We provide here more detailed operational information to demonstrate our firm commitment to privacy in practice. The following discloses the information gathering and dissemination practices of forasnagaeilge.ie.
A user can access our websites and utilise a number of our services without providing any information at all. However, all users who avail of the Foras na Gaeilge online services and opt in services provide basic contact and demographic information. We do not provide this information to any third party.
We do not follow a user’s browsing path outside of our websites.
If users wish to contact Foras na Gaeilge regarding our products and services, they must enter personal information. Services that currently require some form of sign up include:
Online application forms
The information collected when a user contacts Foras na Gaeilge regarding a service can include an e-mail address and name. When contacting us regarding a service, a user may also “opt in” to various e-mail notifications or offers (see opt-in procedures below).
Foras na Gaeilge recognise their responsibility in respect of managing any personal data and they are committed to protecting and preserving your privacy through fulfilling the duties associated with the Data Protection Act and the General Data Protection Regulation (GDPR).
Further information on your data privacy rights are available on the website of the Irish Data Protection Commissioner.
Using the e-mail addresses provided on forms and online purchases Foras na Gaeilge periodically sends promotional e-mail to its subscribers about services and products offered by forasnagaeilge.ie. You can indicate on all forms that you wish to receive further e-mail information from Foras na Gaeilge. You can opt out of promotional e-mails any time by letting us know you wish to be removed from our mailing list.
This site contains links to other sites. Foras na Gaeilge is not responsible for the privacy practices or the content of such websites.
This site has security measures in place to protect the loss, misuse, and alteration of the information under our control. Unfortunately, no data transmission over the Internet can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, Foras na Gaeilge cannot ensure or warrant the security of any information you transmit to us or from our online products or services, and you do so at your own risk. Once we receive your transmission, we make our best effort to ensure its security on our systems.
There are six alternative ways in which the lawfulness of a specific case of processing of personal data may be established under the GDPR.
It is Foras na Gaeilge’s policy to identify the appropriate basis for processing and to document it, in accordance with the regulation. The options are described in brief in the following sections.
Unless it is necessary for a reason allowable in the GDPR, AEI will always obtain explicit consent from a data subject to collect and process their data. Transparent information about our usage of their personal data will be provided to data subjects at the time that consent is obtained and their rights with regard to their data explained, such as the right to withdraw consent.
Where the personal data collected and processed are required to fulfil a contract with the data subject’s, explicit consent is not required. This will often be the case where the contract cannot be completed without the personal data in question e.g. a delivery cannot be made without an address to deliver to.
If the personal data is required to be collected and processed in order to comply with the law, then explicit consent is not required. This may be the case for some data related to employment and taxation for example, and for many areas addressed by the public sector.
In a case where the personal data are required to protect the vital interests of the data subject or of another natural person, then this may be used as the lawful basis of the processing. AEI will retain reasonable, documented evidence that this is the case, whenever this reason is used as the lawful basis of the processing of personal data.
Where AEI needs to perform a task that it believes is in the public interest or as part of an official duty then the data subject’s consent will not be requested. The assessment of the public interest or official duty will be documented and made available as evidence where required.
If the processing of specific personal data is in the legitimate interests of AEI and is judged not to affect the rights and freedoms of the data subject in a significant way, then this may be defined as the lawful reason for the processing. Again, the reasoning behind this view will be documented.
According to the legislation and the GDPR individuals have the following fundamental rights in respect of the personal data held about them:
Foras na Gaeilge will adhere to the requirements of the legislation and GDPR in every way, in accordance with the organisation’s resources and duties.
We will not disclose your data to third parties unless you have consented to this disclosure or unless the third party is required to fulfil a request you have made or contract that you have entered into. Where appropriate, data may also be processed by our service providers in which case we will take steps to ensure that the processing complies with applicable data protection and confidentiality laws. We will also disclose your data if we believe in good faith that we are required to disclose it in order to comply with any applicable law, a summons, a search warrant, a court or regulatory order or other statutory or legal requirement.
In accordance with the above rights an individual has the right to request personal data and information kept on them to check the information and lawfulness of the processing of the information. Under GDPR they have the right:
To seek confirmation that their personal data are being processed
To gain access to their personal data
To seek other information as set out in the legislation and the GDPR
These are the steps to be taken in respect of requests to the organisation for access:
Any application for access to information will be sent to the data protection officer in writing at email@example.com
The application will be answered as soon as possible and within a month at the latest.
To comply with the law, the information can only be revealed to the applicant or to a person authorised to obtain the information. For this reason, identity must be confirmed for the applicant or their representative. These persons can apply for access to personal data:
Appropriate steps must be taken to confirm the applicant’s identity before any work on the application is started. Foras na Gaeilge will request a time extension of two months to the above deadline if they believe that the application is complex or multifaceted. The other provisions of GDPR and the legislation will be relevant if it is deemed that the application is without grounds or excessive.
Name: Seán Ó Cearnaigh
Changes to this privacy statement