Questionnaire regarding Privacy

 

Instructions: Please think in terms of information collected in electronic form, such as Email, Fax and the Internet and in paper form such as letters and correspondence. Please fill in the required information. For answers that are Yes or No, please circle the answer.

 

1. What types of information does the church collect?

 

 

 

 

 

2. Is any of this information personal (includes name, address and phone), sensitive (includes information related to health, race, ethnicity, religious beliefs, political opinion, membership of a professional organisation, trade union association membership, sexual practices or preferences and criminal record) or related to health?

Yes

No

 

3. How does the church collect information?

 

 

 

 

4. Why does the church collect information?

 

 

 

 

5. Are the people whose information is collected told in writing or verbally how to:

     Contact the church                                                                                Yes/No

     Ask for access to their personal information                                        Yes/No

     Find out what purposes the information is collected                            Yes/No

     Find out if his or her personal information is sent to anyone else        Yes/No

 

6. How does the church use the information it collects?

 

 

 

 

7. Does the church let any of the information to be given to anyone outside of the congregation?

Yes

No

 

8. For what purpose is the information collected?

 

 

 

 

9. How, if applicable, is information disclosed to third parties?

 

 

 

 

 

10. Were the people advised that the information might be disclosed to other people?

Yes

No

 

11. How can the church introduce procedures to check if information collected, is accurate?

 

 

 

 

12. Is the personal information sent through electronic means such as fax, email or through the Internet?

Yes

No

 

13. What steps are taken to ensure the accuracy and integrity of this transmitted information?

 

 

 

 

14. Where and how does the church store personal information, whether in paper form or electrical form?

 

 

 

 

15. What people have access to this personal information?

 

 

 

 

16. Who actually has a need to access this personal information?

 

 

 

17. What steps are taken to protect this personal information form unauthorized access, changes, misuse, loss or disclosure?

 

 

 

 

18. If a document that has personal information is not required any longer are they destroyed?

Yes

No

 

19. Does the church have a privacy policy?

Yes

No

 

20. Do officeholders in the church know about it?

Yes

No

 

21. Can people access their own information? How?

 

 

 

 

 

22. Are people able to correct their information? How?

 

 

 

 

23. Are unique identifiers assigned to people whose information you have collected?

Yes

No

 

24. Are the identifiers shared with any other individuals or organizations?

Yes

No

 

25. Are identifiers used in any databases?

Yes

No

 

26. Are any dealings by people with the church handled anonymously?

Yes

No

 

27. Are any donations apart from the collection plate handled anonymously?

Yes

No

 

28. Is any information sent outside of NSW by the church? To who?

 

 

 

 

29. Are there any privacy arrangements at the other end, if applicable?

Yes

No

 

30. Is any information obtained from outside of Australia?

Yes

No

 

31. Is there any information collected by the church stored on a server outside of Australia?

Yes

No