UNITARIAN CHURCH OF ALL SOULS

Privacy and Data Security Policy 

Participation on allsoulsnyc.org.

If you create an account on Allsoulsnyc.org, we store information about you in the Allsoulsnyc.org website database. This section addresses what is stored and who has access. 

We store the username, email address, and name of people who create accounts. 

We also store all comments posted on allsoulsnyc.org pages, posts and comments in Allsoulsnyc.org discussion forums, and direct messages sent to other Allsoulsnyc.org users. 

The public can see comments on pages and discussion forum posts and comments unless they are posted in a private section of the site. UNITARIAN CHURCH OF ALL SOULS staff members responsible for maintaining the Allsoulsnyc.org website software can also see all comments and posts in private sections and direct messages sent via Allsoulsnyc.org. 

The Allsoulsnyc.org website database, which contains comments, discussion posts, and direct messages sent on the website as well as all other website comment, is stored on a professionally managed web server. 

The UNITARIAN CHURCH OF ALL SOULS may occasionally share the names and email addresses of Allsoulsnyc.org accountholders as described in points 6 and 7 below. 

The UNITARIAN CHURCH OF ALL SOULS’s Constituent Database 

This policy addresses the collection, use, and safeguarding of data about individuals in the Unitarian Universalist Association’s (UNITARIAN CHURCH OF ALL SOULS’s) electronic database. It’s of particular interest to members, leaders, and staff of Unitarian Universalist (UU) congregations, as well as to employees and contractors working for the UNITARIAN CHURCH OF ALL SOULS or a District. 

Who do we keep information about? 

Current and former members of every UNITARIAN CHURCH OF ALL SOULS member congregation. 

Subscribers to UU World magazine. 

People who have registered with the UNITARIAN CHURCH OF ALL SOULS for various services such as receiving notifications when publications are available. 

People who have a relationship with a congregation but who are not an official member. 

Each congregation’s elected board members, staff, lay leaders, and volunteers. 

Ministers and professional religious leaders, active and retired. 

District staff and consultants. 

UNITARIAN CHURCH OF ALL SOULS Board members and members of Board appointed committees. 

People who have made gifts to the UNITARIAN CHURCH OF ALL SOULS and UNITARIAN CHURCH OF ALL SOULS-sponsored funds. 

Young adults who have registered for an account with Connect UU. 

General Assembly attendees. 

What information do we keep? 

Basic contact information: Name, address, telephone number, email address, and family and household relationships. 

A person’s date of birth, or certification that they are at least 18 years old (certification of majority). 

A person’s affiliations with congregations, including positions (e.g., Board membership) held. 

Preferences about whether to receive UU World magazine, email newsletters, solicitations, etc. 

History of service, such as dates of membership on a congregation’s Board or a UU committee. 

History of giving, excluding credit card information. 

History of professional credentialing and professional association membership (e.g., UU Ministers Association). 

History of event attendance (e.g., General Assembly) 

Social security numbers for people employed or contracted by the UNITARIAN CHURCH OF ALL SOULS, a district, or a congregation, and for people enrolled in a UNITARIAN CHURCH OF ALL SOULS insurance program. These are encrypted and stored separately from personally identifiable information such as names and addresses. 

Bank information for people who receive direct deposits from the UNITARIAN CHURCH OF ALL SOULS. 

What information don’t we keep? 

Credit card numbers. We use secure and certified 3rd party processors to manage and retain credit card information. 

How complete is the data, and how far back does the data go, and how long is it retained? 

Names and mailing addresses are very complete. Other contact information is often missing. 

Data goes back to about 1996, with a few exceptions going back as far as 1929. 

Some information will be retained in perpetuity, in support of the UNITARIAN CHURCH OF ALL SOULS’s role of denominational historian. Other information—in particular, Social Security numbers and bank information—will be retained as long as it is required by law, regulation, and contractual agreements. 

Where does the information come from? 

Contact information about members and congregations comes from congregational administrators and members themselves to ensure delivery of UU World magazine. 

Birthdates or certifications of majority come from congregational administrators or members themselves. 

Information about congregational leaders and staff is supplied by congregations at least once each year. 

Donors supply information about themselves. 

UNITARIAN CHURCH OF ALL SOULS staff members provide information as part of doing business with congregations, their leaders, and their members. 

Notices of address changes are supplied by the U.S. Postal Service. 

Who has access to the information? 

Authorized UNITARIAN CHURCH OF ALL SOULS staff members responsible for keeping information up-to-date. For example, the Ministry and Professional Leadership department maintains information about religious professionals who serve our congregations. The software permits staff to access only the information needed to do their jobs. 

Each congregation may appoint up to four authorized persons who can view, change and download basic contact and position information (name, address, phone, email, positions held) about the congregation and its members, leaders and staff. Those authorized persons cannot access information about other congregations or their leaders and members. 

District staff members can view, but not change, basic contact and position information about the leaders and staff of the congregations within their own District. That information may also be included in online Directory listings maintained by a District or Regional office and visible only to authorized persons within the jurisdiction. 

In the future, each congregation can elect to have an online directory of its own members and leaders. (Individuals can opt out of the online directory altogether, or they can indicate whether to exclude their address, phone number, and/or email address.) Only members and leaders of a congregation can view the online directory. 

In the future, each member of a congregation can view and change only their own information. 

Contact information for matriculants of the UU seminaries may be shared with the seminary where they studied. Contact information for ministers is shared with the Church of the Larger Fellowship for sending the Quest newsletter. 

What about mailing lists and email addresses? 

UNITARIAN CHURCH OF ALL SOULS departments and Districts use postal addresses and email addresses to stay in contact with constituents for a variety of purposes, including periodical mailings, email newsletters, and fund raising appeals, for example. 

Mailing lists, but NOT email addresses, are occasionally shared with qualified organizations such as the UUSC. No one outside the UNITARIAN CHURCH OF ALL SOULS can get those mailing addresses for individual congregation members other than those in leadership positions without first obtaining the permission of each congregation to which those members belong. Mailing addresses and e-mail addresses of ministers and matriculants of the UU seminaries may be shared according to the policy outlined above in #6. 

What do we use the data for? 

Mailing lists for UU World magazine and other UNITARIAN CHURCH OF ALL SOULS publications. 

Production of the UNITARIAN CHURCH OF ALL SOULS Directory of Congregations and Professional Religious Leaders that is published each year. 

Fundraising and gift processing. 

Tracking a wide variety of statistics about our denomination, such as the rate of growth of our congregations. (This data helps us fashion programs and services to meet the needs of our members.) 

Processing of benefits for UNITARIAN CHURCH OF ALL SOULS, district, and congregational employees. 

Where is the information stored, and how is it kept safe? 

The information is stored in a computer database on the UNITARIAN CHURCH OF ALL SOULS’s Boston premises. The computers are in a climate-controlled room that is locked at all times and equipped with a modern fire suppression system. Sensitive data such as employee social security numbers is encrypted within the database. The database is periodically encrypted and copied to magnetic tape, and the tapes are removed and locked in a different building. 

There is no direct link between the database and any public web sites. 

Online access to the database requires knowledge of a valid user ID and password. Access to specific types of information, and rights to view or change information, are strictly limited by each authorized person’s role as assigned and overseen by both a system administrator and a database administrator. 

Personally identifiable information about individuals under 18 years of age is never made available to anyone other than UNITARIAN CHURCH OF ALL SOULS staff or authorized persons within the youth’s home congregation or district. All UNITARIAN CHURCH OF ALL SOULS staff are subject to criminal background checks prior to employment. 

How is data about minors kept safe? 

Information about persons younger than 18 is programmatically prevented from being displayed unless the requestor has specific permissions set within the system allowing such access. 

What about online hackers or “bots” getting into the database? 

First, the live database is not accessed directly from our online applications. Copies of some information are used by some online applications, but every request to access and/or change those copies is logged and reviewed by UNITARIAN CHURCH OF ALL SOULS staff. Second, our software applications are written to not be vulnerable to standard hacks like SQL injection. Third, access to personal information (e.g., information about individuals) requires at least a user ID and password. Fourth, sensitive information (i.e. social security, bank account, and insurance account numbers) is encrypted in the database. 

It is not technologically possible to absolutely guarantee the security of data stored in a computer. Our goal is to make unauthorized or malicious access both difficult and detectable. 

What happens when a UNITARIAN CHURCH OF ALL SOULS staff member or a congregational administrator trusted with access to the database quits or leaves their job for other reasons? 

When a staff member leaves, all of their computer accounts are locked. 

When the UNITARIAN CHURCH OF ALL SOULS is notified that a congregational administrator has left their position, their access to the congregation’s data will be locked. Each congregation’s access activity is monitored, and if their routine usage pattern changes, the UNITARIAN CHURCH OF ALL SOULS will seek an explanation from the congregation. 

How often is the information updated? 

The information is updated by UNITARIAN CHURCH OF ALL SOULS staff periodically. 

Up to four authorized persons from each congregation can review their own membership list and make updates at any time. 

In the future, individuals will be able to view and make changes to their information on file at any time. 

Does the UNITARIAN CHURCH OF ALL SOULS comply with laws and industry standards regarding data security and privacy? 

Yes. Our staff oversees a portfolio of coordinated projects whose aim is to define and fulfill our ethical duty to our constituents in addition to achieving, monitoring, and maintaining compliance with the law.  

Whom should a person contact with a question or to have information corrected or removed? 

Individuals can ask their congregation’s administrator to change their information, or they can contact the [email address here] with their request. 

Questions concerning data stored about gifts should be directed to the Stewardship & Development department at [email protected]. 

Individuals can view and change their own contact information online. This requires a one-time registration for identity verification. 

Individuals can “opt-out” of receiving various email correspondence from the UNITARIAN CHURCH OF ALL SOULS (e.g. email newsletters) by clicking the unsubscribe button in the body of the email. 

Persons with questions or concerns about this policy or data security at the UNITARIAN CHURCH OF ALL SOULS are welcome to contact us at [email protected].