10.1     Cookies, also known as browsers or tracking cookies, are small text files that are added to your computer when you visit a website. They help websites to perform certain functions e.g. to know who you are if you log into a restricted part of a website, for shopping carts, and for tracking purposes.

10.2     The Diocese uses the following cookies:

10.2.1 Google analytics. We use Google analytics cookies on the website for tracking purposes. The cookies allow us to understand general traffic to our website for example number of visitors and length of time on site. This process does collect data, but in an anonymous form, to help us make improvements, develop the website and enhance the user experience.

10.2.2 Privacy preferences. We use a tracking cookie, which is added to your computer, to remember your cookie preferences i.e. if you have allowed or disallowed them.

10.2.3 Register for events. We have the ability for you to register for events on the website. If you do so this information goes directly into our database. In order to register our database adds an essential cookie (reaction server) to your computer.

11        MANAGE COOKIES

11.1     If you would like to opt-in or opt-out of using cookies then you should be able to do so using your browser. You can review your cookie settings at any time.

11.2     Please note that you cannot opt-out of the deployment of cookies that are necessary for delivery of our website or services to visitors.

12        GLOSSARY “Data Controller” means a person, organisation or body that determines the purposes for which, and the manner in which, any Personal Data is processed. A Data Controller is responsible for complying with the data protection laws including the GDPR and establishing practices and policies in line with them.

“Data Processor” means any person, organisation or body that Processes personal data on behalf of and on the instruction of the Diocese.

Data Processors have a duty to protect the information they process by following data protection laws.

“Data Subject” means a living individual about whom the Diocese processes Personal Data and who can be identified from the Personal Data. A Data Subject need not be a UK national or resident. All Data Subjects have legal rights in relation to their Personal Data and the information that the Diocese holds about them. “Personal Data” means any information relating to a living individual who can be identified from that information or in conjunction with other information which is in, or is likely to come into, the Diocese’s possession. Personal Data can be factual (such as a name, address or date of birth) or it can be an opinion (e.g. a performance appraisal). It can even include a simple email address. A mere mention of someone’s name in a document does not necessarily constitute Personal Data, but personal details such as someone’s contact details or salary (if it enabled an individual to be identified) would fall within the definition. “Processing” means any activity that involves use of Personal Data. It includes obtaining, recording or holding the information or carrying out any operation or set of operations on it, including organising, amending, retrieving, using, disclosing, erasing or destroying it. Processing also includes transferring or disclosing Personal Data to third parties. “Special Categories of Personal Data” (previously called sensitive personal data) means information about a person’s racial or ethnic origin, political opinions, religious or similar beliefs, trade union membership, physical or mental health or condition or sexuality. It also includes genetic and biometric data. Special Categories of Personal Data can only be processed under strict conditions and such processing will usually, although not always, require the explicit consent of the Data Subject.

X