MCS INTEGRATED SOLUTIONS
Current version published: 07 May 2020
Data protection is of a high priority for the management and staff of MCS Integrated Solutions. The processing of personal data in the company shall be in line with the General Data Protection Regulation (GDPR), and the Irish Data Protection Act 2018. Please contact us using the details provided at the end of this document to discuss any concerns you may have about privacy or data protection.
Definitions from GDPR Article 4
Please note that some definitions are abbreviated. For full definitions, the reader should refer to GDPR Article 4 in the link to the GDPR text in the Resources section of this policy.
a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, etc.
b) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage.
- d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person.
g) Controller or controller responsible for the processing
The Controller is natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
- h) Processor
A data processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.
j) Third party
Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Name and Address of the data Controller
MCS Integrated Solutions (“MCS”)
Waverley Office Park, Old Naas Road, Dublin 12, Ireland.
Legal basis for processing personal data in MCS
The primary legal basis for the processing of personal data is legitimate interests of MCS to conduct its business as an IT service provider, GDPR Art 6(1) f.
In some cases, the performance of a contract to which the data subject is party, GDPR Art 6(1)b is the legal basis.
For the fulfillment of tax obligations, the processing is based on Art. 6(1)c GDPR.
Processing may be necessary to protect the vital interests of the data subject or of another natural person, say where vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6(1)d GDPR. Health data is considered special category data under GDPR Article 9 and MCS processes health data as per GDPR Articles 9 (b, c&d).
Ways in which MCS collects personal data
Automatic collection of personal data by the website
Personal data is collected and stored exclusively for internal use and for the sole purpose of MCS Integrated Solutions.
By registering on the website, the IP address, which is assigned by the Internet service provider (ISP) and used by the data subject, plus date, and time of the registration are stored. The storage of this data takes place to prevent the misuse of our services.
This data is not passed on to third parties unless there is a statutory obligation to pass on the data, or if the transfer serves the aim of criminal prosecution.
Enquiries, downloads and requests for IT support
Personal data entered by the data subject on the contact forms on the website is automatically stored for relevant processing or contacting the data subject about the specified issue in question. The data subject may:
- Receive a call-back from an MCS employee about their enquiry/request
- Receive a copy of the MCS brochure in their in-box
There is no transfer of this personal data to third parties.
Any emails sent to the company are forwarded to the relevant section or individual employee. The sender’s email address will remain visible only to staff tasked with dealing with the query or project.
MCS does not collect Calling Landline Identification (CLI) or any other information on the origins of a call. We do not record phone conversations.
Only cookies necessary for the efficient functioning of the website are collected.
Storage of personal data
MCS Integrated Solutions shall process and store the personal data of the data subject only for the period necessary to fulfil the needs of the project or service requested by the customer and to meet national legislation requirements. After that time, personal data is shredded and erased from electronic storage.
Rights of the data subject
Reasonable data subject requests for information and access to personal data shall be responded to by MCS free of charge.
If a data subject wishes to avail of their rights, he or she may, at any time, contact us at firstname.lastname@example.org. A data subject wishing to make a complaint to the Data Protection Commissioner concerning processing of personal data by MCS, may do so by following the link on www.dataprotection.ie
a) Right of access
Each data subject shall have the right to obtain confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the information specified in GDPR.
b) Right of rectification
The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.
c) Right to erasure (right to be forgotten)
Each data subject shall have the right to the erasure of personal data concerning him or her without undue delay, and the company shall have the obligation to erase personal data without undue delay, where a ground for erasure applies per GDPR Article 17(1) a-f.
d) Right to restriction of processing
Each data subject shall have the right to obtain from the controller restriction of processing where one of the grounds for the right to restriction of processing of personal data applies.
e) Right to data portability
Each data subject shall have the right to receive the personal data concerning him or her, which was provided to MCS Integrated Solutions, in a structured, commonly used and machine-readable format. He or she shall have the right to transmit that data to another controller without hindrance from MCS, where technically feasible and when doing so does not adversely affect the rights and freedoms of others, as long as the processing is based on consent or the performance of a contract per GDPR Article 6.
- f) Right to object
Each data subject shall have the right to object, on grounds relating to his or her situation, at any time, to processing of personal data concerning him or her, which is based on point (e) or (f) of Article 6(1) of the GDPR.
g) Automated individual decision-making, including profiling
Each data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her, or similarly significantly affects him or her, as long as the conditions to exercise this right are present, per the GDPR.
How to contact us
You can email us at:
email@example.com (email address of Internal Data Protection Officer)
You can send a letter to our postal address at:
MCS Integrated Solutions
Waverley Office Park, Old Naas Road
Dublin 12, Ireland.
You can call us at: 00353-14507846
The full text of the GDPR can be found here: https://gdpr-info.eu/
The Irish Data protection Act can be found here: http://www.irishstatutebook.ie/eli/2018/act/7/enacted/en/html