logo
logo
Header Image

Privacy Policy

Friends of the National Collections of Ireland Website Data Protection Statement

 

The Friends of the National Collections of Ireland collect information you supply to us when you

  • join as a member or renew your membership online
  • order tickets to an event or a trip organised by the Society
  • email us via the Contact Form

As such, the Friends of the National Collections of Ireland (FNCI) are the Data Controller of your membership details under the Data Protection Acts 1988–2003 and 2018, the General Data Protection Regulation (GDPR; EU 2016/679) and Directive 2002/58/EC (ePrivacy Directive).

What we collect:

Your name, postal address, email address, details of payment method. Note: Payments through the website are processed by Stripe and we do not see your card details.

Why we collect your information:

We collect your personal information as described above for administrative purposes — to send out a welcome pack; to send out renewals, invitations to events; reminders of activities, AGM documentation etc.

We use our Contact Form to respond to your enquiries.

The legal basis for holding your information:

Unless you cancel your membership, we hold your information in order to process your ongoing membership, send out renewals, set up recurring payments, manage participation in events, advertise meetings, trips etc.

How long do we retain your data?:

We retain your details for as long as you remain a member and for 7 years thereafter in compliance with revenue requirements.

Contact forms are deleted upon reply or within 6 months at the latest.

Cancelled membership data are minimized and only retained for as long as required for revenue purposes.

 

Who has access to your data:

A limited number of office holders, for example, the Treasurer, Hon. Secretary, Events Manager and Membership Secretary, have access to your data for administrative purposes.  We endeavour to retain your data securely for the purposes outlined. Stripe has access to your data as a PCI-compliant data processor and payments are certified PCI-DSS Level 1 (bank security level). Your payment details are not held on this web server.

Your data are never shared with third parties, such as other societies, mailing or marketing lists.

Your Data Protection Rights:

You, the data subject, have the right to:

Obtain from the data controller (the FNCI);

  • details of the data we hold on you;
  • the purposes for which these data are processed;
  • the recipients or categories of recipient to whom the personal data have been or will be disclosed;
  • where personal data have not been collected from you, e.g. in the case of a gifted membership, you may request any available information as to the source of the data;
  • the period for which the personal data are stored;

You may also request rectification or updating of your personal data;

You have the right to request erasure of your personal data, where feasible, without undue delay, or restriction of processing of your personal data.

Requests for information on your personal data held by us should be addressed to: The Data Controller, Friends of the National Collections of Ireland, 45 Merrion Square, Dublin 2, D02 VY60.  We shall respond to data access requests within 30 days from date of receipt.

In the event that of dissatisfaction with the handling of a request, you have the right to lodge a complaint with the relevant supervisory authority, the Data Protection Commission, 6 Pembroke Row, Dublin 2, D02 X963  (https://forms.dataprotection.ie/contact)

 

December 2025