This week the Diocese of Derby became aware of a breach of personal information at a company, Access Personal Checking Services Ltd (APCS), used by the Church of England and other organisations to process DBS background checks.

The Diocese no longer uses APCS but has done in the past, and this means that a number of people – clergy, church volunteers and staff, and members of the Parish Support Team at Derby Church House – have been affected by the breach.

This week we have sent emails to the PCCs (Parochial Church Councils) of the churches that we are aware of that have been affected by the breach, so that they can in turn inform the people whose data has been breached. This email contains information about what information specifically has been included in the breach, and also what support and advice is available to them from the national Church of England and the Diocese of Derby.

We have done this by contacting the PCC secretary, clergy and DBS co-ordinator for each parish, asking them to forward the message to people affected.

We are acutely aware that this situation has caused anxiety and concern, and we are offering practical and pastoral support to people wherever we can. We have set up a dedicated email address – databreachsupport@derby.anglican.org – which people can use to contact us about this if they need to.

We have also set up a page on our website which includes a list of frequently asked questions about the breach, who’s responsibility it is, and what steps need to be taken by individuals affected and churches (via their PCCs) following the incident.

We will continue to update that page as and when more information becomes available.