Dingle Heart safe – Privacy Policy

Last updated: January 2026

Dingle Heart safe (“Dingle CFR”, “we”, “our”, “us”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you contact us, visit our website, or engage with our activities.

Dingle Heart safe is a volunteer-run, non-profit organisation operating under the governance of the National Ambulance Service Community First Responder Programme.

1. Who We Are (Data Controller)

Email: info@dingleheartsafe.com
Dingle Heart safe is the Data Controller for personal data collected through our website and our community activities.

2. What Personal Data We Collect

We may collect the following information:

• Through our website contact form: Name, Email address, Phone number, Message or enquiry details
• Through volunteer applications: Contact details, Relevant experience, Training records, Garda vetting information (processed through authorised channels only)
• Through donations: Name (if provided), Email address (if provided), Donation details (processed securely by iDonate; we do not store card details)
• Automatically through our website: IP address, Browser type, Basic analytics data (via Google Analytics)

We do not collect any unnecessary or excessive personal data.

3. How We Use Your Personal Data

We use your information for the following purposes:

• Responding to your enquiry
• Managing volunteer applications and communication
• Organising training, meetings, and community events
• Maintaining accurate governance and compliance records
• Processing donations and issuing acknowledgements
• Improving our website and public communications
• Ensuring the safety and effectiveness of our operations

We do not use your data for marketing.

4. Lawful Basis for Processing

Under GDPR, we rely on the following lawful bases: Legitimate Interest, Consent, Legal Obligation, and Contract.

5. How Long We Keep Your Data

We retain personal data only for as long as necessary: General enquiries (up to 6 months), Volunteer applications (up to 6 months), Active volunteer records (retained for the duration of membership), Garda vetting records (as required by law), Donation records (6–7 years for financial compliance), Website analytics (typically 12 months). After these periods, data is securely deleted.

6. How We Share Your Data

We may share your data with: The National Ambulance Service, iDonate, Garda Vetting Bureau, and IT or website service providers who support our operations. We never sell or trade your personal data. All third-party processors are required to comply with GDPR.

7. Security of Your Data

We take appropriate technical and organisational measures to protect your data, including: Secure website (HTTPS), restricted access to inboxes and volunteer systems, encrypted storage where appropriate, and regular review of data handling practices. Only authorised committee members or designated officers have access to personal data.

8. Your GDPR Rights

You have the right to: Access your personal data, Correct inaccurate information, Request deletion (“right to be forgotten”), Object to processing, Withdraw consent (where consent is used), Request a copy of your data in a portable format.

To exercise any of these rights, contact: info@dingleheartsafe.com