Tertiary Students Christian Fellowship (TSCF) is committed to the protection and prudent use of personal information obtained from those within our network. This policy explains how we collect, process, use and share personal information. This policy is in line with the New Zealand Privacy Act 2020.
- The type of information we collect
- TSCF may collect, store and use the following kinds of personal data:
- Information about your computer and visits you make to our website, such as identifying IP addresses, locations and number of page views. Location data, where applicable for digital visitors, from IP address information does not reveal the user’s identity.
- Information on any transactions you make with us, including any donations or payments. This information will include name, address or other contact information, credit card* or banking details and amount paid. *We don’t collect credit card details for online transactions
- Name and contact details provided when a comment is made on one of our articles or pages or for the expressed purpose of subscribing to services such as events, our email updates or publications.
- TSCF’s database records names, email and postal address, donation and payment details, registrations for events, and affiliation information where relevant, such as student group or church membership. We also collect information regarding demographics such as place of study, course, year and group affiliation to improve our products and services and tailor our events and communications.
- For registration for events we may collect information of gender, date of birth and dietary requirements for the purpose of ensuring we are able to follow good health and safety protocol for all attendees.
- We will also collect personal information from job application forms, CVs, and in-person interviews.
- TSCF also has access to information posted on TSCF or affiliated groups’ social media sites, including photographs and messages.
2. How we collect it
Personal information is provided to us in the following ways:
- by those who are or have been part of TSCF groups;
- via participation in events or requests for communication;
- from those who have shown an interest in any of TSCF’s work, individual staff, regions or initiatives (including through financial support); or
- through attendance at a conference or event we have hosted (such as the Student Lounge at Festival One, Summit Student Leaders conference etc).
Metadata is gathered from social media mapping trends and measuring website traffic. There is no personal data gathered via these platforms.
3. How we use the information we gather
We use this information to:
- Process donations, contact financial supporters and provide donation tax receipts
- Keep in touch with our supporters including information, news, or new fundraising initiatives
- Keep in touch with students in our groups and attending our events
- Publicise national or regional events and trainings we are organising
Where people have expressed a preference for the type and method of communication, we endeavour to begin and to cease communication as soon as we are aware of the preference.
4. Children’s Online Privacy
We are concerned about the privacy of young children and do not knowingly collect any personal information from a child under 13. We encourage you to become involved with your child’s access to the Internet and to our site in order to ensure that his or her privacy is well protected.
TSCF is committed to ensuring your personal information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect.
We use appropriate security measures to protect personal information from being misused, altered, accessed inappropriately or disclosed. Our website requires a Secured Socket Layer (SSL) connection, so information on forms submitted through the website is encrypted.
TSCF will not share personal information, including email addresses, with anyone outside our organisation without your permission.
We do outsource some of our processes to third party providers who process data: we use Xero accounting software platform, Infoodle as our CRM host, and EziDebit for processing donations via credit card. Their privacy policies can be found via the links below:
- Xero: https://www.xero.com/nz/about/legal/privacy/
- Infoodle: https://infoodle.com/privacy-policy-2018
- Ezidebit: https://www.ezidebit.com/en-nz/privacy-policy
We will not allow third party service providers to use personal information for their own purposes. They are only allowed to process it in accordance with our instructions.
We take steps to safeguard all information including by restricting access to our database and treat it in accordance with all applicable laws. At any time a supporter may request the information we hold about them, and request to be removed from our database.
6. Your rights
We agree to do any of the following at your request:
- Give you access to your personal information. You can request your personal information be sent in a format you can access if you provide us with what information you need and proof that you are the one requesting access to your own information.
- Update your personal information, such as subscription lists that you may be part of.
- Delete your personal information. If you withdraw your consent to allow us to hold your details, we will remove identifying information from our database and make any information we must hold (such as giving records) anonymous.
- Restrict the processing of personal information. If we must hold some of your data in order to comply with your request or for other legal purposes, you may limit the information we hold.
A cookie is a small data file that websites write to your hard drive when you visit them. The only personal information a cookie can contain is information you supply. Most web browsers automatically accept cookies, but you can usually modify your browser to decline them.
8. Links to other websites
Occasionally our website contains links to enable you to visit other websites of interest easily. However, once you have used these links to leave our site you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites not governed by this privacy statement.
9. How long we keep your personal information
Information related to finances and registration will be kept as long as needed for practical or regulatory purposes, or until the person in question requests that we remove it.
Many TSCF partners maintain a lifelong relationship with TSCF, supporting generations of students who come after them. We will only delete someone’s contact information if they request it. You may request details of personal information we hold about you by contacting us: firstname.lastname@example.org. If you believe information we are holding about you is incorrect or incomplete please contact us as soon as possible. We will promptly correct any information found to be incorrect.
10. Privacy Breach Notification
In the case of a serious privacy breach, TSCF will report any breach that could cause serious harm to the Office of the Privacy Commissioner and inform any relevant parties of the of the breach (as required by law from 1 December 2020). The threshold for serious breaches is measured via the direction of the Office of the Privacy Commissioner, found at https://www.privacy.org.nz/.
TSCF will also keep a log to capture and assess data breaches or near-miss breaches and to learn and develop our systems to be more capable of dealing with these risks.
If you have questions about this policy or the way we use your personal information, please let us know. You can email us at email@example.com; or call 04 384 7274