Privacy & Data Protection Policy

1. Purpose

This policy outlines how the organization collects, stores, and protects personal, financial, and digital information. It ensures compliance with applicable privacy laws and reflects our commitment to integrity and trust.

2. Information We Collect

The organization may collect:

Donor and supporter contact and contribution information,

Staff, volunteer, and board member personal data (e.g., addresses, identification),

Program participant data when required for ministry or safety,

Website or media engagement data (e.g., analytics, forms).

3. Use of Information

Collected data is used only for legitimate organizational purposes, such as:

Processing donations or reimbursements,

Communicating about ministry updates, events, or opportunities,

Complying with legal or financial reporting obligations,

Maintaining safety and safeguarding standards.

Information will never be sold, rented, or disclosed to third parties except as required by law or with explicit consent.

4. Data Security

All personal data will be stored securely.

Only authorized personnel shall access sensitive information.

Staff and volunteers must use strong passwords.

Backups shall be maintained.

5. Data Retention & Disposal

Records will be retained.

Personal data will be deleted or anonymized when no longer needed for legitimate purposes.

6. Data Breach Response

In the event of a suspected data breach, the Board Chair will be notified within 48 hours and take immediate steps to contain and investigate.

Affected individuals will be informed promptly in accordance with applicable privacy laws.

7. Rights & Requests

Individuals may request access, correction, or deletion of their data by contacting privacy@liminalministries.org.