This page is part of our guidance to help parishes comply with the “General Data Protection Regulation”. As a result of the GDPR and the Privacy and Electronic Communications Regulations (PECR) you will need to have consent before you send ‘marketing’ or ‘fundraising’ communications to people, which includes general information about the activities of the parish, services and other events.
You may well need to gather a range of different consents to cover the range of data processing and communications that you carry out.
Here is a sample form that you might use to gather consent from people attending a church service or event solely to enable you to email them with details of other events.
Here is a second sample form that provides more comprehensive consent from church members.
These forms should be kept to ensure you have evidence that consent has been obtained. Good practice suggests you should renew the consent every few years. Email bulletins should always provide the opportunity for some to unsubscribe (i.e. remove their consent).