PWUMC PRIVACY STATEMENT

DRAFT PRIVACY POLICY  - REVISED JANUARY 31ST, 2018


Privacy Notice

 

This privacy notice discloses the privacy practices for (WWW.PWUMC.ORG ). This privacy notice applies solely to information collected by this website. It will notify you of the following:

 

What personally identifiable information is collected from you through the website, how it is used and with whom it may be shared.


What choices are available to you regarding the use of your data.

The security procedures in place to protect the misuse of your information.

How you can correct any inaccuracies in the information.

 

Information Collection, Use, and Sharing 
We are the sole owners of the information collected on this site. We only have access to/collect information that you voluntarily give us via email or other direct contact from you. We will not sell or rent this information to anyone.

 

We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization.

Unless you ask us not to, we may contact you via email in the future to tell you about church events and changes to our privacy policies.


Your Access to and Control Over Your Information 
You may opt out of any future contacts from us at any time. You can do the following at any time by contacting us via the email address or phone number given on our website:

 

See what data we have about you, if any.

Change/correct any data we have about you.

Have us delete any data we have about you.

Express any concern you have about our use of your data.

 

Security 
We take precautions to protect your information. We do not collect sensitive information about you on
WWW.PWUMC.ORG. We do not employ cookies or any other tracking applications to monitor your access to WWW.PWUMC.ORG. When you submit sensitive information via our member management website, HTTPS://POWASH.CCBCHURCH.COM, your information is protected both online and offline by the security protocols provided by Church Community Builder. See this site for facts about Church Community Builder: https://www.churchcommunitybuilder.com/faqs/.

 

All credit card information provided for donations, orders, and event deposits/payments is collected through a third party processor that uses secure encryption technology to protect your sensitive data. You can verify this by looking for a lock icon in the address bar and looking for "https" at the beginning of the address of the Web page. See the section on “SHARING” below for additional information on this topic.

While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, scheduling you for volunteer service, or taking attendance at services or events) are granted access to personally identifiable information. The computers/servers on which your information are maintained off site in a secure environment by CHURCH COMMUNITY BUILDER. See the discussion of CHURCH COMMUNITY BUILDER SECURITY MEASURES AT THE END OF THIS POLICY DOCUMENT.


Registration 
In order to use membership functions that may be accessed via this website, a user must first complete the registration form on our CHURCH COMMUNITY BUILDER MEMBER HOME PAGE. To do this you will need to request a login to the CCB system. During registration a user is required to give certain information (such as name and email address). This information is used to contact you about the activities of the church on our site in which you have expressed interest. At your option, you may also provide demographic information (such as gender or age) about yourself, but it is not required. No such information is stored by PWUMC on
WWW.PWUMC.ORG all registration data and personal information you may provide is stored in the Church Community Builder secure environment.

 

On-line Donations, Orders, and Event Deposits or Payments 
We request information from you on our donation, order or event deposit/payment forms. To undertake an on-line transaction with us, you must provide contact information (like name and billing address) and financial information (like credit card number, expiration date). This information is used for billing purposes and to fulfill your transactions. We do not retain you credit, debit card or bank account information on our systems. CHURCH COMMUNITY BUILDER does not receive or store your credit card information when you make a donation.

 

Sharing 
We use an outside company to provide credit card processing to process on-line donations, purchases, and deposits that you may make from time to time on our site. This company does not retain, share, store or use personally identifiable information for any secondary purposes beyond processing your transaction. PWUMC does not retain any credit card information electronically or in any other form. At present our transaction gateway processing company is BLUEPAY. Visit their website at
https://www.bluepay.com for details about their policies.

 

Links 
This website contains links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of any other site that collects personally identifiable information.

 

 

If you feel that we are not abiding by this privacy policy, you should contact us immediately via telephone at 850-231-4928 or via robertc@pwumc.org.

 

 

 

CHURCH COMMUNITY BUILDER DATA SECURITY INFORMATION – Provider for the PWUMC Member Data Management System found at https://powash.ccbchurch.com

Security

Overview

Church Community Builder is committed to providing you with the best security for your data. Our main goal is to make your entire community of users feel that we have done everything we can do to protect their information.

We want your staff to feel secure

  • as they work with member data
  • as they invite members and volunteer leaders to be a part of the online community
  • as they communicate across the Internet

 

We want your members to feel secure

  • as they update their information (helping their church know when changes occur in their lives)
  • as they share information with staff, group leaders, and the community
  • as they view and print their own contribution information

 

We want your IT professionals and consultants to feel secure

  • by knowing we use state-of-the-art facilities and equipment
  • by knowing we use high-quality 256-bit SSL encryption to secure transmission of data
  • by knowing we monitor inbound/outbound traffic daily to evaluate security risks
  • by knowing your data is backed up nightly and replicated offsite to our secure, redundant data center

 

Network Operations Center

Your data is one of the most important aspects of the Church Community Builder Solution and we treat it as such. The following are specifics for our primary network operations center where the Church Community Builder software is maintained and where your live data is stored. Backups are stored onsite and, more importantly, offsite. You can learn more about backups later in this document.

  • Network backbone — multiple OC12 and OC48 connections
  • BGP4 — automatic failover through Level3, Time Warner, and Cogent providers
  • Triple door access — through two keycard doors & one physical key door for access • Locked server rack access
  • 24/7 video surveillance
  • Network Operations Center
  • Two fully separate city power grids with automatic transfer switch • Facility-wide UPS (battery uninterruptible power supply)
  • 500KvA Onan diesel generator for continuous backup power
  • Dry pipe fire suppression system
  • 365/24/7 emergency support for the facility
  • Raised and vented flooring for superior environment management

 

Note - Having great security, resilience, and responsiveness in a primary data center is important, but what happens in the unlikely event of a catastrophe? Church Community Builder utilizes a second data center as part of our disaster recovery plan. Our redundant data center provider is SAS 70 Type II certified and employs biometric scanners, 24/7 onsite personnel, redundant network/power/generator/cooling systems, multi-carrier internet backbones, and more. We want to ensure that, should the worst happen, your data (and access to it) is secure.

Application Security

We recognize you are entrusting your data to Church Community Builder. It’s critical for your staff, volunteer ministry leaders, and members to have access that provides technological security and enforces human security.

Data Encryption

Church Community Builder uses the high-grade 256-bit SSL encryption certificates for access to all user data and user logins and processing financial transaction data. These enterprise-level certificates through Comodo Enterprise SSL provide assurance that your data is protected between our servers and your computer.

Login Security

On the user end, we require that all individual logins require at least one numeric and one alpha character and that their password must be at least six characters long to further ensure the security of the data. In addition, after five unsuccessful attempts at login, the user’s account is locked for a 60-minute period. In addition, we automatically log users out of an unused session after six hours of inactivity to prevent unauthorized access.

User Authentication

Church Community Builder was designed from the ground up to give you control over how each person is able to access your data. User permissions can vary from Limited Access Users that cannot see any people in your database, to Basic Users with the ability to see other listed individuals, small group leaders with access to individuals and data in their groups, and all the way up to granular control with over 100 different areas of access for administrators.

Data Security

Hardware & Software

Security and reliability depend on great equipment. Church Community Builder uses genuine Dell PowerEdge servers, many running redundant SCSI hard drives, redundant power supplies, error-correcting memory, and dual to quad-core processors. Network connectivity is provided through Cisco and Dell PowerConnect switches, in addition to specialized hardware for SSL acceleration, load balancing, and firewalls.

Our servers run Linux, have stable kernel and services running, and are updated with security patches. Non-essential ports and services are disabled to further harden the servers. The web and application servers are then placed behind load balancers and firewalls to further limit access to the data and provide reliable services.

Finally, the actual data is stored on database servers which sit behind the redundant load balancers, which sit behind the redundant firewalls, which reside in a physically secure environment (locked server cages, doors, keycard access, etc...). Further, access to the trusted network is limited to authorized Church Community Builder staff only through secure methods such as SSH and secure VPN.


Backups

Church Community Builder retains daily backups for weeks and weekly backups for months on local network storage for restoration purposes. Live offsite data replication is performed instantly through a secure VPN tunnel to our redundant data center in the unlikely event that catastrophic events occur that render our primary data center unavailable.


Data Ownership

Church Community Builder does not own or have any rights to any data that the customer submits as a result of using the service. Church Community Builder will not monitor, edit, or disclose any information regarding the customer or customer’s database without the customer’s express written permission except as may be required by law.


The Benefits of Software as a Service (SaaS)

Church Community Builder was built from the ground up to utilize the power of the Internet. Gone are the days when it was OK to have an assistant enter all of the church member data and create reports to get that information back out. Churches in today’s world need the ability to empower volunteer leaders to communicate instantly and dynamically and to build community. The traditional church management software cannot provide this; Church Community Builder can.


Lower Cost of Maintenance

Your church does not have to maintain the physical equipment or logical systems that ensure security, resilience, and responsiveness that exist when hosting a solution from your church office. Nor does the church have to put additional strain on their IT departments or volunteers to install and maintain applications or infrastructure.


Disaster Recovery

One of the additional benefits to hosting a solution such as Church Community Builder is a built-in Disaster Recovery plan, which would protect your data regardless of hardware issues, office fires, flooding, or other scenarios that might take place at your local church or data center. Any internet access, from any location, will give you access to your Church Community Builder software.


No Cost For Updates

By using a hosted software, updates are automatically loaded to your application as they come available, ensuring that you have the latest version. No more manual upgrades or updates to infrastructure or software.


Programming Architecture

We use a LAMP stack (employed by Facebook, Twitter, Digg, and many others) to power our software. LAMP stands for:

  • Linux servers (operating system)
  • Apache web server to power the websites
  • MySQL database servers for data engine
  • PHP programming language for the application