All users of online and optional services provide basic contact and demographic information.
If users wish to contact Cruinneog about our products and services, they must enter personal information. Services that require some form of personal data include:
Information collected when a user contacts Cruinneog about a service may include an email address and name. When they contact us a user can choose to accept various email notifications or offers (see the procedures for options below).
Cruinneog recognizes its responsibility for the management of any personal data and is committed to protecting and preserving your privacy through the obligations of the Data Protection Act and the General Data Protection Regulation (GDPR).
Further information on your data privacy rights is available on the Irish Data Protection Commissioner website:
Using the email addresses provided on forms and for purchases Cruinneog regularly sends promotional emails to its subscribers about services and products provided by gaelgram.ie and cruinneog.com. You can indicate that you want to receive more email information from Cruinneog. You can opt-out of promotional emails at any time by simply letting us know that you wish to be removed from our mailing list.
This site contains links to other sites. Cruinneog is not responsible for the privacy practices or the content of such sites.
This site has security measures in place to protect against the loss, misuse or alteration of the information under our control. Unfortunately, no data transmission over the internet can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, Cruinneog cannot guarantee or warrant the integrity of any information you send to us or from our online products or services, and you do so at your own risk. Once we receive your information we do our utmost to ensure that it is secure on our systems.
There are 6 distinct ways in which the legality of a particular case may process personal data under the GDPR. Cruinneog’s policy is the appropriate basis for identifying and documenting processing, in accordance with the regulation. The options are outlined briefly in the following sections
Unless required for a reason permitted in the DPA, Cruinneog will always obtain explicit consent from a data subject to collect its data. Explicit information about our use of personal data will be made available to data subjects at the time consent is obtained and their rights to data are explained, such as the right to withdraw consent.
2. Contract performance
When the personal data collected and processed are required to perform a contract with the data subject, explicit consent is not required. This is often the case where the contract cannot be concluded without the personal data involved, e.g. delivery cannot be made without an address.
3. Legal obligationIf the personal data collected and processed are required to perform a contract with the data subject, explicit consent is not required. This may be the case for some employment and tax data, and for many other areas.
4. Critical interest of the data subject
Where the personal data are necessary to protect the overriding interest of the data subject or another natural person, this may be used as the legal basis for the processing. Cruinneog will keep reasonably documented evidence that this is the case, whenever this reason is used as a legal basis for the processing of personal data.
5. Task performed in the public interest
Where Cruinneog is required to perform a task which it believes is in the public interest or as part of a public duty the consent of the data subject will not be sought. The public interest assessment or official duty shall be documented and made available as evidence where necessary.
6. Legitimate interest
If the processing of certain personal data is considered to be in the interest of Cruinneog and is not considered to significantly affect the rights and freedoms of the data subject, this may be defined as the legal reason for the processing. Again, the rationale for this will be documented.
The legislation and the DPA have the following fundamental rights and that of individuals regarding the personal data held about them:
Cruinneog will comply with the requirements of the legislation and GDPR in all respects, in accordance with the resources and duties of the organization.
We will not disclose your details to third parties unless you have consented to this disclosure or the third party is required to complete an application or contract that you have made. Where appropriate, our service providers may also process data and if so we will take steps to ensure that the processing complies with applicable data protection and confidentiality laws. We will also disclose your details if we believe in good faith that we need to disclose them in compliance with any applicable law, summons, search warrant, court or regulatory order or other statutory or legal requirement.
Under the above rights an individual has the right to request personal data and information held on them in order to check the information and the lawfulness of the processing of the information. Under the DPA they have the right to:
Here are the steps to take in relation to applications on the organization for access: Any request for access will be sent to the data protection officer in writing at firstname.lastname@example.org. The request will be answered as soon as possible and no later than one month.
To comply with the law, the information may only be disclosed to the requester or a person authorized to receive the information. For this reason, the applicant or their representative must be identified. These people can request access to personal data:
Proper steps must be taken to verify the identity of the requester before any work on the application will commence. Cruinneog will seek a two-month time extension on the above deadline if they believe the application is complex or multifaceted. Other provisions of the DPA and the legislation will be relevant if the application is considered unfounded or excessive.
The regulation and act set out rules on how organizations should collect and use information and Cruinneog is committed to complying with these rules, commensurate with the scale of the organisation's resources and their obligations. But if someone believes that Cruinneog has not handled their personal data in accordance with the act, they can complain to the data protection officer at email@example.com. An individual can also make a complaint if they are not happy with the way their request for access has been handled. They will usually receive a response within 20 working days of making the complaint. After this stage, and if they are still dissatisfied, the person can request that a Data Protection Commissioner consider how Cruinneog is complying with the personal data act.
Contact details for the data protection officer