The personal data held by ISCAST of its members and of others associated with ISCAST will only be used for the legitimate purposes of the Institute as presented in its governing documents as they are amended from time to time.

Third party use of the personal data held by ISCAST will not be permitted unless required under law or where permission is given by the individuals concerned.

From time to time discretion will be needed in managing personal data held by ISCAST. This will be exercised by the Executive Director or Secretary of ISCAST within the spirit of this policy and the culture of ISCAST as a Christian organisation seeking to support its members and pursue its mission within the context of its core values.