Revelation Church Full Privacy Notice

 

1. Your Rights, this notice and our approach 

We are Revelation Church-London (RCL), a Registered Charity (no. 1120790) and Company Limited by Guarantee  (no. 06266029). Revelation Church is also a member of the Evangelical Alliance (membership number 221868)  and the Relational Mission family of churches. 

 

Under the UK GDPR and Data Protection Act 2018, you have rights as an individual which you can exercise in  relation to the information we hold about you. Your rights are detailed on the ICO website, including: 

 

• Right to Access – Copies of your data and how we use it 

• Right to Rectification – Correcting inaccurate data 

• Right to Erasure – Deleting data (if no longer needed) 

• Right to Object – Stop processing data (e.g. for marketing) 

• Right to Portability – Receiving data in machine readable format 

 

This Privacy Notice tells you what to expect when Revelation Church (RCL) collects personal information under the  UK GDPR and Data Protection Act 2018 and Data (Use and Access) Act 2025 (DUAA). It applies to information we  collect when you directly access our services (for example, Sunday services, events, kids and youth groups,  newsletter sign ups, Gospel Community (GC) sign ups, mission teams and our RM Training courses or events) and  in our day to day operation (for example, where you may give financially or apply for a paid or volunteer position with RCL).

 

Revelation Church London is committed to protecting and respecting your privacy. This statement explains when  and why we collect personal information about people who visit us, our website, or connect with us on social  media, how we use it, the conditions under which we may disclose it to others and how we keep it secure.  Whenever we collect information from you, we will make it clear what information is required in order to provide you with the information or service you have shown interest in. 

 

We do all that we can to ensure that your data is processed fairly and lawfully and used for the intended purpose.  We aim to make sure the data we hold is accurate, adequate, relevant, not excessive and is not kept longer than  is necessary in relation to the purpose it is held. 

 

We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get  your parent/guardian's permission beforehand whenever you provide us with personal information. 

 

Revelation Church London may use your information to:  

• • Process a donation that you have made, and claim gift aid on it, with your written permission.

• Process transactions that you have requested, i.e. registering you for groups and events run by the  charity, or supplying you with tickets for events or products where that is applicable. 

• Ensure that children and youth attending a group or event are safely registered and accounted for.

• Send you communications which falls within the scope of the charitable objectives of the church, and for  the purpose of developing the congregation at RCL and the Relational Mission family of churches. This  would be with permission, via our Connect form, welcome pack, through an event or training course. • Seek your views or comments and ask for feedback. 

• Notify you of changes to our services, events and role-holders. 

• Carry out comprehensive safeguarding procedures (including due diligence and complaints handling) in  accordance with best safeguarding practice from time to time with the aim of ensuring that all children  and adults-at-risk are provided with safe environments. 

• Provide appropriate levels of pastoral care to members. 

• Administer membership records and to keep records of your relationship with us. For example: what  events you have attended, what enquiries or complaints you have made, what areas of work you have  supported or what resources you have ordered. 

• Process and manage employee and volunteer roles. 

• Process an application for a job or a volunteer position. 

• Under the basis of legitimate interest, to use photographs and videos of various church events (including  Sunday services and small group gatherings) that contain identifiable persons where this is deemed  appropriate. Our full photo and video policy (G011) can be found online at revelationchurch.org.uk/policy. 

• Analyse your personal information to understand demographics of those within the church, including  address information (where provided). We do this to ensure that the charitable objectives of the church  are being met and that what we provide is relevant for all types of people. 

• Enable us to meet all legal and statutory obligations 

• Send direct electronic marketing (e.g. email or text updates on church activities) to donors and supporters  who provided contact details during giving or events, using DUAA soft opt-in (legitimate interest basis;  easy opt-out via unsubscribe link or reply). Other uses: legitimate interests for internal communications/events/ demographics analysis; explicit consent for photos/videos (see Policy G011);  contract/legal obligation for bookings/payroll/ pensions. 

 

We will store your information securely on our systems, we restrict access to staff, volunteers and contractors  who have a ‘need to know’ basis (i.e. have a legal responsibility, or part of performing their role / duties) and we  train/direct them in handling the information securely and appropriately in line with our data protection policies. Copies of our IT & Information Security and Data Protection policies can be found on our website at  www.revelationchurch.org.uk/policy.  

 

We may from time-to-time share data with key partners within the wider Relational Mission family of churches whom Revelation Church is a member (such as Relational Mission – Charity Reg No. 1150583, Pioneer Mission – Charity Reg No. 1191719). For a full list, email admin@revelationchurch.org.uk. This will only be done where it relates to events, newsletters and other such communications where, as partners and a family of churches we are  working together. Data subjects consent to their data being shared among these parties for this limited use when  they agree to this privacy policy. We will never share data relating to our day-to-day operation with these parties (for example, employment and HR). As part of this agreement all parties are committed to safeguarding the  privacy of your information and each partner is fully compliant with the UK GDPR and Data Protection Act 2018. You can opt out or update the details we hold on you at any time by following the steps outlined in section 4 and  2.9 of this privacy statement and notice respectively. 

 

While some third-party providers we use are based outside the UK, we ensure appropriate safeguards are in place  for international data transfers. Where providers are based in countries without an adequacy decision from the  UK government, we use Standard Contractual Clauses or other approved transfer mechanisms to protect your  data. For more information about how we protect your data when using international providers, please contact  us using the details in Section 4. 

 

Further information about the privacy approaches of the third parties providers we use are shown via webpage  links found in this notice below. 

 

Our approach is further outlined in our Data Protection Policy. This includes the security precautions in place to  protect the loss, misuse or alteration of your information. 

 

2. Accessing our services 

 

2.1 Booking Events 

We use ChurchSuite and Eventbrite (third party providers) to facilitate our event booking process and  communications. Their privacy statements can be found here: ChurchSuite, Eventbrite. Both are PCI-DSS  compliant (industry standard). 

We will ask you for contact information and your preferences according to the type of event being run. The  information we collect is used to facilitate the event contract between us (by you attending the event). It may  also support compatible follow-up (e.g., event feedback or church updates via DUAA soft opt-in with easy  unsubscribe), unless you opt out. This information will not be used for any other purposes unless you have  consented for us to do so. We will hold the data you provide to us for the duration of the event plus a reasonable  length of time post-event to handle any follow-up queries.

​

2.2 Financial Transaction Management 

Revelation Church uses a variety of third-party companies to help facilitate its financial transactions and  management. This will involve in the main names, addresses and debit/credit card and bank details depending on  the nature of the transaction. 

 

Xero is the finance management application used by Revelation Church and is backed up using Backupmybooks. Stripe is used to capture debit/credit card transactions mainly for event related transactions and any giving  transactions processed through ChurchSuite. Again these are PCI-DSS compliant with purchase information only  stored as long as it is needed to make the transaction. 

 

We also use JustGiving and CAF alongside Stripe and GoCardless for processing donations made via our website. JustGiving and CAF link directly with HMRC to claim Gift Aid on Revelation Church’s behalf. ChurchSuite is used to  process all other Gift Aid claims with HMRC, in which you have provided Gift Aid consent and asked us to claim  Gift Aid on your donations. The data is only shared directly with HMRC, and consent can be withdrawn at any  time by emailing admin@revelationchurch.org.uk. 

 

We bank with HSBC Bank and our Payroll is carried out by Dataplan (IRIS) who process all supplier, staff and  contract payments. All financial information will be shared with our chartered accountants and independent  examiners at IEL.

​

Records are kept as a minimum for the period required to meet statutory compliance or until the contract is  completed. 

 

2.3.Direct Communications 

Revelation Church communicating, asking for feedback and updating members / leaders / volunteers of the church and associated members of the public is important in fulfilling its mission and charitable objectives. We  send out regular newsletters and updates for which specific consent is given at the point of subscription (via the  Connect Form, through a paper Connect slip or giving written consent to the Revelation Church Office). 

 

You can unsubscribe from our emails at any time; directions on how to do this will be contained within the email.  

 

Alongside this there are groups of people (e.g. ministry leaders, volunteers) where a legitimate interest is shared  with Revelation Church. Contact information is held on these groups to facilitate communication, but again can be  unsubscribed from and information removed at any time by you by submitting your request to  admin@revelationchurch.org.uk. 

 

From time to time we may ask for feedback to understand how we can serve people connected to Revelation  Church better. Once this feedback is assessed any personal data (mainly contact information) connected to this  will be deleted. We use the third-party provider Mailchimp to deliver and help with these communications.  Information is stored until the data subject removes their data or unsubscribes. 

Your consent for direct communications remains valid until you withdraw it by unsubscribing or contacting us. 

 

2.4 Connecting via our website 

Revelation Church London uses its website to inform people as well as to facilitate the gathering and sharing of  information mentioned in 3.3. Our website uses the Wix platform to host and facilitate activity. Within the  platform there are analytics, but information is only processed in a way that does not identify anyone. 

 

Links to other websites (on our Revelation Church website) are not covered by this privacy notice. Please review  the privacy notices / policies on the sites you visit. 

 

Revelation Church on its revelationchurch.org.uk website uses some cookies when you browse the website pages.  These are used to ensure proper running of the website, and also to help us improve your experience when  browsing. We use essential cookies for site function and first-party cookies for gathering anonymised analytics  data about our website usage. Refer to Revelation Church’s G008 Cookie Policy found in the website pop-up  banner and Wix’s policy for more information. By clicking 'Continue' on the Cookie pop-up when entering our  sites you are agreeing to the use of these cookies. Turning cookies off may result in a loss of functionality when  using our website. We do not identify you through the use of cookies or information sent by your computer  except where you have asked us to remember your details. 

 

2.5 Connecting via social media / video channels / WhatsApp 

We use a number of social media and video channels to connect with our audience and those interested in  Revelation Church. As with our website we will only publish ‘new’ content if we have the consent from those  people the content refers to. Please refer to the privacy policies of our third party providers for more information: 

 

Twitter, Facebook, Instagram, Vimeo, YouTube, Messenger, WhatsApp, Zoom, Microsoft Teams

 

2.6 Connecting via email

All emails received (including attachments) to Revelation Church email addresses are monitored (for viruses or malicious software etc). We will use your email to correspond with you over the content of your enquiry until a  conclusion is reached. The nature of the content of your email will depend how long it is kept for. We will not add  your address to any direct communications list (see section 2.3) unless you have given your consent for us to do  so. If at any time you wish to remove your email address from our systems then please contact us as per section 4. 

 

2.7 Connecting with our training courses and RM Training initiatives 

In order to run specific RM training initiatives that Revelation Church operates, (e.g. LEAD, ID, Shepherd, UP), a  variety of personal data (contact, experience, church info etc.) is required to ensure the courses meet the needs  of the applicants. This is held on a legitimate interest/ contract basis. 

 

Other Initiatives directly run by Revelation Church will have information securely stored with third party providers - ChurchSuite, Microsoft 365 and Google Workspace. Data will be stored for the length of the course plus 6 months for  follow-up purposes, and financial records related to the course will be retained for 6 years in accordance with  HMRC requirements. 

 

2.8 Mission teams and supporting church plants 

As a part of serving our family of churches and planting new churches, mission and ministry trips are arranged (for  short and long term periods). The processing of personal data and some potentially sensitive data to ensure the  safe passage and security of those travelling, relocating and receiving ministry is therefore required. Specific  consent is obtained for the processing of this information and is only used for this purpose. This information is  held securely until the trip has been completed or until the individual ceases to travel on behalf of Revelation Church. 

 

2.9 Updating your ChurchSuite Communication Records or Preferences 

RCL uses ChurchSuite to host and process all personal information of guests and members of the church as  outlined above, upon receipt of a completed Connect form (where this full Privacy Notice is contained and  agreement of this Privacy Notice must be given to submit). 

Members of the congregation are welcome to download and access ChurchSuite app for the purpose of adapting  their communication preferences. Alternatively, you can contact the church office at 

admin@revelationchurch.org.uk or by post at Revelation Church, The Busworks, 39-41 North Road, London, N7  9DP at any time with such a request. 

 

2.10 Connecting with our Foodbank and CAP Debt Centre services 

Revelation Church London operates both Kentish Town Foodbank and Camden CAP Debt Centre. These services  have separate privacy notices and policies which can be located on the following links:

​

• Camden CAP Debt Centre: https://capuk.org/privacy 

• Kentish Town Foodbank: https://kentishtown.foodbank.org.uk/privacy-cookies-policy/ 

 

These privacy notices govern interaction with these services and additional consent will be obtained when  collecting data in line with their privacy notices and statements. 

 

3. Day to day running

 

3.1 General operation and systems 

In order to facilitate the operation of Revelation Church in the main, third party providers – Microsoft 365 and Google Workspace and their associated systems and cloud backup are used. For a full list of the IT systems and providers we  use, please refer to our IT policy at www.revelationchurch.org.uk/policy 

 

Paper documentation containing personal information is secured in lockable cabinets, only accessible by those  that need to know. Online /electronic systems access is restricted according to the ‘need to know’ principle as  outlined in section 1. 

 

In order to maintain compliance with Charity Commission and Companies House appropriate information is  shared with them regarding Trustees/Directors (e.g. contact and interest information) and is held in line with the  statutory minimums. 

 

3.2 Employment and HR 

Initial recruitment (e.g. CV personal information) to employment (e.g. contractual and ongoing performance  appraisals) will contain / require personal information to be held. This information is held because of a statutory  and legal responsibility to do so, but also to help ensure employees within Revelation Church are well looked  after. Similar information will be held for volunteers, especially those with specific responsibilities. All of this  information is held in line with principles outlined in section 1 and is held until all statutory responsibilities have  been fulfilled. 

 

During offers of employment, all staff are provided with our Employee Privacy Notice. 

 

Alongside the third party providers outlined in section 3.1, Dataplan (IRIS) and People's Pension are used to  facilitate payroll and pension provision. Where applicable to the role, disclosure and barring service (DBS)  requests are carried out; this is facilitated for Revelation Church by Thirtyone:eight.

 

4. Queries, concerns and subject access 

You can contact us to find out if we hold any personal information about you by making a Subject Access Request  (SAR). To make a request to RCL for any personal information we may hold on you, a SAR or to find out more  about our Privacy Notice or related queries, email us or write to us at: 

 

Revelation Church London, The Busworks, 39-41 North Road, London, N7 9DP 

admin@revelationchurch.org.uk 

 

If you have a concern or complaint about the way we are collecting or using your personal data, you should raise  your concern with us (using the contact information above) in the first instance or directly to the Information  Commissioner’s Office. 

 

5. Review of this Privacy Notice 

We keep our Privacy Notice under regular review. This Privacy Notice may change from time to time. If we make a  change to it that we believe materially reduces your rights, we will provide you with notice (for example, by  email). And we may provide notice of changes in other circumstances as well. Please check this page occasionally  to ensure that you’re happy with any changes. By using our website or connecting with us on any other available  touchpoint you’re agreeing to be bound by this Privacy Statement and our Data Protection Policy.

​

This Privacy Notice was last updated on 12th December 2025.