Data Protection is all about protecting the fundamental rights of living persons, specifically the right to the protection of one’s personal data. Moorepark Technology Limited is committed to upholding Irish and European Union Data Protection laws.
What is Personal Data?
Personal data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person (e.g. a person’s email address, phone number, address, information about them such as their movements etc.).
What is Special Category or Sensitive Personal Data?
Personal data, revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership; data concerning health or sex life and sexual orientation; genetic data or biometric data. Financial data is not included as special category personal data. However, Moorepark Technology Limited should treat financial information with extra care.
Your Data Protection Rights
Everyone has the following rights under data protection law:
1. to be given access to a copy of your data
2. to have inaccuracies corrected
3. to have information erased (subject to limitations)
4. to object to direct marketing
5. to restrict the processing of your information, including automated decision-making
6. to data portability
Data Protection Officer
Moorepark Technology Limited has a number of policies designed to support the protection of your personal data.
Moorepark Technology Limited also has internal policies for its workforce covering:
• Data Protection Policy
• Data Protection Impact Assessment Policy
• Data Breach Management Policy
• Data Subject Request Policy
• Record Management Policy (covering policy on personal data retention)
• ICT Data Backup Policy
In order to fulfil its data protection obligations under accountability and transparency, Moorepark Technology Limited and its parent organisation Teagasc maintains the following registers of personal data:
Manual File Register
Moorepark Technology Limited maintains a manual file register which records manual filing systems and informal computer systems such as excel spreadsheets which contain personal data.
All Moorepark Technology Limited’s IT systems are hosted on the Teagasc network and supported by the Teagasc ICT Department. Teagasc maintains a system register which records formal computer systems managed by the Teagasc ICT Department which contain personal data.
A Personal Data Breach means the loss of control, compromise, unauthorised disclosure or unauthorised access to personally identifiable information, whether in physical (paper) or electronic form. A personal data breach can happen for a number of reasons, including:
• loss or theft of data or equipment on which data is stored (including break-in to a premises)
• inappropriate access controls allowing unauthorised use
• equipment failure
• human error
• unforeseen circumstances such as flood or fire
• a hacking attack
• access where information is obtained by deceiving the organisation that holds it.
Immediately upon identifying a data breach or a suspected breach, Moorepark Technology Limited’s workforce are obliged to inform the Moorepark Technology Limited Data Protection Officer (DPO), who must then commence an investigation, which includes mandatory reporting to the Data Protection Commission.
To contact us in relation to a suspected or actual breach, please contact our Data Protection Officer whose contact details are given above.