1. Collection of personal data
1.1 It is Arkil’s absolute objective to protect the confidentiality, integrity and accessibility of the information that Arkil processes as part of the administration of Arkil’s operations. This is the case regardless of whom the information pertains to, and includes personal data. The collection of personal data shall take place only for specified, justified purposes. The collected information that is processed must be relevant and shall not comprise information other than what is required to fulfil the purpose for which the information is collected. Arkil is highly committed to the protection of personal data and works continuously to ensure compliance with data protection legislation, including the General Data Protection Regulation (“GDPR”) and the Data Protection Act 2018 (the “2018 Act”), at all times.
2. Use of personal data, purpose and basis for processing
2.1 What information is collected
• General personal data, including information such as names, addresses, telephone numbers and e-mail addresses of customers and the owners of customers, suppliers, as well as names, titles, telephone numbers and e-mail addresses for any contact persons within the customers’ or suppliers’ organisations.
• We may also have cause to hold small amounts of personal data (names, contact details , etc) relating to employees of State organisations (Revenue etc) as well as employees of other organisations who we have cause to deal with, as well as individual members of the public.
For what purpose is the information collected and what is the basis for this?
We process general personal data for the purpose of fulfilling our agreements with customers, including:
• Delivering services.
• Invoicing.
• Quality management and control.
• Bookkeeping and general administration
• Communication
• Marketing
As outlined above, we also occasionally have cause to hold small amounts of personal data (names, contact details etc) relating to employees of other organisations (Revenue etc) who we have cause to deal with, as well as individual members of the public.
In general, the basis for this processing is to fulfil our contracts with our customers and suppliers as well as to comply with any legal obligations to which we are subject: Article 6(1)(b) and (c) of the GDPR.
In the event that we process personal data for the purposes of marketing, this will be done on the basis of consent. You have the right to withdraw your consent at any time (although such withdrawal of consent will not affect the lawfulness of processing based on consent prior to its withdrawal).
In the event that you choose not to supply us with personal data it is likely that it will not be possible for us to enter a contract with you.
3. Deletion of personal data
3.1 Collected personal data is deleted or anonymised as soon as the data is no longer relevant.
4. Security
4.1 Information security is given high priority in Arkil. Our work on information security is professional and based on internationally recognised security standards. We have implemented security measures to ensure data protection for both customer data, personal data and other confidential information. We regularly carry out internal follow-ups in relation to the adequacy of and compliance with policies and measures.
5. Your rights
5.1 As a data subject you have certain rights that Arkil, as a Data Controller, is obliged to respect.
You may contact Arkil to find out what personal data Arkil processes in relation to you, you can access that personal data, and you can also request the correction of any incorrect or inadequate personal data. If you would like your personal data to be deleted, or for Arkil to restrict the processing of your personal data or if you would like to object to Arkil’s processing of your personal data, please contact Arkil. You can also contact Arkil if you would like to utilise your right to data portability.
When we process your personal data with your consent, you have the right to withdraw your consent at any time. In order to withdraw your consent to our processing of your personal data, please contact us.
6. Changes to the privacy policy
6.1 Arkil has an obligation to fulfil the requirements set down in relation to the protection of personal data at all times.
7. Automated decisions and disclosure of personal data to third parties
7.1 At no time will data relating to you be used to carry out automated decisions, including profiling
7.2 In general, data relating to you will not be disclosed to third parties. Nevertheless, Arkil will disclose information about you to the extent it is required to do so by law. This could include the disclosure of information to public authorities, such as the Revenue Commissioners, as the company is required to do this. In addition, the company may disclose information in connection with audits.
Data relating to you will not be transferred to third parties outside the EEA
8. Complaints
8.1 You are entitled to complain to the Data Protection Commission, Canal House, Station Road, Portarlingon, Co. Laois, if you believe that Arkil is not processing your data in accordance with applicable data protection regulations.
8.2 You can read more about the data protection regulations on the Data Protection Commission’s website www.dataprotection.ie
8.3 You can read more about your rights in the Data Protection Commission’s guidelines on the rights of data subjects, available at www.dataprotection.ie. Please do not hesitate to contact us should you have any questions.
9. Contact information
Paul McGlynn
Financial Director
[email protected]