Privacy Policy 

Jersey Islamic Centre Limited (JICL)
(Jersey Charity Number:497)

Data Protection & Privacy Policy

1. Purpose and Commitment

Jersey Islamic Centre Limited ("JICL" or "the Centre") is committed to protecting the privacy, dignity, and rights of individuals whose personal data it processes. This policy sets out how JICL complies with the Data Protection (Jersey) Law 2018 and associated guidance issued by the Jersey Office of the Information Commissioner (JOIC).

2. Legal and Regulatory Framework

This policy is designed to comply with the Data Protection (Jersey) Law 2018, the Data Protection Authority (Jersey) Law 2018, applicable JOIC guidance, and Jersey charity governance expectations.

3. Data Controller

Jersey Islamic Centre Limited is the Data Controller for the purposes of the Law.

4. Scope

This policy applies to all personal data processed by JICL in any format and applies to trustees, employees, volunteers, contractors, and third parties acting on behalf of JICL.

5. Data Protection Principles

JICL processes personal data in accordance with the principles of lawfulness, fairness and transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality, and accountability.

6. Lawful Bases for Processing

Personal data is processed only where a lawful basis applies, including consent, contract, legal obligation, vital interests, public task, or legitimate interests.

7. Transparency and Privacy Information

JICL provides clear privacy information to individuals explaining how their data is used and their rights.

8. Categories of Personal Data

Personal data processed may include contact details, membership records, donations, communications, and limited special category data where necessary.

9. Use and Sharing of Personal Data

Data is used only for charitable, religious, administrative, and governance purposes and shared only where lawful and necessary.

10. International Transfers

Appropriate safeguards are applied to any international data transfers.

11. Data Security

Appropriate technical and organisational measures are implemented to protect personal data.

12. Data Retention

Personal data is retained only as long as necessary and securely disposed of.

13. Individual Rights

Individuals may exercise their rights under the Law, including access, rectification, erasure, restriction, objection, and withdrawal of consent.

14. Data Protection Impact Assessments (DPIAs)

A DPIA must be completed for new or high-risk processing activities. This is a separate questionnaire which accompanies this policy.

15. Data Breaches and Incidents

Procedures are in place to manage data breaches and notify JOIC where required.

16. Complaints

Individuals may raise concerns with JICL or the JOIC.

17. Review and Governance

This policy is reviewed periodically by the Directors and the Compliance.

18. Email for Contact
jerseyislamiccentre@gmail.com.