Transparency International Ireland (TI Ireland) is committed to protecting your privacy. This privacy statement is intended to inform you on how and why we store your data in line with the entry into force of the General Data Protection Regulation (“GDPR”) on 25 May 2018.
Should you have any questions, please contact our Data Protection Officer, Donncha Ó Giobúin, on the following email: email@example.com
We use MailChimp for newsletters and other communications. MailChimp is a proprietary US-based online platform which allows us to send you our newsletter.
Who is the Data Controller of my MailChimp data?
For the purposes of newsletters or other communications which we distribute via MailChimp, TI Ireland is the Data Controller of your data (we have primary responsibility for safeguarding your data) and MailChimp is a Data Processor (MailChimp are contracted to distribute our newsletters to you).
How does this work?
This means that
- when you sign up to a Transparency International Ireland newsletter, we collect the data you provide — these comprise your name, email address and IP address which constitute personal data. We process this data on the basis of your consent as provided when you signed up and/or in pursuit of the legitimate interest of communicating information on our work and measures aimed at stopping corruption. TI Ireland will not process personal data in pursuance of its legitimate interests where the processing is unwarranted in any particular case by reason of prejudice to the fundamental rights and freedoms or legitimate interests of the data subject.
- We transfer this information to MailChimp who then ask you sign up to a MailChimp account using a double opt-in method which helps to verify that you are the actual service requester.
Who has access to my data?
TI Ireland’s Office Coordinator and a limited number of administrative staff have access to your data. Other parties who have access to your data are MailChimp and potentially processors to whom they may sub-contract data for the purposes of customer support provision or abuse investigation.
How are your data safeguarded?
MailChimp is certified under the EU-US privacy Shield Framework which is a mechanism employed by the EU and the US to safeguard the personal data of EU citizens stored in the latter jurisdiction.
TI Ireland has a contract with MailChimp which includes the requirement for TI Ireland’s consent prior to sub-contracting or disclosure of any data of which we are the Controller.
Further information about the data protection offered by MailChimp can be found at:
Our newsletter includes so-called web bugs that allow us to recognize if and when an email has been opened and which links in the email have been clicked by its recipient.
This data is stored by us so that we can best align our newsletter to the wishes and interests of our subscribers. Accordingly, the data thus collected is used to send personalized newsletters to each recipient.
Your rights relating to personal data
You have the following rights under the GDPR, in certain circumstances and subject to certain exemptions, in relation to your personal data:
- right to access the data - you have the right to request a copy of the personal data that we hold about you, together with other information about our processing of that personal data.
- right to rectification- you have the right to request that any inaccurate data that is held about you is corrected, or if we have incomplete information you may request that we update the information such that it is complete.
- right to erasure - you have the right to request us to delete personal data that we hold about you.
- right to restriction of processing or to object to processing - you have the right to request that we no longer process your personal data for particular purposes, or to object to our processing of your personal data for particular purposes.
- right to data portability - you have the right to request us to provide you, or a third party, with a copy of your personal data in a structured, commonly used machine readable format.
In order to exercise any of the rights set out above, please contact our Data Protection Officer as above.
If we are processing personal data based on your consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing which took place prior to its withdrawal.
If you are unhappy with how we process personal data, we ask you to contact us so that we can rectify the situation.
You may lodge a complaint with a supervisory authority. The Irish supervisory authority is the Data Protection Commission.
We will store your data until you notify us that you no longer wish to receive our newsletter and/or other communications.