Data Protection
Data Protection is all about protecting the fundamental rights of living persons, specifically the right to the protection of one’s personal data. Moorepark Technology Limited is committed to upholding Irish and European Union Data Protection laws.
Individual Rights
What is Personal Data?
Personal data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person (e.g. a person’s email address, phone number, address, information about them such as their movements etc.).
What is Special Category or Sensitive Personal Data?
Personal data, revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership; data concerning health or sex life and sexual orientation; genetic data or biometric data. Financial data is not included as special category personal data. However, Moorepark Technology Limited should treat financial information with extra care.
Your Data Protection Rights
Everyone has the following rights under data protection law:
1. to be given access to a copy of your data
2. to have inaccuracies corrected
3. to have information erased (subject to limitations)
4. to object to direct marketing
5. to restrict the processing of your information, including automated decision-making
6. to data portability
For more detail on your rights see Moorepark Technology Limited’s Data Privacy Policy. To contact us in relation to your Data Protection Rights, please contact our Data Protection Officer whose contact details are given below.
Data Protection Officer
Moorepark Technology Limited will maintain a Data Protection Officer in accordance with Data Protection Legislation. If you need to contact us with regard to any of your rights as set out in our Data Privacy Policy, please make your request in writing to Data Protection Officer, Moorepark Technology Limited, Moorepark, Fermoy Co. Cork, P61 NP77, or by email to MTL.DPO@teagasc.ie.
Policies
Moorepark Technology Limited has a number of policies designed to support the protection of your personal data.
Moorepark Technology Limited’s Data Privacy Policy summarises our commitment to data protection and your rights under our policies. See our Data Privacy Policy on this website. Moorepark Technology Limited’s Data Privacy Policy provides further information, including technical information on how our website operates.
Moorepark Technology Limited also has internal policies for its workforce covering:
• Data Protection Policy
• Data Protection Impact Assessment Policy
• Data Breach Management Policy
• Data Subject Request Policy
• Record Management Policy (covering policy on personal data retention)
• ICT Data Backup Policy
Accountability
In order to fulfil its data protection obligations under accountability and transparency, Moorepark Technology Limited and its parent organisation Teagasc maintains the following registers of personal data:
Manual File Register
Moorepark Technology Limited maintains a manual file register which records manual filing systems and informal computer systems such as excel spreadsheets which contain personal data.
System Register
All Moorepark Technology Limited’s IT systems are hosted on the Teagasc network and supported by the Teagasc ICT Department. Teagasc maintains a system register which records formal computer systems managed by the Teagasc ICT Department which contain personal data.
Data Breaches
A Personal Data Breach means the loss of control, compromise, unauthorised disclosure or unauthorised access to personally identifiable information, whether in physical (paper) or electronic form. A personal data breach can happen for a number of reasons, including:
• loss or theft of data or equipment on which data is stored (including break-in to a premises)
• inappropriate access controls allowing unauthorised use
• equipment failure
• human error
• unforeseen circumstances such as flood or fire
• a hacking attack
• access where information is obtained by deceiving the organisation that holds it.
Immediately upon identifying a data breach or a suspected breach, Moorepark Technology Limited’s workforce are obliged to inform the Moorepark Technology Limited Data Protection Officer (DPO), who must then commence an investigation, which includes mandatory reporting to the Data Protection Commission.
To contact us in relation to a suspected or actual breach, please contact our Data Protection Officer whose contact details are given above.