The International Church of Copenhagen (ICC) receives personal data in a variety of interactions both on and off the website. We work to ensure that this personal data is dealt with in a manner that respects personal privacy and data protection, and is inline with the European General Data Protection Regulation (GDPR).
You can read here about what kind of data we collect and why, what your rights are with regards to your data, and how we work to protect your data rights and privacy.
Data on the website
This section relates to data collected by or submitted directly through the website of the International Church of Copenhagen.
When you use this site, some personal data is collected. What data depends on how you interact with the site. ICC is committed to protecting and respecting your privacy. Here you can read more about what kinds of data the site collects, how it is used, and what your rights are with respect to your data.
By submitting personal data to us, you agree to us using your personal data as follows.
Information collection, purpose, and use
This site collects data while visitors are using it. Much of this data is anonymous and could not be used to personally identify you. However, in some circumstances, the site will also collect personally identifying data. Data collected may include but is not limited to: email address, IP address, usage data and cookie data. This data is collected for a variety of reasons, including (but not limited to):
- Newsletter sign-up: If you provide your email address and indicate interest in receiving our newsletter, your email address will be stored for this purpose. Information submitted in this way will never be sold to a third party or used for marketing purposes. This information will be stored indefinitely, or until you request it removed.
- Device responsive layout: Data about what type of device you are using is shared with the site in order to provide you with the correct user interface (tablet, desktop, or mobile layout)
- Social media interaction: If you are logged in to a social media account and choose to interact with social media icons on the site, this requires some exchange of data between the site and the social media outlet
- Analytics: Our analytics cookies track statistics like the number of users visiting the Site and which pages are visited most frequently. Analytics data may also be used to identify, diagnose and correct technical problems with the site
- Website security: Data about visitors to the site may be used to confirm that they are humans and not bots, and to prevent spam or illegal activity like attacks on the website server
You can read more about cookies – how they work, what they look like, and how you can control or delete them – on www.aboutcookies.org.
Like many sites on the Internet, this site collects data about visitor usage. This data is used to better understand how the site is used, allowing us to improve user experience. The tracked data may include (but is not limited to) information such as your Internet Protocol (“IP”) address, browser type and version, which pages are visited, and the time spent on those pages.
Be aware that if you change computers or browsers, update your current browser, or delete plug-ins and/or cookies, you may also delete opt-out cookies, plugins or settings.
Data communicated to ICC via other means
ICC also collects data based on communications that do not take place on the website – for example, if you email us, if you make a donation and request we report to SKAT so it can be claimed on your Danish taxes, if you become a member of ICC, or if you request in person or via email to be added to the newsletter or to a mailing list for a particular small group or activity.
Information in relation to financial transactions
ICC maintains lists that include names, email addresses, telephone numbers and CPR numbers for those employed by and those donating to the church. These are maintained for legal purposes and payments to official authorities (SKAT, ATP, AMBI, etc.). ICC works to ensure that this data is kept private, and it is only accessible to those few people responsible for ICC’s financial reports to official authorities.
Membership and activities
If you officially become a member of ICC, you will be added to a list of voting members of the congregation. This list is maintained to ensure all members can be informed of any important information about ICC, including the General Annual Meeting and any upcoming votes.
If you voluntarily sign up to receive information about recurring activities (for example a specific weekly or monthly discussion group), your name and email will also be stored for the purpose of sending you updates until you request no longer to be included on the mailing list for the activity/activities.
Duration of Data Retention
We retain data for as long as needed, based on the purpose the data was collected for. Once data is no longer needed, there may be some delay before the data is deleted permanently.
If you sign up for the newsletter, your email address will be kept for that purpose indefinitely. If you are receiving the newsletter, you can opt out by ‘unsubscribing’, at which point you will no longer receive our newsletter, and your email address will be retained for a maximum of 6 months, unless it needs to be retained for other purposes (for example, if you no longer wish to receive the newsletter, but chose to remain a member of ICC).
Summarizing analytics data about site traffic (for example total number of visitors to the Site in April 2021, or total number of views a given page has ever received) will be kept indefinitely. Any more specific Analytics records will be kept for up to 1 year.
Once the retention period has expired and your data is deleted, some of your rights over the data can no longer be enforced – for example, your right to access or correct your data as submitted to us is waived if that data has been deleted.
GDPR and your rights with regards to your data
Under GDPR regulation and data protection laws, all residents of a country in the European Economic Area (EEA) have the right, among other things, to request and receive access to any personal data stored by providers and to restrict its processing.
All EEA residents have the ‘right to be forgotten’, that is, to have their personal data deleted. This does not include any data we are obliged to keep for administrative, legal, or security purposes. You have a right to access your data. You can request information regarding what personal data we have from you and how it is being processed by us, or request information about how your data is stored and processed. You have the right to verify and correct your data, and request that it be updated.
Anyone who wishes to make use of these rights to access, correct, restrict or erase their personal data (if any) maintained by ICC, inside or outside the EEA, can contact ICC’s secretary. For improved speed of response, please use the subject line: “Personal Data Request”.
In your message, please detail whether you are requesting information about your data, requesting an update to your data, requesting deletion of your data, or restricting its processing. We will the respond as quickly as possible with the necessary followups to fulfill your request; this will when reasonable include measures to confirm your identity, in order to ensure that it truly is your own data you are requesting information about or changes to.
How We Protect Your Data
Your privacy and the security of your information are important to us. The site is scanned regularly for security holes and known vulnerabilities by well-regarded WordPress security plugins. Additionally, all sensitive information you submit is secured via Secure Socket Layer (SSL) certification.
Information gathered on this site is stored securely and only accessible to a limited number of individuals, who are required to keep the information confidential.
While we strive to protect your personal information, we cannot guarantee its absolute security. No method of transmission over the internet is completely secure. In the unfortunate event of a security breach, users will be informed on the site. Users who have given ICC permission to contact them will also receive notification of any security breach via email.
If you have questions, or if you wish to have your data removed, please contact ICC’s secretary to remove your personal data from our registries.
The Data Privacy Act Effective as of 25 May, 2018
The International Church of Copenhagen (ICC) maintains lists of members of the congregation who are voting members and others who have voluntarily signed up for activities and therefore, wish to be registered.
Registration of personal data can be removed or changed by request at any time. ICC will only maintain lists required by law. This includes names, email addresses, telephone numbers and CPR numbers for those employed and those donating to the church for legal purposes and payments to official authorities (SKAT, ATP, AMBI, etc.).
Personal data cannot contain other information than the above-listed items and may not contain data given by anyone other than the person identified by the data. The data is solely for the use by ICC and the content of the data cannot be given to others. Any breach of this practice will be reported to the appropriate authorities and the ICC Church Council immediately.
The Church Council appoints data entry people responsible to the Council to maintain the data, operations and maintenance of such. Those responsible will remove unnecessary or expired data at least once a year, or as often as deemed necessary.
There will be a review of the data lists and registries at the Annual General Meeting of the congregation once a year. Irregularities and breaches of security will be reported. The congregation will be reminded of the purpose and use of the data, including any changes, also for newcomers to understand.
The above policy was approved at the Council meeting the 22nd of May, 2018.