Privacy Statement

MP Technology T/A Hi-Tech Associates (hereinafter referred to as the “Company”).
This privacy statement was last updated on: 25th July 2018

The Company take your personal data privacy seriously. It is your right to know how we deal with and process the personal data that you supply to us. You also need to know why we gather the personal data and to highlight your rights as a data subject. Our goal is to comply with the General Data Protection Regulations (GDPR) always by protecting your personal data and your rights, as a data subject.
By using the site, you are accepting the terms of this policy; if you are not happy with these terms, you should not use this website. This Privacy Statement explains how we treat the personal data, that you provide while using the Company website. Links to external sites are not managed by the Company. Where we provide links to websites of other organisations, this privacy statement does not cover how those organisation processes personal information. We encourage you to read the privacy statements on all websites that you visit.
We keep our privacy statement under regular review to make sure it is up to date and accurate.

1. Who is collecting the data?

2. What data is being collected?

3. What is the legal basis for processing the data?

4. Will the data be shared with any third parties?

5. How will the information be used?

6. How long will the data be stored for?
7. What rights does the data subject have?
8. How can the data subject raise a complaint?
9. Changes to this privacy statement.

1. Who is collecting the data?

MP Technology T/A Hi-Tech Associates are an Irish based private training company, with their head office in Glasnevin, Dublin 11. The Company provides training courses for the various Education and Training Boards Ireland (ETBI) around the country.

2. What data is being collected?

When providing courses on behalf of the Company we collect data provided from data subjects or from their employers, such as; name, postal address, email address & phone number. Personal data is kept to the bare minimum, to meet our administrative needs and our operational management requirements.

In addition to the above, we use cookies on the Company website. Cookies are functional and third-party cookies. Functional cookies are necessary to run our website. No personal data is collected by these types of cookies.
We also use third party cookies, including Google Analytics and other Social Media Websites. Third-party cookies collect some personal data, such as IP Addresses, which are now classified as personal data. We have a separate policy to cover the cookies that we use. You can manage your cookie preferences or withdraw your cookie consent on our Cookie Policy page.

3. What is the legal basis for processing the data?

Where the processing of personal data is on behalf of the Company, Article 6(f) is utilised as the lawful basis for processing personal data; “For the performance of a contract”. “Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract”
Where the processing of personal data is on behalf of the Education and Training Boards (ETB – Controller), Article 6(e) is utilised as the lawful basis for processing personal data; “Public Task – in the exercise of official authority vested in the controller”. The ETB is categorised as a Statutory Body.

4. Will the data be shared with any third parties?

We will never share or sell your personal data with any other third-party provider, for financial gain or for any other reason as a Controller, unless obliged to do so for regulatory or legal reasons. As previously mentioned in Section 2, we share our aggregated data with Google Analytics. We do not outsource this task to a third-party company.

Examples of how we use the data from Google Analytics would be to understand;

how may people are coming to our site?

what pages they visit?

how long are they staying on the pages?

Based on the above, we might take action such as;

remove content which may be of no value to our website visitors

changing content on pages to increase visitor engagement

develop similar type content that is engaging

4.1 Where is the data stored?

Your personal data files are stored on Microsoft OneDrive for Business Secure Servers within the EU. The Secured Servers are based in Ireland and the Netherlands. The personal data is not considered as being transferred to a third country as it stays within the EU. Where is my data stored?

Exchange Online

Secure Server Locations
Austria
Finland
Ireland
Netherlands

OneDrive for Business

Secure Server Locations
Ireland
Netherlands

SharePoint Online

Secure Server Locations
Ireland
Netherlands

Skype for Business

Secure Server Locations
Ireland
Netherlands

5. How will the information be used?

The personal data will be used for administration purposes and for managing the day-to-day operations of our business. Any personal data communicated via our online, email, postal and phone support services will be treated in the strictest confidence.
The personal data supplied as per the legal basis above, will not be used outside of the reasons, for which it was gathered.

6. How long will the data be stored for?

We will not store your personal data for any longer than required. At the end of each course, we will delete all personal data, unless there is a regulatory or legal reason, not to do so.

7. What rights does the data subject have?

Your rights include:

access to your information and receive copies of your information;

have inaccurate/incomplete information corrected and updated;

object to particular use of your personal data for our legitimate business interests or direct marketing purposes;

in certain circumstances, have your information deleted or our use of your data restricted;

in certain circumstances, a right not to be subject to solely automated decisions and where we make such automated decisions, a right to have a person review the decision;

exercise the right to data portability (i.e. obtain a transferable copy of your information we hold to transfer to another provider); and

to withdraw consent at any time where processing is based on consent.

As per your enhanced rights under GDPR, the data subject is entitled to submit a Subject Access Request (SAR). Under the GDPR guidelines, this process should be completed within one month, from the day we receive your request. The period may be extended by two further months, if necessary, taking into account the complexity of the request.

8. How can the data subject raise a complaint?

We work to high standards when it comes to processing your personal information. To make a request in relation to any of your rights above, or to make a complaint to us, please contact us at:

Contact Name: Lisa Murphy

Postal Address: 28 Tolka Valley Business Park, Ballyboggan Road, Glasnevin, Dublin 11.

Phone: Ireland: 01 882-0000, International: +353 1 882-0000

Email: data.compliance@hitech.ie

If you are dissatisfied with our response, please let us know, through any of the above, or contact Michael Pollock – General Manager @ 01 882-0000.

You can make a complaint about the way we process your personal information to the Irish Supervisory Authority; The Data Protection Commission. Their complaint forms can be found at the following link; Making a complaint to the data protection commission

9. Changes to this privacy statement.

From time to time, this policy may be updated to take account of the following:

changes to the GDPR Legislation

new products or services offered by the Company

administration changes, improvements, etc.

Updates take effect when they are posted here. The date at the top of the document will reference the most recent changes.