About this data protection notice
This data protection notice sets out details of the personal data relating to you that is collected by the Institute of Banking and how that data is processed.
Who collects your data?
Your data is collected by The Institute of Bankers in Ireland, 1 North Wall Quay, Dublin 1 (trading as The Institute of Banking) (‘the Institute’, ‘we’, ‘us’, ‘our’). The Institute is a Data Controller and is committed to protecting your rights in line with the General Data Protection Regulation (GDPR).
What information do we collect about you?
In order to provide our services to you, we collect personal details, contact information, details of previous qualifications and work experience, and other identifying and supporting information that you supply in support of your application. We may need to collect personal data relating to you from third party sources, such as your employer. The data we collect from you will be used by the Institute only in accordance with the purposes outlined in this privacy notice.
We may collect your data in the following manner:
Electronic form e.g. online application form, attachments, email
Verbal e.g. telephone conversation
Written form e.g. any documentation in support of your application to include but not limited to; letter of support, transcript of results, CV, details of previous qualifications including English language certification where relevant.
Are you required to provide the information?
We require you to complete the mandatory fields identified in this online application for the purposes of entering into a contract with you. If you do not provide us with the information required in these fields, we may be unable to process your application.
How will your information be used?
The information collected in this online application may be shared with the following areas of the Institute:
Programme Management Team: for the purpose of providing further information on the programme of study for which you have applied
Programme Subcommittee: for the purpose of verifying your eligibility and suitability for the programme of study
Registry Department: for the purpose of registering you to the programme and advising you of upcoming registration closing dates and semester start dates for the programme
Finance Department: for the purpose of collection of fees.
The data we collect about you will be used to:
access your eligibility and suitability for the programme of study for which you applied
verify your previous educational qualifications, work experience and language competency
provide information on schedules and timetables including lecture dates, webinar information and exam dates and venues
provide information to UCD in support of your application where necessary.
The legal basis for collecting your data
For the purposes outlined in this privacy notice your personal data will be processed on the basis of your legitimate interests.
How we store and secure your data
Any data we collect from you will be stored confidentially and securely. In keeping with the data protection principles, we will store your application related data for a period of five academic years.
When we store your personal data on our systems the data will be stored either on the Institute’s secure I.T. platforms within the EEA which are also subject to European data protection requirements.
Who receives your information?
The Institute will share your data with third parties service providers where necessary for example I.T. support, other professional advisors and may disclose your information to other legal and regulatory bodies where requested or required by law. In certain circumstances, the Institute may also disclose your information to UCD, and third-party disclosure may also take place to funding bodies and agencies that support or sponsor your application.
In connection with the above purposes, we may transfer your personal data outside the European Economic Area, including to a jurisdiction which is not recognised by the European Commission as providing for an equivalent level of protection for personal data as is provided for in the European Union. If and to the extent that we do so, we will ensure that appropriate measures are in place to comply with our obligations under applicable law governing such transfers, which may include entering into a contract governing the transfer which contains the “standard contractual clauses” approved for this purpose by the European Commission, or in respect of transfers to the United States of America, ensuring that the transfer is covered by the EU-US Privacy Shield framework. Further details of the measures that we have taken in this regard and the territories to which your personal data may be transferred are available by contacting our Data Protection Officer at email@example.com.
When we share your data with the third parties outlined here the Institute will ensure that the data is only processed according to our specific instructions and that the same standards of confidentiality and security are maintained. Once the processing of the data is complete any third parties with whom data was shared will be required to return the data to the Institute save where they are required to retain it by law.
What are your rights?
You have the following rights, in certain circumstances and subject to applicable exemptions:
The right to have any inaccuracies in your personal data amended
The right to object to the processing of your personal data
The right to have the personal data that we hold about you erased
The right to restrict the processing of your personal data
The right to receive your personal data, which you provided to us, in a structured, commonly
used and machine-readable format or to require us to transmit that data to another controller
If you want to exercise any of these rights, please contact the Institute’s Data Protection Officer using the contact details below. If you are unhappy with the way in which your personal data has been processed you may in the first instance contact the Institute’s Data Protection Officer using the contact details below.
The Institute of Banking has a Data Protection Officer who can be contacted through firstname.lastname@example.org or by writing to: The Data Protection Officer, The Institute of Banking, IFSC, 1 North Wall Quay, Dublin 1.
If you remain dissatisfied then you have the right to apply directly to the Data Protection Commission for a decision. The Data Protection Commission can be contacted at:
Data Protection Commission
R32 AP23 Co. Laois