It is now nearly 12 months since the law changed to require us put in place new processes to meet the requirements of GDPR (General Data Protection Regulation). An annual review of your policy is recommended.
Is everything you introduced working as intended?
Do you need to make changes or improvements?
Also, whilst thinking about reviewing your data handling policy, why not think about other policies you have as a church/charity (e.g. health & safety, fire risk assessment or safeguarding)?
Have you set up annual reviews of all your policies and spread them over the year?