Your Personal Information
Under the General Data Protection Regulation (GDPR), Dubco Ireland Credit Union is obliged to comply with principles on how we collect, use, and store your personal information.
Why we use your personal information
In order to offer you services of the credit union such as loans, savings and insurance products, we are required by the Central Bank, and legislation such as the Credit Union Act 1997 (as amended) and Financial Crime Legislation to gather essential information to help identify you, communicate with you and safeguard your interests. The information we collect includes your name, address, PPS number as well as other data such as a photograph. From time to time we will ask you for updated identification evidence to ensure your data and account remains secure.
The legal basis for using your information
We will use your data and share that data where:
Its use is necessary in relation to a service or a contract that you have entered into or because you have asked for something to be done so you can enter into a contract with us. This includes data processing which is or may be necessary for the performance of a contract to which you are a party or in order for us to take steps (including at your request) prior to entering into a contract.
Its use is in accordance with our legitimate interests outlined in this notice. Processing can be necessary for the purposes of the legitimate interests pursued by us as a data controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Its use is necessary because of a legal obligation that applies to us (except an obligation imposed by a contract). An example of this would be us sharing your information with the Central Credit Register. Data Processing is necessary for compliance with a variety of legal obligations on our part in the operation of our business. This applies to various this only applies to EU or EU Member State laws, regulations, etc.
You have consented or explicitly consented to the using of your data (including special categories of data) in a specific way (including but not limited to the processing of your personal data for one or more specific purposes).
Its use is necessary to protect your “vital interests”.
In exceptional circumstances we may use and/or disclose information (including special categories of data) we hold about you to identify, locate or protect you, for example, if it comes to our attention that you are in imminent physical danger and this information is requested by An Garda Síochána or your relative. Data Processing is often necessary for the performance of task(s) which must be carried out in the public interest or in the exercise of official authority vested in us as a data controller.
Where you have made clearly sensitive or special categories of data about yourself public.
Where the processing of special categories of data is necessary for the establishment, exercise, or defence of legal claims.
Where authorised by law or regulation, we may undertake processing of special categories of data for a substantial public interest such as processing of your special categories of personal data about your health or if you are a vulnerable customer to comply with our obligations under the Consumer Protection Code. We may share this personal information with other people and organisations where required if they need to know that you are a vulnerable customer.
Where the processing of criminal conviction data is authorised by EU or local law.
Data Security
All personal data provided by you to Dubco Ireland Credit Union is securely stored using controls to limit who can access the data. Whether data is retained on paper or on our computer systems, we use tools such as encryption, strong passwords, CCTV, restricted access, alarms, and locks to keep data safe. Staff members also receive regular data security training to help protect your data.
Data Retention
Dubco Ireland Credit Union will keep the data you have provided to the Credit Union only for as long as it is necessary to carry out the services, we provide to you as a member. The data retention time is also determined by legal obligations that the Credit Union must adhere to, best practice and the legitimate needs of the Credit Union. The Credit union’s intention is to hold personal data for as short a time as possible before securely destroying the data.
CCTV
Dubco Ireland Credit Union uses Close Circuit Television (CCTV) to protect the well-being of our officers, visitors to our premises and for security purposes. CCTV operates for twenty-four hours a day inside and outside the Credit union premises.
Debit Card Services
If Dubco Ireland Credit Union issues you a debit card, Transact Payments Malta Limited (which is an authorised e-money institution) will also be a controller of your personal data. In order for you to understand what they do with your personal data, and how to exercise your rights in respect of their processing of your personal data, you should review their privacy policy which is available at https://currentaccount.ie/files/tpl-privacy-policy.pdf.
Data Access
You are entitled to access the personal data Dubco Ireland Credit Union retains about you. Dubco Ireland Credit Union will provide you with a copy of what personal data of yours we possess, where the Credit Union obtained the personal data, how the Credit Union uses your personal data, and for how long the Credit Union retains your personal data. Dubco Ireland Credit Union will also inform you whether and with whom we have shared your personal data. You can obtain a Data Access Request Form from the Credit Union premises or write to the Credit Union at the address below. On receipt of the Data Access request, Dubco Ireland Credit Union will normally respond to your data access request without undue delay and in any event within one month of receipt of the data access request.
Cookies
For details of cookies we use and how they are used, see our Cookies Policy.
Additional information
Should you have a complaint or have any queries regarding your rights under GDPR or require more details about how Dubco Ireland Credit Union processes your personal data, you can contact the Credit Union’s Data Protection Officer at the address below.
Office of the Data Protection Commission
You can also contact the Office of the Data Protection Commission at the address below.
Office of the Data Protection Commissioner
Telephone: +353 (0)761 104 800
Fax: +353 57 868 4757
E-mail: info@dataprotection.ie
Website: www.dataprotection.ie
Address:21 Fitzwilliam Square, Dublin 2, D02 RD28
Credit Union DPO
Telephone: +353 (01) 8870400
Fax: +353 (01) 8870499
E-mail: dataprotection@dubcoireland.ie
Website: www.dubcoireland.ie
Address: Little Green Street, Dublin 7, D07 KC82
Disclaimer
The Credit Union, its directors, employees, servants and agents, affiliates or other representatives and their respective parent and subsidiary companies, shall not be liable in respect of any claims, emergencies, demands, causes of action, damages, losses, expenses, including without limitation, reasonable legal fees and costs of proceedings arising out of or in connection with the use and/or dissemination of personal information relating to you in accordance with this privacy policy and your consents.
You should be aware that where you link to another website from the Credit Union website, that the Credit Union has no control over that other website. The Credit Union has no responsibility for the privacy practices of other websites.
Amendments
The Credit Union reserves the right at its sole discretion to amend this privacy statement at any time, and you should regularly check this privacy statement for any amendments.
