Privacy Policy for Shankill & Ballybrack Community First Responders


The event organiser, Shankill & Ballybrack Community First Responders, has the legal responsibility to tell ticket buyers and event attendees how their personal information will be collected and used. You can find their Privacy Policy below or contact them to request it.

1. Introduction

Effective Date: September 4, 2025 Version: 1.0

This policy affects your legal rights and obligations under the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (Ireland). If you have any questions, please contact info@shankillcfr.ie.

2. Personal Data We Collect

We collect, process, store, and use personal data in a variety of circumstances, e.g.,

  • When you book a ticket to attend a public training course. We may also collect personal data about other people if you register them to attend an event. By providing their data, you confirm that you have informed them of this privacy notice and, where necessary, obtained their consent for us to lawfully process their personal data in accordance with this policy.
  • Complete a contact form on our website to make an enquiry or a donation on our website.
  • Complete a paper-based contact at a public event to make an enquiry about or express an interest in our group.
  • When you contact us by email or post, we may keep a record of the correspondence.

This information may include your name, address, telephone number and email address. You should take care to ensure all personal data provided must be true, complete, and accurate. For the avoidance of doubt, Shankill & Ballybrack Community First Responders is the data controller for all information it collects.

3. Legal Basis for Processing Your Personal Data

We will only use your personal data where we have a lawful, reasonable basis to do so under GDPR. The legal bases we rely on are:

  • To fulfil an undertaking with you: for example, where you have made online booking for a place on one of our public training courses. This includes contacting you with information relating to the training event or to send a reminder in advance of the event.
  • For legitimate interests: We use your data to deal with inquiries, and for internal regulatory and audit purposes.
  • For PR communications (with your consent): We will only send you PR communications, such as newsletters and information about new events, if you have given us clear, explicit consent to do so. You have the right to withdraw your consent at any time by contacting us at info@shankillcfr.ie or by clicking the "unsubscribe" link in any marketing email.


4. Who We Share Your Data With

We may share your personal data with service providers, sub-contractors, and agents who perform functions on our behalf and in accordance with our instructions, such as:

  • Online event ticketing service providers.
  • Accountants, auditors, and lawyers.

Under certain circumstances, we may have to disclose your personal data under applicable laws or regulations.

5. Where We Hold and Process Your Personal Data

All of your digital personal data will be stored within either Ireland or European Union (the EU) in accordance with EU and local GDPR regulations and law, e.g., Google, Dropbox. We shall only use IT service providers that can assure adequate safeguards in respect of your personal data, as required by GDPR. All paper records pertaining to your personal data will be stored at the Charity’s registered address in a lockable filing cabinet

6. Your Data Subject Rights

You have the following rights under GDPR in relation to your personal data:

  • Right to be informed: You have the right to be provided with clear, transparent, and easily understandable information about how we use your personal data and your rights.
  • Right of access: You have the right to obtain a copy of the personal data we hold about you. This is known as a Subject Access Request (SAR).
  • Right to rectification: You have the right to have your personal data corrected if it is inaccurate or incomplete.
  • Right to erasure (the "right to be forgotten"): You have the right to request that we delete your personal data.
  • Right to restrict processing: You have the right to block or suppress the processing of your personal data in certain circumstances.
  • Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to have it transmitted to another data controller without hindrance.
  • Right to object to processing: You have the right to object to the processing of your personal data where we are relying on a legitimate interest or for direct marketing purposes.
  • Rights related to automated decision-making and profiling: You have the right to not be subject to a decision based solely on automated processing.

To exercise any of these rights, please contact us at info@shankillcfr.ie. We may charge a reasonable administrative fee for requests that are manifestly unfounded, excessive, or repetitive.

If you have any complaints in relation to this policy or our processing of your personal data, you should in the first instance please contact us at info@shankillcfr.ie. If you remain dissatisfied, you contact the Irish supervisory authority, the Data Protection Commission (DPC). Their website is www.dataprotection.ie.

7. Retention

We will retain your personal data only for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • If you register with us, have booked a ticket for an event or contacted us with an enquiry, we will retain your personal data for a period of two (2) years after the last recorded engagement.
  • If you receive marketing communications from us, we will retain your personal data for this purpose until you opt out.

8. Security

We will process your personal data in a manner that ensures appropriate security, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage. We use appropriate technical or organisational measures, and all information you provide to us on paper-records is stored securely.

While we take these steps to secure your personal data, you acknowledge that no system can be completely secure.

9. General

This policy shall be governed by and construed in accordance with the law of Ireland, and you agree to submit to the exclusive jurisdiction of the Irish Courts. We may change the terms of this policy from time to time. You are responsible for regularly reviewing this policy so that you are aware of any changes. Your continued use of our event ticket shop after changes take effect will indicate that you have accepted the changes.

10. Policy Review

This policy shall be subject to a periodic no longer than 2 years following the recorded approval date, or before of compelling circumstances warrant it (e.g., change to local or EU law).