The IHF is committed to maintaining the privacy of your personal information and takes our obligations under data protection legislation seriously. ‘Personal information’ means any information relating to an identified or identifiable living person.
If you have any requests concerning your personal information or any queries with regard to our processing, please contact our DPO, Annette Ryan, at dpo@irishheart.ie
Through the use of our website, you signify your acceptance of our privacy policy and consent to our collection, retention and sharing of your personal information as described below. If not, you must discontinue use of the IHF website.
If you communicate with the IHF by phone, email or via our social or other channels, we will only collect and process your personal data for the specific purpose you initiated or signed-up to, unless you have given consent (opted-in) to engagement with us relating to other aspects of our work. Should you, at any time, choose to withdraw your consent please contact our DPO, Annette Ryan, at dpo@irishheart.ie.
We will use your personal information to communicate with you, to provide requested supports or services, to send you news and latest updates about Irish Heart Foundation products, events and services in line with your contact preferences. We may contact you by post, email, telephone or SMS as specified in your preferences at initial point of contact or as subsequently updated by you.
Information we process:
Retention of information:
Security:
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have suitable physical, electronic, technical and organisational measures to safeguard and secure the information we collect. The information you provide to us is stored on secure servers.
Financial information associated with donations gifted to the Irish Heart Foundation via our website, such as credit card and bank details, is protected by third party payment processing software. This software is Payment Card Industry (‘PCI’) compliant and financial information entered online in encrypted, which means that no one can read this information while your donation is being processed
Storage and transfer of data:
The personal data we collect and process remains within the confines of the EEA, specifically on servers in Ireland, the UK and Norway. Both the UK and Norway have been granted ‘Third County’ status under the GDPR, on the basis of an adequacy decision.
From time to time, we may direct you to third party websites or platforms who have their own privacy policies. We do not accept any responsibility of liability for these policies and urge users to take reasonable steps before disclosing any personal data.
Disclosure of your information to Third Parties:
We do not sell your personal information to third parties for marketing purposes. But we may share your personal data with selected third parties, working directly on our behalf for a specified purpose. These third parties are bound by confidentiality provisions and are also subject to the GDPR. (Link to list of third parties).
Your rights:
You have the right to object to the processing of your data at any time. The Irish Heart Foundation will respect that right but may need to continue to process your data where processing is necessary for the performance of a contract or for compliance with a legal obligation to which the IHF, as data controller, is subject.
You also have the right to obtain access to the personal data we hold about you. You may make this request by phone, by post or electronically and we will respond using the same channel by which you have made the request. There is no fee for this service and we will respond to you within one calendar month. You will be asked to verify your identify by reasonable and proportionate means, to ensure we are providing data to the person making the request.
You have the right to lodge a complaint with the Irish Data Protection Commission if you feel that our processing of your personal data infringes the GDPR. Here is a link to the relevant page: https://www.dataprotection.ie/en/individuals/exercising-your-rights/raising-concern-commission
The GDPR specifically give you the right to:
You can exercise these rights at any time by contacting us via email at dpo@irishheart.ie, in writing at: Annette Ryan, Data Protection Officer, Irish Heart Foundation, 17-19 Lower Rathmines Road, Dublin, D06 C780 or by phoning us on +353 1 668 5001.
We will respond to you within one calendar month of receipt of your request, as mandated by the GDPR.
Last Updated date: February 2025