Privacy Policy

Last updated: 15 December 2025

Website: moftministriesinternational.com

Controller: Moment of Truth Ministries International (registered in the UK)

Contact: Moment of Truth Ministries International 71-75 Shelton Street, London WC2H 9JQ,

Email: info@moftministriesinternational.com

This Privacy Policy explains how Moment of Truth Ministries International (“we”, “us”, “our”) collects, uses, shares, and protects personal data of visitors, members, donors, volunteers, subscribers, and other individuals who interact with our website or services. It explains your rights under UK data protection law (UK GDPR and Data Protection Act 2018) and the EU GDPR, where applicable, and how to exercise them. This policy is written in plain language and is concise, transparent, and easy to access.

1. What Personal Data We Collect

We may collect and process the following categories of personal data:

Identity and contact data

  • Name, title, postal address, email address, telephone number, date of birth (where necessary).

Transactional and Financial Data

  • Donation payment details (payment reference, amount, date). We do not store full card details on our servers; payment is processed by our payment processor.

Website, device, and usage data

  • IP address, device identifiers, browser and operating system, pages viewed on the site, referrer, cookies and similar tracking data, timestamps, and other diagnostics.

Communications

  • Correspondence, messages, newsletter subscription preferences, enquiries, and responses.

Special category data (sensitive)

  • We generally avoid collecting special category data. If we do (for pastoral care, safeguarding, health needs for events, etc.), we will collect and process it only where strictly necessary and on an appropriate lawful basis (explicit consent or another permitted basis under UK/EU law).

Third-party sources

  • Where permitted, we may receive information from third parties (e.g., payment processors, social networks, analytics providers, churches, referrers).

2. Purposes of Processing and Lawful Basis

We process personal data for these purposes and rely on the following lawful bases under UK GDPR / EU GDPR:

  1. To provide services, respond to enquiries, administer events, performance of a contract, or take steps prior to a contract.
  2. To process donations and financial transactions, performance of a contract, and compliance with legal obligations (accounting, tax).
  3. To send newsletters, service updates, and marketing where you consent. You can withdraw consent at any time.
  4. To maintain our website, protect against fraud and abuse, and ensure security of legitimate interests (to keep the site secure and to run the organisation effectively). We will perform a balancing test for legitimate interests to ensure your rights are not overridden.
  5. To comply with legal obligations, e.g., safeguarding, anti-money laundering, and charity reporting obligations.
  6. For archival, research, or statistical purposes (in the public interest or legitimate interests) where compatible safeguards apply.

For each service or feature, we will tell you the lawful basis that applies at the point where we collect the personal data. Where the lawful basis is legitimate interests, we will make that explicit and explain the legitimate interest we pursue.

3. Cookies and Tracking

We use cookies and similar technologies to improve our website, remember preferences, measure visits, and provide personalised content. When required by law, we obtain consent for non-essential cookies (for example, advertising or analytics cookies). You can manage cookie preferences through the cookie banner or via your browser settings. For more information on what we use and why, see our Cookie Policy.

4. Recipients and Third-Party Processors

We may share personal data with:

  • Service providers and processorswho perform services on our behalf (payment processors, email/CRM providers, hosting, analytics, IT support). We use written contracts to require processors to protect personal data and to act only on our instructions, as required by Article 28 GDPR.
  • Professional advisors and authorities,when required by law (e.g., courts, regulators, law enforcement, statutory reporting).
  • Other ministries, churches, or partnerswhere you have given consent or where sharing is necessary for the service (e.g., event administration, pastoral care).

We will never sell your personal data.

5. International Transfers

If we transfer personal data outside the UK or EEA (for example to a cloud provider or a subgroup of service providers), we will ensure appropriate safeguards are in place (for example: transfers to countries with an adequacy decision, Standard Contractual Clauses, the UK International Data Transfer Agreement or equivalent safeguards) and we will document the legal basis and safeguards for such transfers. Where necessary, we will complete a transfer risk assessment in line with ICO guidance.

6. Data Retention

We retain personal data only as long as is necessary for the purpose(s) for which it was collected and to comply with our legal or regulatory obligations. Retention periods will vary by category:

  • Donation records, accounting, and tax: usually retained for at least 6 years for UK tax purposes (or as required by law).
  • Contact details for newsletter/subscriptions: retained until you unsubscribe or we have no lawful basis to retain them.
  • Website logs and analytics: retained in anonymised or pseudonymised form where possible; specific retention periods are set in our internal schedule.
  • Pastoral or safeguarding records: retained according to legal and safeguarding requirements and our internal safeguarding policy.

If we cannot provide a specific fixed retention period, we will explain the criteria used to determine retention. You may request information about the retention period that applies to you.

7. Your Rights

Under UK GDPR and the EU GDPR, you have the following rights (subject to exemptions):

  • Right to be informed: to receive clear information about how your data is used.
  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to correct inaccurate or incomplete data.
  • Right to erasure (right to be forgotten): to request deletion of your personal data in certain circumstances.
  • Right to restrict processing: to pause processing in certain circumstances.
  • Right to data portability: to receive data you provided to us in a structured, commonly used machine-readable format.
  • Right to object: to object to processing that is based on legitimate interests, public interest, or direct marketing.
  • Rights in relation to automated decision-making and profiling: only where such processing takes place.

To exercise any of these rights, contact the ministry at the stated email address. We will respond to valid requests within statutory timeframes (normally one month; this may be extended in complex cases with notice to you). You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) in the UK or your local EU supervisory authority.

8. Children and Young People

We do not knowingly collect personal data from children under 13 without parental consent. Where children participate in activities (events, registration, pastoral care), we will collect minimal data necessary and obtain parental/guardian consent when appropriate. If you believe we have collected data about a child without appropriate consent, please contact us, and we will take steps to delete it.

9. Security Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, destruction, or damage. These measures include secure servers and hosting, encryption where appropriate, access controls, staff training, and contractual controls with processors. While we aim to protect your data, no system is completely secure; if a personal data breach occurs, we will follow our breach response process and notify affected individuals and the ICO where required by law.

10. Automated Decision-Making and Profiling

We do not carry out profiling or automated decision-making that produces legal or similarly significant effects without explicit information and safeguards. If we introduce such services in the future, we will provide clear information and mechanisms to exercise your rights.

11. Marketing and Communications

We will only send marketing communications where you have given consent or where we otherwise have a lawful basis (for example, when there is legitimate interest and you have not objected). Every marketing email or message will contain an easy way to opt out/ unsubscribe. You can also contact the ministry at the stated email address to change your preferences.

12. Third-Party Links and Embedded Content

Our website may contain links to and embedded content from third-party sites (e.g., video hosting platforms, social media). These third parties have their own privacy policies and practices. We are not responsible for the processing of your data; please read their privacy notices before using those services.

13. Changes to this Policy

We may update this Privacy Policy from time to time (for example, reflecting new legal or regulatory requirements). We will publish the revised policy on our site with a new effective date. Where required by law, we will seek consent for material changes to the way we process personal data.

14. How to Complain

If you have any concerns about our handling of your personal data, please contact us first at: Moment of Truth Ministries International (registered in the UK). You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO): https://ico.org.uk/.

15. Contact Details

Controller: Moment of Truth Ministries International

Postal address: Moment of Truth Ministries International 71-75 Shelton Street, London WC2H 9JQ

Email: info@moftministriesinternational.com