This Privacy Policy describes our policies and procedures on the collection, use and disclosure of your information when you use our services and tell you about your privacy rights and how the law protects you.

The Irish Refugee Council believes in establishing a clear, transparent, and accountable approach to our data protection to ensure that all those who support and engage with us can do so safe in the knowledge that we will apply the same values to our data protection as we do to all our work and will handle their personal data in a secure, transparent and responsible manner with full respect for their privacy, in line with all relevant legal obligations.

We use your personal data to provide and improve our site. We respect the rights of users of our Site and we are committed to protecting your privacy in accordance with Data Protection legislation at all times. We will not collect any personal information (also referred in the following policy as personal data) about you on this website without your permission or otherwise in accordance with Data Protection legislation.

  • Definitions

For the purpose of this Privacy Policy, the following key terms are provided here for ease of use. For a complete list of definitions, refer directly to the Data Protection legislation applicable, GDPR:

EUR-Lex - 32016R0679 - EN - EUR-Lex (

Personal Data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Controller means the natural or legal person, public authority, agency, or another body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Data subject any living individual who is the subject of Personal Data held by an organisation.

Processing means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Processor means a natural or legal person, public authority, agency, or other body which processes Personal Data on behalf of the controller.

  • Collecting Personal Data

The personal data we collect on our website may include email address, first name and last name, phone number, address and usage data. Depending on the appeals we run, we may gather statistical and other analytical information collected on an aggregate basis of all visitors to our website. This Non-Personal Data comprises information that cannot be used to identify or contact data subjects, such as demographic information regarding, for example, user IP addresses (where they have been clipped or anonymised), browser types and other anonymous statistical data involving the use of our website.

  • Processing Personal Data

Processing personal data from our website is necessary and in our legitimate interests to ensure the effective management of our core activities. After receiving your due authorization, we may use Personal Data for the following purposes: to provide and maintain our website, to manage and respond to any requests you have made to us, to help you identify you when you contact us, to raise funds from the public in order to achieve purpose of charity and to comply with legal and statutory obligations if required by any law enforcement agency, court, regulator, government authority or other third party.

  • Retention of Personal Data

Personal data from our website is stored securely in electronic form on our IT systems. We will retain personal data for a period of two years subject to Legal requirements. When personal data is no longer required to be retained, it will be deleted in a secure manner in accordance with our technical and organisational procedures and in line with the legal requirements.

  • Disclosure of Personal Data

We will only use your Personal Data when we have a lawful purpose to do so. Personal data will never be disclosed, shared or sold to a third party unless one of the following conditions applies:

As required by law, any applicable regulation to protect the rights, property, or safety of ourselves or others.

When we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

  • Deleting Personal Data

If you wish your personal data to be deleted from our system, please contact Nick at [email protected]. We are committing to delete your personal data whenever you ask.

  • Changes to this Privacy Policy

Following internal review or addition to the legal framework, we may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

  • Contact Us

If you have any questions about this Privacy Policy or about how your data is used, you can contact us by email: [email protected]