- Why we collect and use your personal data
The overall purpose of the Confidential Declaration Form is to ensure that I take all reasonable steps to prevent those who might harm children, young people and/or vulnerable adults from taking up positions where they have substantial contact with children, young people and/or vulnerable adults in accordance with the Safer Recruitment and People Management Guidance (2021).
We use your data for the following purposes:
- Appointing individuals to positions that have substantial contact with children, young people and/or vulnerable adults.
- For the Diocese Safeguarding Officer in consultation with the Recruiter & Safeguarding Officer if required to conduct a risk assessment where an applicant discloses information on the form.
- To collect information about members of your household aged 16 and over (cf. Qs.6 & 7) if your role is deemed “home-based” as defined by the DBS.
- To undertake criminal records checks both in the United Kingdom and in non-UK countries where applicable.
- The categories of personal data we collect
We collect personal data in line with Record Keeping requirements.
Section 16 – Record Keeping | The Church of England
The information we process for these purposes is:
- The lawful basis for using your information
We collect and use personal data under the following lawful bases:
Personal data
- Consent (Article 6(1)(a)). You have consented to the transfer of your data to a non-UK country when applicable in order for us to undertake an overseas criminal records check.
- Legal obligation (Article 6(1)(c)). We are required by law to undertake the confidential declaration process in accordance with:
- Section 5A(3) and (4) of the Safeguarding and Clergy Discipline Measure 2016 as inserted by:
- Safeguarding (Code of Practice) Measure 2021 (also see Safer Recruitment and People Management Guidance – Section 5 – Confidential Declarations – Requirements).
Special categories and criminal information
- Explicit Consent (Article 9(2)(a)). You have consented to the transfer of your data to a non-UK country when applicable in order for us to undertake an overseas criminal records check.
- Substantial public interest (Article 9(2)(g) and Schedule 1, Part 2, paragraphs 10, 11 and 18 of the DPA 2018). It is necessary for reasons of substantial public interest in order to prevent or detect unlawful acts and protect members of the public from harm, including dishonesty, malpractice and other seriously improper conduct or for the purposes of safeguarding children, young people and vulnerable adults.
- Who we collect from or share your information with:
We collect your information from (where applicable or relevant):
- You
- Police
- Social Services in Local Authorities
- Current and previous employer/voluntary organisation
- Disclosure and Barring Service (UK)
- Criminal records organisations (non-UK)
Your personal data will be treated as strictly confidential and will only be shared with those involved in the recruitment/appointment process. In particular, your application will be submitted to a secure email and only disseminated to the Shortlisting Group. Your Confidential Application Form will only be made available to the Data Controller, Safeguarding Officer and Lead Recruiter, and, where appropriate, the Diocesan Safeguarding Adviser.
It may be shared outside the Church for the prevention or detection of an unlawful act; to protect members of the public from harm or safeguarding purposes with:
- Police
- Social Services in Local Authorities
- Statutory or regulatory agencies in the UK and in other countries (e.g. the Disclosure and Barring Service)
- Your personal data will be sent to countries outside the UK
Your data may be transferred out of the UK in order for us to undertake overseas criminal records checks where the recipient organisation is located in a third country or territory where applicable. This transfer is protected by UK adequacy arrangements, or, where necessary, your consent.
- How long do we keep your information?
I keep all electronic and print (if applicable) copies of your application and personal data secure. If your application is successful, your data will be held for no longer than reasonably necessary for the periods and purposes as set out in the retention table below at the following link and will access to the Data Controller and Safeguarding Officer:
If your application isn’t successful, your data will be held for 6 months after the recruitment process ends, and then destroyed.
- Your legal rights and complaints
Unless subject to an exemption under the UK GDPR or DPA 2018, you have the following rights with respect to your personal data:
- The right to be informed about any data we hold about you;
- The right to withdraw consent at any time, however, if you do so we may not be able continue with your application;
- The right to request a copy of your personal data which we hold about you;
- The right to request that we correct any personal data if it is found to be inaccurate or out of date;
- The right to request your personal data is erased where it is no longer necessary for us to retain such data;
- The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing;
- The right to object to the processing of your personal data (if applicable)
- The right to obtain and reuse your personal data to move, copy or transfer it from one IT system to another. [if applicable]
To exercise these rights, please contact the Data Officer above using the contact information provided below.
- Complaints or concerns
If you have any queries regarding this processing activity, please contact, in the first instance, the Data Officer.
If you have any concerns or queries about how St Peter Barge handles your personal data, please contact the Data Protection Officer at [email protected].
You have the right to make a complaint at any time to the Information Commissioner online at: Your personal information concerns | ICO or by phone on 0303 123 1113 (local rate).