Page 51 - ORC Employee Handbook Jan19
P. 51

provide information for the purpose of safeguarding national security. In either case we do so in
               accordance with the General Data Protection Regulation (2016).

               We also provide information when required to do so by law, for example under a court order, or in a
               response to properly made demand under powers contained in legalisation.

               Personal data related to your conditions of employment with the company may also be shared with
               training bodies such as SOLAS, Education and Training Boards (ETB’s), etc.

               If there is any change in the ownership of the Company or any of its assets, we may disclose personal
               information  to  the  new  (or  prospective)  owner.  If  we  do  so,  we  will  require  them  to  keep  it
               confidential.

               3.17.6 How does the Company protect data about me if it is transferred out of Europe?
               Countries in the European Economic Area (EEA) are required to have a similar standard of protection
               of personal data. This is not always the case outside that area. If we are required to transfer data
               outside the EEA, before doing so we will take the necessary steps to ensure that there is adequate
               protection, as required by the GDPR.

               3.17.7 How can I find out what personal information the Company holds about me and
               change it if inaccurate?
               If you want to know what personal information the Company holds about you, you can obtain it by
               making your specific request in writing to a Company Director.

               We will confirm your request within 72 hours of receipt and process your request within one-month
               of receipt. If the information we hold about you is inaccurate, please let us know and we will make
               the necessary amendments and confirm that these have been made.


               3.18 ELECTRONIC COMMUNICATIONS POLICY
               The Company is committed to the correct and proper use of its electronic communications, email, and
               internet services.

               The inappropriate use of electronic communications, email or internet could expose the organisation
               to risks ranging from virus attacks, theft and disclosure of information, disruption of network systems
               and services, litigation and reputational damage to the Company. The purpose of this policy is to
               define  acceptable  use  of  the  Company’s  electronic  communications,  email,  internet  and  intranet
               services.

               This policy is mandatory and by using any of the Company’s electronic communications, email or
               internet, employees are agreeing to abide by the terms of this policy.

               This policy applies to:
                   •  All  electronic  communications,  email,  internet  and  intranet  services  provided  by  the
                       Company;
                   •  All Information Technology (I.T.) resources provided by the Company;
                   •  All  user  (employees,  students,  contractors,  sub-contractors  and  authorised  third-party
                       commercial  service  providers)  of  the  Company’s  electronic  communications,  email  and
                       internet facilities;


                                                      Page 50 of 70
   46   47   48   49   50   51   52   53   54   55   56