Information we collect
- At registration and engagement: you provide us with information about you in the context of your engagement with us and your use of our Services. For example, you may provide us with information about your identity and your business.
- For website enquiries: you provide us with information such as your name, title, company address, areas of interest, email address, and telephone and fax numbers, when you visit or use our website and enquire for further information.
- At events and for marketing: you provide us with your information such as your name, place of work and contact details, when you sign up to or attend our events or otherwise engage with our business.
- For support: you provide us with information by sending us emails via the contact form and bookings page on our website. These messages will necessarily contain your email name and email address, as well as any additional information you may wish to include in the message.
- When submitting a curriculum vitae (CV): you provide us with certain information when you send us your CV and we can consider you for roles at Heaney Keogh.
- Automatically from your device: we automatically collect certain information from your browser or device when you use certain Services or read a message from us. For example, we collect data regarding the device you're using, such as its unique identifier and operating system; logs will be recorded by our server provider based on the information sent from your app or browser; and information may be recorded by cookies and similar technologies when you use the Services.
- From third parties: we receive information from other third parties, which may include information about you. For example, we may receive information from the Revenue Commissioners and other regulatory authorities and public bodies.
Our legal bases for processing
- as necessary to provide our Services;
- further to your consent where you have given it (which you may revoke at any time)
- if necessary, to comply with a legal obligation, a court order or to exercise and defend legal claims; and
- where necessary for the purpose of our or others' legitimate interests.
- Exceptionally, in infrequent and highly specific situations, we may also process your information:
- to protect your vital interests, or those of others; and
- where necessary in the public interest.
In certain cases, we use your information to pursue our and others' legitimate interests, which include:
- Providing and improving our Services: we use your information as necessary to pursue our legitimate interests in providing, developing and improving the Services.
- Marketing: we use your information as necessary in accordance with our legitimate interests of marketing our Services to you.
- Safety and security of our Services: we take safety and security seriously. We rely on both our and your legitimate interests to monitor the safety and security of IT systems to protect against fraud and ensuring network and information security.
Using your information
We use the information we have to help us operate, provide, improve, understand, customize, support, and market our Services. We use the information we have about you in the following ways and for the following purposes:
- Providing the Services, for example audit, accounts production, tax or advisory services;
- Maintaining and using relevant IT systems, in particular systems which we use to enable us deliver the Services;
- Quality and risk management reviews, undertaken either by our regulators or internally by us for compliance purposes;
- Communicating with you, including providing information about us and our range of services;
- Analysing request and usage patterns so that we may enhance the content of our Services and improve website navigation. When sending emails, we may carry out certain analytics on the messages sent, such as whether the message has been opened, how many times it has been opened, and your topic preferences;
- With your permission, to contact you with information about our business, services and events, and other information which may be of interest to you. You may unsubscribe from our mailing list at any time by contacting us.
- Legal obligations, such as to comply with any requirement of law, regulation, or a professional body of which we are a member.
We do not collect or compile information for dissemination or sale to outside parties for consumer marketing purposes, or host mailings on behalf of third parties.
Where we act as a controller, your information will also be transferred to third party service providers who process information on our behalf, such as providers of information technology, identity management, website hosting and management, data analysis, data back-up, security and storage services.
Your information is not shared with any third party, for any secondary or unrelated purposes, unless otherwise disclosed to you. If there is an instance where such information is sought to be shared, we will notify you in advance.
Your information may be transferred outside the country where you are located in connection with the provision of the Services. This includes countries outside the European Economic Area (EEA) and countries that do not have laws that provide equivalent protection for your information.
We have taken steps to ensure all information is provided with adequate protection and that all transfers of information outside the EEA are lawful. We will only transfer information outside of the EEA to a recipient who (i) is located in a country determined by the European Commission as providing an adequate level of protection for information; (ii) is subject to an agreement, derogation or other legal act which allows for the lawful transfer of information outside the EEA, such as the European Commission standard contractual clauses or the EU-US Privacy Shield.
We recognise that your information is important to you and we take appropriate measures to protect your information while it is in our care. We have implemented appropriate technical and organisational security measures in order to protect your information from unauthorised or unlawful disclosure, loss, misuse, alteration, destruction damage to such information.
Individuals have certain rights over their information and controllers are responsible for fulfilling these rights. As outlined, in certain circumstances, we act as a controller of your information. We have therefore provided information below about the rights that individuals have and how to exercise them.
Access to information
We like to keep your information accurate and up to date. If you would like to access or update your information, or you would like details of the information which you have submitted to us, please do so via email: firstname.lastname@example.org
If we are informed that any information we hold is no longer accurate, we will make appropriate corrections based on the updated information provided.
Restriction, Rectification and Deletion
You can request that we restrict, rectify or limit our processing of your information by contacting us. You can also request that we delete your information.
If we process your information based on our legitimate interests explained above, or in the public interest, you can object to this processing in certain circumstances. In such cases, we will cease processing your information unless we have compelling legitimate grounds to continue processing or where it is needed for legal reasons.
If you no longer want to receive our marketing emails, you can always opt-out by contacting us.
Withdrawal of consent
Where we've asked for your consent to process your information, and you want to withdraw that consent, you can do so at any time. To withdraw consent to our processing of your information please email us at: email@example.com
In certain cases, we may continue to process your information after you have withdrawn consent if we have a legal basis to do so or if your withdrawal of consent was limited to certain processing activities.
We hope that you won't ever need to, but if you do want to complain about our use of your information, please send an email with the details of your complaint to: firstname.lastname@example.org.
You also have the right to lodge a complaint with the Data Protection Commission ("DPC"), the Irish data protection regulator. For further information on your rights and how to complain to the DPC, please refer to the DPC website or contact the DPC using the following details:
Office of the Data Protection Commission
21 Fitzwilliam Square South,