The Irish Pharmacy Union (“IPU”) understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of everyone who visits this website, and only collect and use your personal data as described in this Privacy Notice. Any personal data we collect will only be used as permitted by law.

IPU is committed to protecting and respecting your privacy. This Privacy Notice tells you about your privacy rights and sets out how we, as a Data Controller, collect, use, process and disclose your personal data relating to your interactions with us.
Please read this Privacy Notice carefully and ensure that you understand it.

1. What Does This Notice Cover?

This Privacy Statement applies where the Irish Pharmacy Union is a Data Controller of your personal data, such as when you submit personal data via our website for example, when you are a registered Member, or when you consent to receiving communications from us. Our site may contain links to other websites. Please note that we have no control over how your data is collected, stored, or used by other websites and we advise you to check the privacy policies of any such websites before providing any data to them.

 

2. What Is Personal Data?

Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the “GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.

Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers. If you do not provide us with your personal data, we may not be able to provide you with our services or respond to any questions or requests you submit to us via our website. We will tell you when we ask for personal data which is a contractual requirement or is needed to perform our functions or to comply with our legal obligations.

 

3. How Do You Use My Personal Data?

Where we collect any personal data, it will be processed and stored securely, for no longer than is necessary in light of the reasons for which it was first collected. We will comply with our obligations and safeguard your rights under the relevant Data Protection Legislation at all times.

Our site collects certain information automatically, including your IP address, the type of browser you are using, and certain other non-personal data about your computer or device such as your operating system type or version, and display resolution. You can remove or reject cookies using your browser or device settings, but in some cases doing so may affect your ability to use our services.

Below is a summary of the purposes and lawful bases we rely on to use your personal data:

 

Data Collected

Purposes/activity

Legal basis for processing

First and last name, Email address, telephone contact details, postal address, Eircode, GMS Number, payment card details.

To register you as a Member with the Irish Pharmacy Union/ provide you with access to our Members portal on our website.

The processing is necessary to perform a contract with you (contract of Membership).

First and last name, Email address, telephone contact details.

To contact/respond to members or prospective members regarding services which they are interested in.

Your consent.

First and last name, email address, CV details, phone number, professional qualifications, references, confirmation that you are 18 years or older etc.

To process job applications from candidates for employment within our organisation.

Subject to entering into a contract of employment with you/prior to entering into a contract of employment.

Your consent.

IP address, browser type etc.

To assist the proper operation and functionality of our site.

The processing is necessary to support our legitimate interests in managing our business and maintaining website security.

IP address, browser type, cookie preferences.

To analyse, improve and tailor our website content in line with user preferences and behaviour.

Your consent.

 

4. Security and where we store your personal data

We are committed to protecting the security of your personal data. We use a variety of security technologies and procedures to help protect your personal data from unauthorised access and use. As effective as modern security practices are, no physical or electronic security system is entirely secure. We have implemented strict internal guidelines to ensure that your privacy is safeguarded at every level of our organization. We will continue to revise policies and implement additional security features as new technologies become available.

Personal data security is essential to us, and to protect personal data, we take the following measures:

  • limiting access to your personal data to those employees and third parties with a legitimate need to know and ensuring that they are subject to duties of confidentiality;
  • procedures for dealing with data breaches (the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, your personal data) including notifying you and/or the relevant Supervisory Authority when legally required to do so;
 
 

5. What Are My Rights?

Under the General Data Protection Legislation, you have the following rights, which we will always work to uphold:

a) The right to be informed about our collection and use of your personal data. This Privacy Notice should tell you everything you need to know, but you can always contact us to find out more or to ask any questions using the details in the ‘Contact Us’ section.

b) The right to access the personal data we hold about you. ‘Contact Us’ below will tell you how to do this.

c) The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete. It is important that your personal data is kept accurate and up-to-date. If any of the personal data we hold about you changes, please keep us informed as long as we have that data.

d) The right to be forgotten, i.e. the right to ask us to delete or otherwise dispose of any of your personal data that we hold. Please contact us using the details in the ‘Contact Us’ section to find out more.

e) The right to restrict (i.e. prevent) the processing of your personal data.

f) The right to object to us using your personal data for a particular purpose or purposes.

g) The right to withdraw consent. This means that, if we relying on your consent as the legal basis for using your personal data, you are free to withdraw that consent at any time.

h) The right to data portability. This means that, if you have provided personal data to us directly, we are using it with your consent or for the performance of a contract, and that data is processed using automated means, you can ask us for a copy of that personal data to re-use with another service or business in many cases.

i) Rights relating to automated decision-making and profiling. We do not use your personal data in this way.

j) the right to lodge a complaint with the relevant Supervisory Authority, if you have any cause for complaint about our use of your personal data. We would welcome the opportunity to resolve your concerns ourselves however, so please contact us first, using the details in the ‘Contact Us’ section.

 

6. Do You Share My Personal Data?

We will not share any of your personal data with any third parties for any purposes, subject to the following exceptions:

Service Providers:

Carefully selected companies that provide services for or on behalf of us, such as companies that help us with IT support and website security. These providers are also committed to protecting your information.

Other Parties When Required by Law or as Necessary to Protect Our Services:

For example, it may be necessary by law, legal process, or court order from governmental authorities to disclose your information. They may also seek your information from us for the purposes of law enforcement, national security, anti-terrorism, or other issues that are related to public security. We will challenge any such requests that are not valid.

Other Parties in Connection with Corporate Transactions:

We may disclose your information to a third party as part of a merger or transfer, acquisition or sale, or in the event of a bankruptcy.

Other Parties with Your Consent or at Your Direction:

In addition to the disclosures described in this Privacy Notice, we may share information about you with third parties when you separately consent to or request such sharing. If any personal data is transferred outside of the EEA, we will take suitable steps in order to ensure that your personal data is treated just as safely and securely as it would be within the EEA and under the Data Protection Legislation.

 

7. Retention of your personal data

We will store your personal data only for as long as necessary for the purpose(s) for which it was obtained. The criteria used to determine our retention periods include (i) the length of time we have an ongoing relationship and/or provide our services; (ii) whether there is a legal requirement to which we are subject; and (iii) whether the retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations). Please contact us if you wish to obtain further information concerning our retention periods (see ‘Contact Us’ below).

 

 

8. International Transfers

Your use of our website may from time to time involve the transfer, storage, and processing of your personal data to other countries outside of the European Economic Area. We will take appropriate measures, in compliance with applicable law, to ensure that your personal data remains protected. Such measures include the use of Standard Contractual Clauses to safeguard the transfer of data outside of the EEA.

As stipulated in Part 6 above, we may be requested by law, legal process, or court order from governmental authorities to disclose your information. IPU also commit that if we are ever compelled by a valid and binding legal request to disclose member/customer data, we will disclose only the minimum amount of data necessary to satisfy the request.

Processing of children’s’ data

The IPU does not provide services for purchase by children, nor do we market to children. If you are under the age of 16, please do not submit any personal information through our website. We encourage parents and legal guardians to monitor their children’s internet usage and to help enforce this Privacy Notice by instructing their children never to provide personal information via our website without their guardian’s consent.

 

 

9. Contact Us

You may request at any time a copy of the personal data held about you and request its correction or deletion. To obtain a copy of this information, please send an email to [email protected]. Upon receipt of your request and within one month we will inform you about the type of personal data we hold about you, the purposes for which we hold it and the possible recipients or types of recipients. In some cases, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be kept fully informed of our progress.

To contact us about anything to do with your personal data, including to make a subject access request, please use the following details (for the attention of Data Protection Contact):

Registered address: Butterfield House, Butterfield Avenue, Rathfarnham, Dublin 14, D14 E126, Ireland.

Email address: [email protected]

Telephone number: +353 1 493 6401

 

 

10. Changes to this Privacy Notice

We may change this Privacy Notice from time to time. This may be necessary, for example, if the law changes, or if we change our business in a way that affects personal data protection.

Any changes will be posted on our site and you will be deemed to have accepted the terms of the Privacy Notice on your first use of our site following the alterations. We recommend that you check this page regularly to keep up-to-date.

Last updated: 1st February 2024