Data Privacy

This privacy notice explains how we use any personal information we collect about you.

DATA PROTECTION PRINCIPLES

Tiglin is committed to protecting all personal information we obtain about you, whether you’re a resident, supporter, volunteer or staff member. We will only collect and use your personal information for carefully considered and legitimate business purposes and, in certain circumstances, we are legally obliged to do so, in order for us to run and support our programmes of rehabilitation.

We will never share your information with any other organization for their own marketing purposes, and we never sell anyone’s information.

This notice sets out what information we collect about you, how we will use it and why, and what your rights are.

WHY DO WE COLLECT INFORMATION FROM YOU?

When we use your personal information, we will always consider if it is fair and balanced to do so and whether it would be within your reasonable expectations that we would use your data in this way. This includes:

Service Users (students and potential students)

We will initially use the information we collect from you to process your application for residential rehabilitation. We will then use your information to provide you with these services. More detail is given in the privacy notice which is made available to anyone who applies to join our programme or upon request via email to admin@tiglin.ie.

Supporters

When you make a donation or express an interest in supporting Tiglin, we will use the information we collect from you, e.g. name, address and amount given, to thank you for your support and process a Gift Aid claim, where appropriate. We will also send a letter to thank you for this support

Unless you ask us not to, we will keep you in touch with our work, primarily through our quarterly newsletter. Occasionally, we may also use your information to ask for additional support. You have the right to opt out of any of these communications at any time. Our lawful basis for processing this information is the legitimate interests of Tiglin in raising funds to support the ongoing work of the charity.

We will only send you information by email for fund-raising purposes if we have your consent. We do not contact supporters by text for fund-raising purposes, and would not do so without your consent. Our lawful basis for processing this information is consent.

Job Applicants

We will use the information we collect from you to process and consider your job application. Your information will only be shared with those staff involved in processing your application. We will only request a reference with your prior consent. Your information will not be added to our mailing list without your explicit consent, and will not be used for any subsequent purposes other than ensuring fair recruitment. More detail is given in the privacy notice which is given to all new job applicants.

 

Staff

Tiglin Challenge employ staff to run our programmes and provide necessary administrative and professional support. We process the personal information of our employees for recruitment, staff administration, remuneration, pensions and performance management purposes. More detail is given in the privacy notice which is made available to all staff

CCTV

We use CCTV cameras within specific areas on the Tiglin Challenge sites for the purpose of safeguarding the safety of our residents, staff, visitors and property. We use these images for the prevention, investigation and detection of medication errors/incidents and crime and for the prosecution of any offenders. Our lawful basis for processing this information is the legitimate interests of Tiglin in ensuring the health and safety of our visitors, staff, service users and site.

SENSITIVE INFORMATION

Under data protection law, certain categories of personal information are recognized as sensitive, including health information, race, religious beliefs, and sexual orientation (‘sensitive personal data’).

We only collect sensitive personal data if there is a clear reason for doing so. For example, if you are a prospective resident, we will need information about your health in order to ensure that we can provide you with suitable treatment. There are also other categories of sensitive data that we are required to collect for the purposes of anonymous government monitoring.

We also need to collect information on previous convictions from potential residents, staff and volunteers of Tiglin in order to safeguard the residents on our programme and provide the most appropriate care for them. Care is taken to ensure that such data is processed in accordance with Irish Data Protection law (GDPR) and with the utmost discretion.

SHARING YOUR INFORMATION

We will not share your information with any other organisation, other than where strictly necessary for your own benefit or the operation of our services, for example:

  • If necessary for law enforcement or similar purposes
  • As a necessary part of providing you with our service
  • To process the pay-roll, pensions and tax of our staff
  • In order to contact you as a supporter – for example, by using a mailing house or email broadcaster to process our communications. (In this case, we will have a written contractual agreement in place that will ensure that those organizations can only use the data provided for the specific purposes we direct them to do, and that they have in place strict security requirements in order to protect your personal information.)

______________________________________________________________________

RETAINING AND DELETING YOUR INFORMATION

We will take all reasonable steps to ensure that the information we hold about you is kept secure and can only be read by the appropriate staff members. We will only hold your personal data for as long as it is required in line with our Data Retention Policy. Please contact us using the details below if you need further details about our Data Retention Policy, or to request that your data be deleted.

YOUR RIGHTS

Right to be Informed: You have the right to be told how your personal information will be used. This privacy notice, and other summaries used elsewhere, are intended to be a clear and transparent description of how your data may be used. Please contact us if you have any questions.

Right of Access: You have a right to ask us to confirm whether we are processing information about you, and to request access to this information. It will help us to process your request if you can be specific about what information you require, otherwise we may need to contact you again to clarify this. We will respond to your request within 30 days, once we are satisfied you have rights to see the requested records and we have successfully confirmed your identity.

Right of erasure: Except where we need to retain your data for legal reasons, you have the right to be forgotten (i.e. to have your personally identifiable data deleted). Please contact us regarding this.

Right of rectification: You have the right to request that we update or correct any information we hold about you. Please contact us to let us know what needs correcting.

Right to restrict processing: In certain situations you have the right to ask for processing of your personal data to be restricted because there is some disagreement about its accuracy or legitimate usage.

Right to data portability: Where we are processing your personal data under your consent, the law allows you to request data portability from one service provider to another. This right is largely seen as a way for people to transfer their personal data from one service provider to another so, if a service user (resident) asks us to forward their details to another service, we will always try to help.

Right to object: You have the right to stop the processing of your personal data for direct marketing purposes. Please contact us if this applies.

Right to object to automated decisions: In a situation where a data controller is using your personal data in a computerized model or algorithm to make decisions that have a legal effect on you, you have the right to object. This does not apply to anything that Tiglin Challenge does.

WEBSITE/COOKIES

Our website does not use ‘cookies’ to track your visit. However, if you click on a link to another website (which may operate ‘cookies’), you should read its own privacy policies.

CHANGES TO THIS POLICY

From time to time, we will make changes to this statement to keep it up to date and in line with current legislation. Please make sure you check regularly to see what’s changed. This document was last updated on 13th Feb 2019.

If you need to request information related to any of the above or have a request for data held by Tiglin then please contact the DPO Philip Thompson at manager@tiglin.ie

UA-30049593-1