Who are we?
This parish of Mary Immaculate is part of the Catholic Archdiocese of Dublin. The parish is a registered charity Registered Charity Number: CHY 3671 RCN 20004651. The Parish Priest/Moderator is the data controller for the parish, in other words he is the person responsible for making sure your data is safe and secure.
The Archbishop is the sole controller of the personal data and special category data contained in the Baptism Registers held in Parishes of the Archdiocese with respect to storage and retention of data, standard and special annotation of data and alteration of data. The Archbishop, along with the Parish Priest/Administrator/Moderator assigned to the Parish which holds the Baptism Register, are each a joint controller of the personal data and special category data with respect to collecting and recording of data in the Baptism Register.
Your personal data – what is it?
Personal data relates to a living individual who can be identified from that data. Identification can be through the information alone or in conjunction with other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation or the GDPR and the Data Protection Act (2018).
Who does this Privacy Notice apply to?
This Privacy notice is for all those whose personal information is dealt with in any way by the parish including parishioners, clergy, staff, volunteers, contractors, suppliers and visitors and there may be others.
What is the lawful basis for processing your personal data?
The GDPR requires specification in the Privacy Notice of the lawful basis for processing personal data. Below are the lawful bases which are relevant to our processing activities;
Baptism Registers held in Parishes of the Archdiocese
Where personal data and special category data is processed in the Baptism Registers held in Parishes of the Archdiocese, the Archbishop relies on the legitimate interests in preserving the information contained in Baptism Registers because such registers consist of a record of the administration of certain sacraments in the Roman Catholic Church. It is essential that the Archbishop maintains a record of certain sacraments which may only be administered once in the Roman Catholic Church. As personal data contained in the Baptism Registers is special category personal data, the Archbishop must have an additional lawful basis for processing. The Archbishop relies on processing carried out in the course of his legitimate activities with appropriate safeguards and the processing relates solely to members or former members of the Roman Catholic Church, and personal data is not disclosed outside the Roman Catholic Church without the consent of the member/former member concerned.
What personal data do we process?
The parish will process some or all of the following types of data, where necessary to perform our duties;
How does the Parish process personal information?
We use your personal data for purposes included among the following;
Sharing your personal data
Your personal data will be treated as strictly confidential and will only be shared where appropriate;
How long do we keep your personal data?
We keep your personal data for as long as it is need and in line with our Retention/Disposition schedule. Some records are permanently kept and these will be placed in the Parish/Diocesan Archives.
In relation to the Baptism Registers held in the Parishes of the Archdiocese, personal data and special category data are retained in perpetuity, in order to achieve the purpose of correctly administering certain sacraments that may only be undertaken once in a person’s lifetime.
How is our information kept safe and secure?
We comply with its obligations under the “GDPR” by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.
Baptism Registers are annotated upon administration of the Sacraments of Confirmation, Marriage or Holy Orders to an individual. Where an individual receives any of these sacraments, a note will be made in the Baptism Register entry for that individual. Annotations are necessary as it ensures the sacraments of Confirmation, Marriage or Ordination may only be undertaken once during a person’s lifetime.
Your rights and your personal data
Unless subject to an exemption under the GDPR you have the following rights with respect to your personal data: –
When exercising any of the above rights and in order to facilitate your request, we may need to verify your identification for security purposes.
Transfer of Data Abroad
We do not transfer personal data abroad.
We reserve the right to review and amend this statement at any time without notice.
Please contact the Parish if you have any questions about this Privacy Statement or the information we hold about you or to exercise all relevant rights, queries or complaints or email firstname.lastname@example.org.
You can contact the Data Protection Commissioners Office on 00353 57 8684800 or Lo-Call 1890 252 231 or by email at email@example.com.
Updated 24 March 2023