Copsey Murray Chartered Accountants, Charter House, 5 Pembroke Row, Dublin 2, D02 FW61 (‘Copsey Murray’, ‘we’, ‘us’ ‘our’) is a firm of Chartered Accountants and Statutory Auditors providing a wide range of consultancy and compliance services to individuals and businesses.
We are a team of experienced professionals that pride ourselves on our reputation and on working closely with our clients to help them achieve their aspirations. We keep abreast of ongoing changes in legislation and the regulatory environment and communicate these matters to our clients while providing timely and cost effective solutions to matters relevant to them. We share our experiences across the firm and our client base to bring our expertise to you and/or your business.
Copsey Murray is committed to protecting your privacy. Personal data is information that identifies you as an individual or from which you are identifiable (“Personal Data”). This statement/notice should inform users of our website about the privacy and security of Personal Data collected by us and is intended to meet our obligations under the Data Protection Acts 1988 and 2018 and the European Union General Data Protection Regulation 2016/679 (‘GDPR’) (together the “Data Protection Law”).
This privacy statement relates primarily to your use of the CopseyMurray.ie web site (‘the Web Site’) and any and all Personal Data collected by us in relation to such use by you. It also applies to prospective clients of Copsey Murray who may have heard of us, or that we contacted, and are visiting the Web Site to learn more about us.
Please read this Privacy Notice carefully and ensure that you understand it. If you do not accept and agree with this Privacy Notice, you should immediately desist from using our Web Site.
How we collect information
When you complete the contact form, you provide data including your name, email address, phone number and any other Personal Data that you volunteer in the message section. We also receive CVs and enquiries from potential employees who request returned contact.
If you submit a completed contact form, CV, or make enquiries, then we may call you back to learn more about you and/or your business.
We also communicate with clients/suppliers/ and prospective clients by e-mail, telephone, in person, virtually online, or by post. Clients or prospective clients may reach out to us directly by phone, post, e-mail or online through the Web Site. Contact details are recorded in a register, or through e-mails submitted via the website, or provided directly to members of our firm.
We gather data subjects’ information and identities from the performance of client/supplier contracts and from our own knowledge or searches we have carried out. We may receive personal data about the clients/customers of our clients while performing our auditing services. We may also receive personal data about individuals related to clients or prospective clients (their spouses, dependants, close family members). This may include names, addresses, and marital status.
We also receive contact details about individuals from members of the international accounting network MGI Worldwide regarding individuals that may have need of our services. We will collect information directly from the client from initial engagement, in performing the contracted work, and invoicing the client.
The Personal Data we collect includes names, addresses, phone numbers, PPS numbers, gender, marital status and date of marriage, dates of birth, passport number, drivers licence number, e-mail addresses, bank account details, date of marriage, and occupation.
How we use your information
We use the information to:
- To write to, e-mail or phone data subjects (potential clients) about the services we provide and to provide a quote
- To market to potential and current clients about the services we provide
- To perform a contract and manage a relationship with a client
- To perform a contract, manage a relationship, and avail of a service from a supplier
- for other related purposes including updating and enhancing client records, analysis for management purposes and statutory returns, crime prevention and legal and regulatory compliance.
Legal Basis for Processing
If you do not provide us with your Personal Data for the purposes described above, we cannot provide these services. We will use your Personal Data for the purpose of:
- Performing a contract to the extent required to lawfully deliver that service.
- Understanding how our users use our services.
- Collecting, using and processing your Personal Data as necessary to fulfil our terms of service.
- Conducting our business in a responsible and prudent manner.
- As necessary, complying with our legal obligations.
- Our legitimate interests, including providing, improving and developing our website and services.
- Carrying out research and user satisfaction surveys.
- Defending legal claims.
Unless those interests are overwritten by your interests or fundamental rights and freedoms that require protection of Personal Data.
The legal bases on which we process your personal data are:
- your explicit consent to use data provided by you to carry out contracted work
- to comply with our legal and regulatory obligations (e.g. anti-money laundering)
- to take steps at your request prior to entering into a contract with you or to perform a contract with you;
- our legitimate interests in conducting our business in a responsible and commercially prudent manner, including to develop and market our business and to understand how our clients and prospective clients use our services.
Retention and storage
We will only hold your Personal Data for as long as is necessary including for the purposes described in this Privacy Notice, as well as to comply with our legal obligations. Your information will be stored securely within the EEA.
We have in place and maintain adequate physical, procedural and electronic safeguards to preserve the integrity and confidentiality of the data stored by us. We also take reasonable steps to ensure that safeguards of an adequate standard are put in place by any third party engaged by us to store Personal Data. We engage the services of the data centre to keep the servers physically safe, and IT providers to ensure we employ technological systems that keep the Personal Data we hold safe and secure through the use of firewalls, encryption, anti-virus software, and access controls.
Sharing with third parties
In the performance of our contracted work, it is sometimes necessary to make filings that contain client related personal data with the Revenue Commissioners and the Companies Registration Office, and in respect of our clients with business interests in the United Kingdom, the Companies House, and HMRC. We may also share this information with our bankers where you request that we transfer to you funds held by us by means of electronic transfer. It is also necessary to allow third party licence owners who provide support services for the software we use such as SURF (practice management), SAGE (payroll service)), or our IT providers, access to files, notes, and records held in those applications, and on our network system, that may contain the personal data of individuals. We use all reasonable care and attention to ensure such arrangements with the third parties are managed confidentiality, data processing agreements, and covered by non-disclosure agreements where appropriate, to ensure you continue to receive our services in a safe and secure manner, and in accordance with this Privacy Notice.
Your rights relating to personal data
You have the following rights under the GDPR, in certain circumstances and subject to certain exemptions, in relation to your personal data:
- right to access the data – you have the right to request a copy of the Personal Data that we hold about you, together with other information about our processing of that Personal Data.
- right to rectification- you have the right to request that any inaccurate data that is held about you is corrected, or if we have incomplete information, you may request that we update the information such that it is complete.
- right to erasure – you have the right to request us to delete Personal Data that we hold about you.
- right to restriction of processing or to object to processing – you have the right to request that we no longer process your Personal Data, or to object to our processing of your Personal Data for particular purposes.
- right to data portability – you have the right to request us to provide you, or a third party, with a copy of your personal data in a structured, commonly used machine-readable format.
In order to exercise any of the rights set out above, please contact us at the contact details provided below.
How we make changes to this policy
This Privacy Notice is reviewed from time to time and may be updated to reflect changes in the law or the services we offer. If we do, we will post any changes on this page and, if necessary pursuant to Data Protection Law, we will obtain your prior consent to applying such changes. Should you continue to use the Web Site or our services after the aforementioned changes come into effect, you will be deemed to have agreed to the updated policy. We encourage you to periodically review this Privacy Notice to stay informed about how we collect, use, and disclose Personal Data.
Automated decision-making and profiling
We do not use any personal data for the purpose of automated decision-making or profiling.
If you are unhappy with how we process Personal Data, we ask you to contact us so that we can rectify the situation.
You can e-mail us at firstname.lastname@example.org or write to us at
5 Pembroke Row,
You may also lodge a complaint with the Irish supervisory authority, the Data Protection Commission, at email@example.com.