (f) of the first subparagraph shall not apply to processing carried out by public authorities in the performance of their tasks.”
We keep your personal data for no longer than is reasonably necessary.
“The Site” will retain purchase accounting records, tax, and GST records for a minimum of 7 years as required by law. We will retain your information for as long as your account is active or as needed to provide you with services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Our data retention for physical product orders will not extend beyond 7 years, at which time your purchase data will be marked for permanent deletion and will no longer be accessible.
If you purchase a digital product, you will be asked to create a username and password to log into your customer account portal in order to access the product(s) purchased. Digital product purchases grant lifetime ownership and data will be retained in order to carry out our lifetime guarantee. If your digital product is not accessed within a 6-year period at any point in time, your account will be deemed inactive All inactive data will not be retained beyond 10 years at which time the data will be marked for permanent deletion.
When you register to receive emails from “The Site”, your personal data is stored so that we can continue to send you relevant emails. You may request removal at any time by contacting us.
“The Site” retains non-personally identified data, including encrypted, anonymised and pseudonymised data for 10 years.
Third Party Websites and Services
We work with third party service providers, including but not limited to Google Analytics, to help us better understand how you use the “The Site” website. These third party service providers will place cookies on your computer to collect information, such as how you were referred to the “The Site” website, how you navigate around the “The Site” website, what you purchase and what traffic is driven by various marketing methods. This information will help us to better serve you and provide you with more personalised information and product offerings. We do not allow third party service providers to collect your credit card information, e-mail address or password information. These third party service providers may only use your personal information to perform services for us and may not share your personal information with anyone else, or use it for any other purpose, except on an aggregated, non-personally identifiable basis.
Your Rights & Controlling Use of Your Data
You have the right to ask us not to use your personal information for direct marketing purposes. You also have the right to request a copy of the personal information that we hold about you and to have any inaccuracies rectified. Please note that, as permitted by law, we may charge a nominal fee for information requests and may require you to prove your identity. Following a request, we will use reasonable efforts to supply, correct or delete personal information about you in our files.
Please contact Customer Service to request the removal of your PII from our database or to no longer receive future communications.
Functionality of the Website(s)
All cookies used by our website(s) are used in accordance with the current UK and EU Cookie Law and before a cookie is placed on your computer, you will be presented with a message requesting a better experience and service to you. You may, if you wish, deny consent to the placing of cookies; however certain features of our website(s) may not function fully or as intended.
To disable the Google Analytics cookie and other third party web analytics service provider cookies, you can choose to have your browser notify you when cookies are being written to your computer or accessed, or you can disable cookies. By default, most internet browsers accept cookies but this can be changed. For further details, please consult the help menu in your internet browser.
You can choose to delete cookies at any time however, you may lose any information that enables you to access our website more quickly and efficiently including, but not limited to, personalisation settings and passwords.
Data security is of great important to “The Site” to protect your data, if you create an account with password access, you are responsible for keeping your password confidential. It is recommended your password use both upper-case and lower-case letters, inclusion of one or more numerical digits, and inclusion of special characters following general password strength recommendations across the internet.
It is recommended that you ensure that your internet browser is up to date and that you consult the help and guidance provided by the developer of your internet browser if you are unsure about adjusting your privacy settings.
“The Site” strives to do our best to protect your personal data. However, transmission of information over the internet is done at your own risk. We cannot ensure the security of your data transmitted to our website.