Personal data supplied to CRO via this website pursuant to the Companies Act 2014 (for instance, notification of appointment of a company officer, change of company officer’s particulars) or the Registration of Business Names Act 1963 (for instance, registration of a business name by an individual, firm or body corporate, or change of address of the owner of a registered business name) does not come within the Data Protection Acts 1988-2018, being “personal data consisting of information that the person keeping the data is required by law to make available to the public”. Such data therefore falls outside the terms of this Privacy Statement. This means that the conditions and information set out below do not apply to any personal data supplied to CRO on this website by any person pursuant to the Companies Act 2014 and/or Registration of Business Names Act 1963.
Identity
This website is www.cro.ie. If you wish to discuss any matters relating to the processing of personal data on the CRO’s website, please contact us at webmaster@cro.ie or by post at CRO, Bloom House, Gloucester Place Lower, Dublin 1.
Purpose
The purposes for which personal data supplied by you on our website will be used will be:
Disclosure
Personal data supplied will not be released to any third parties, save that credit card information will be securely transferred to Realex, a secure online payments provider.
Right of Access
A person has the right of access to the personal data held by CRO as a result of what has been supplied by him/her on this website. An individual can make a data protection access request by completing a Subject Access Request (SAR) form.
Submitting a Subject Access Request (SAR)
You must complete a Subject Access Request (SAR) form in order to request a copy of your personal information from us. This Form must be completed in full and sent to: CRO, Bloom House, Gloucester Place Lower, Dublin 1. Applications can also be sent electronically to info@cro.ie. You should try to be as specific as possible in identifying the personal information that you are seeking from us. Also, if possible, try to specify the areas of the CRO where you feel would be most relevant to your request. This will assist us in providing you with an effective and efficient service. In general, there is no charge for individuals who seek access to their personal records under the Data Protection Acts and requests must be completed within one month. You will be required to provide Proof of Identity when making a request such as a copy of your photo ID, duly certified, signed and dated by a Garda, Doctor, Solicitor, Priest, Peace Commissioner or Commissioner for Oaths.
Subject Access Request (SAR) Form – Subject Access Request form (PDF)
Exceptions to the right of access
In a small number of circumstances your right to access personal records can be limited. This is necessary in order to strike a balance between the rights of the individual, on the one hand, and some important needs of civil society, on the other hand.
Further information about an individual’s rights under the Data Protection Acts
The Data Protection Commission website offers an explanation of the rights and responsibilities under the Data Protection Acts.
Information is also available from:
Office of the Data Protection Commission
Portarlington Office
Canal House
Station Road
Portarlington
R32 AP23
Office of the Data Protection Commission
Dublin Office
21 Fitzwilliam Square
Dublin 2
D02 RD28
You can contact the Office of the Data Protection Commission by emailing info@dataprotection.ie or by telephone at: 057 868 4800/076 110 4800.
Right of Rectification
If the personal data supplied by you to this website in the context of payment for services supplied, or registration for the CRO email newsletter service or online filing service is inaccurate, you have the right to have said personal data corrected. There is no charge for complying with such a request and we will comply with your request within 30 days. Please forward a written request for rectification to CRO, Bloom House, Gloucester Place Lower, Dublin 1.
Right of Erasure
You have the right to have your data erased if one of the following grounds applies:
There are certain circumstances where this right does not apply. This includes:
Right to Data Portability
In some circumstances, you may be entitled to obtain your personal data in a format that makes it easier to reuse in another context, and to transmit these data without hindrance. This is referred to as the right to data portability.
This right only applies where processing of personal data (supplied by you) is carried out by automated means, and where you have either consented to processing, or where processing is conducted on the basis of a contract.
This right only applies to the extent that it does not affect the rights and freedoms of others.
Right to Object
You have the right to object to certain types of processing of your personal data where this processing is carried out in connection with tasks in the public interest, or under official authority, or in the legitimate interests of others.
Where a data controller is using your personal data for the purpose of marketing something directly to you, or profiling you for direct marketing purposes, you can object at any time, and the data controller must stop processing as soon as they receive your objection.
You may also object to processing of your personal data for research purposes, unless the processing is necessary for the performance of a task carried out in the public interest.
Right of Restriction
You have a limited right of restriction of processing of your personal data. Where processing of your data is restricted, it can be stored by the CRO, but most other processing actions, such as deletion, will require your permission.
Cookies
This website uses Google Analytics, a web analytics service provided by Google, Inc. Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the site (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage.
Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this, you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purpose set out above.
CRO takes its security responsibilities seriously, employing the most appropriate physical and technical measures, including staff training and awareness, and these measures are reviewed regularly.
To ensure the security of your credit card information when you use same to discharge CRO fees on this site, we use Secure Socket Layer (SSL) technology. You will see the padlock in your browser’s security display indicating that the transfer of all data between your browser and our site has been encrypted.
When you supply us with your laser/credit card information in the context of an online transaction for services supplied to you, this information is not retained on this site. Rather, it is securely transferred to Realex, a secure online payments provider. All CRO retains is your email address.