Introduction
FCC Chartered Accountants (“FCC”, “we,” “us,” and “our”) are committed to maintaining robust privacy protections for its clients in accordance with the General Data Protection Regulation (GDPR). Our Privacy Policy (“Privacy Policy”) is designed to help you understand how we collect, use and safeguard the information you provide to us and to assist you in making informed decisions when using our Service.
Who we are?
FCC are a professional services firm specialising in audit, accountancy, taxation, company secretarial and corporate finance.
We are registered to carry on audit work and authorised to carry on investment business by the Institute of Chartered Accountants in Ireland. We are supervised by the Irish Auditing and Accounting Supervisory Authority (IAASA) and by Chartered Accountants Regulatory Board (CARB).
What information do we collect?
- When you contact us (including by email, post, phone or through our social media platforms) we will collect:
- Personal data, such as your name, email address and phone number (you provide when you contact with us).
- When you meet us for a consultation, we may collect: Name, DOB, civil status, PPS no. children/dependant names and their DOB, address, phone number, mobile, email address, your solicitor’s details, financial details and Photo id and proof of address; and bank details including account holders name, IBAN and BIC.
- Personal data you provide about other individuals:
We use personal data about other individuals provided by you for the purpose of providing our services to you. By providing other people’s personal data, you must be sure that they agree to this and you can provide it. You should also ensure that, where appropriate, they understand how their personal data will be used by us. - CCTV
We operate CCTV in our offices and in the stairwell entering our office. Recording is for security, health, and safety reasons only and data is recorded over after 180 days. The recording data would only be used where security has been compromised, or we receive an insurance claim and photographic evidence will be of use. This photographic evidence will only be reviewed by our employees and will only be shared under a formal request with the security services i.e. Garda.
Our legal basis for processing your personal data.
We will collect, hold, use and disclose your information for the following purposes:
Contract: administering services, to provide you with our professional services.
Legitimate interest: We may use your personal information to manage our everyday business needs including accounting, internal reporting needs, market research, to progress and respond to professional queries, in our legitimate interest. Our legitimate interest is the effective management of our business.
We may use your personal information to invite you to events that we feel may interest you in our legitimate interest. Where we process your information for our legitimate interests, we ensure a fair balance between our legitimate interest and your fundamental rights and freedoms.
Legal obligation: to comply with our legal obligations, such as:
- Providing information to An Garda Siochana, the Revenue Commissioners and other enforcement agencies under legislation which applies to us.
- To verify your personal information provided to us and to meet our professional and compliance obligations, including detecting and preventing money laundering, tax avoidance and financing of terrorism.
Consent: We will, in certain circumstances, rely on your explicit consent to process your personal data. This consent can be withdrawn at any time by using the contact details of the Privacy Officer set out below.
In some circumstances we will need to process special categories of personal data, for example health data for medical reasons, we will only do so if more than one of the additional conditions apply. For example, we have your explicit consent; to protect the vital interests of you or another individual and you are physically or legally incapable of giving consent; it is necessary to establish, exercise or defend legal claims; it is necessary for reasons of substantial public interest.
When do we share personal data?
While we are committed to treat all personal data confidentially, in some circumstances we will need to share it with other third parties:
- To provide services requested by you we will need to share your personal data with third parties. We only share the minimum personal data that enable third parties to provide their services to you and us. We are committed to working with third party processors who are GDPR compliant. Their use of your information is subject to their privacy policy.
- We also work with carefully selected suppliers that carry out certain functions on our behalf. For example, companies that help us with IT services, storing data, and processing payments.
- We will need to share personal data with other third parties (such as legal, or other advisors, regulatory authorities, courts and government agencies), to defend or protect our legal rights, or where such disclosure is permitted by law, such as for the purpose of preventing fraud.
- When we share personal data with other businesses, we require them to keep it safe, and use it only for the lawful basis on which it was shared and according to the data processing agreement. They must not sell or use your personal data for their own marketing purposes.
Where do we store and process personal data?
We store your personal details on our secure network, client management system and in hard copy format and we take measures to ensure that these files are always in a secure location.
How long is your data retained for?
We will retain your personal data for only as long as it is necessary for the uses set out in this Privacy Policy and/or to meet legal and regulatory requirements. We are required by law to retain customer files for a period of 6 years. After the relevant retention period, we will securely erase personal data.
How do we secure your personal data?
The protection of your personal data is particularly important to us. We take appropriate organisational and technical measures to protect your data from loss or other forms of unlawful processing. All employees have been trained and are kept up to date on our security and privacy practices.
While no method of transmitting data over the Internet is 100% secure, we take every reasonable precaution to protect all information collected, such as:
- only sharing and providing access to your information to the minimum extent necessary.
- using secure servers to store your information; and
- using Secure Sockets Layer (SSL), Transport Layer Security (TLS), L2TP and VPN software to encrypt your personal and payment transactions.
Your rights regarding your personal data
- The right to be advised of how we will use your personal information. This is set out in this Privacy Policy and we do our best to provide you with as much information as we can at the point at which you give us your data.
- The right to ask us to correct any information you believe is incorrect.
- The right to receive a copy of the personal data we hold about you or to request that we transfer this to another service provider.
- In certain circumstances, the right to ask us to stop using information about you.
- The right to lodge a complaint to the Data Protection Commissioner’s Office.
- The right to ask us to limit or cease processing or erase information we hold about you in certain circumstances.
- The right to withdraw consent that you have provided to us to use your personal information.
You can exercise these rights over your data by emailing us at info@fccaccountants.ie or by sending your access request by post to FCC Chartered Accountants, 3rd Floor, Lismoyle House, Merchants Road, Galway H91 V80H.
We will comply with your requests unless we have a lawful reason not to do so. We will need you to provide additional details to confirm your identity to process your request.
Children’s Privacy
We do not intentionally offer services to children. Please be aware that we have not designed our website for, and do not intend for it to be used by, anyone under age 16.
Our website
We own and operate our website where you can review our services offered, our articles, sign up to receive our newsletter or send us an enquiry. Our website uses “cookie” technology. A cookie is a small piece of data or a small text file stored by the browser on your computer, at the request of our server. We will use cookies to deliver content specific to your interests – our cookies are not available to other websites. For more information, please see our Cookie Policy.
Links to other websites
Our website contains links to other websites such as a Facebook, LinkedIn, and Twitter. This Privacy Policy only applies to the how we process personal data and our website, when you link to other websites you should read their own privacy policies. We do not control websites which we do not operate and are not responsible for their contents or use of them. Inclusion of these links to such websites does not imply any endorsement of the material on such websites.
Changes to this Policy
We will update this Privacy Policy in the future, and we reserve the right to amend this Privacy Policy at any time. Updated versions will be posted on this website and are effective immediately on posting. Please check frequently, especially before you use this website, to see if this policy has change.