Grid-Ireland Certification Authority Privacy Statement

This is a statement of the practices of the Grid-Ireland Certification Authority (“The CA”) in connection with the capture of personal data by the CA and the steps taken by the CA to respect your privacy.

The CA’s policy regarding data protection may be viewed at http://grid.ie/ca/policies/.

The CA fully respects your right to privacy and actively seeks to preserve the privacy rights of those who share information with the CA. The CA will not collect any personal information about you on this website without your permission, except as may be required or permitted by law. Any personal information which you volunteer to the CA will be treated with the highest standards of security and confidentiality, in accordance with the Data Protection Acts, 1988 and 2003.

Collection and use of personal information

The service offered by the CA is to verify the identity of persons and computer hosts/services and to certify the connection between an identity and a cryptographic key, which can then be used for authentication.

Information which you provide to the CA is used by the CA only in accordance with the purpose for which you provided the information and will only be retained for as long as required for the purpose.

In order to request a certificate you will need to provide photographic identification which is considered sensitive personal data. The CA will retain a copy of the identity document indefinitely for the sole purpose of ensuring that your identity is never issued to a different person.

The personal information you may provide for verification and inclusion in a certificate (your name, email address, organisation) will become available to third parties. The CA will publish your public certificate to a list that is available to other certificate holders. In addition, when you use your certificate to identify yourself you will reveal this information to the receiving service.

If you have any specific queries about the purpose for which your information is to be used, you should contact the CA before providing the information.

Collection and use of technical information

Information on Internet traffic is collected routinely by the CA’s hosting organization and also at other points along the route in the Internet (e.g. TCD, HEAnet). This technical information is used for statistical or administrative purposes. It is not used to gather identifiable personal information on individual visitors, except in so far as this is permitted by law and may be necessary in order to prevent or detect problems or offences in relation to the operation of the service.

Your Rights

Pursuant to the Data Protection Acts 1988 and 2003, you have certain rights to obtain a copy of the data held about you, for a fee. Any such requests should be made to the CA Manager at the address set out below. For further details on your data privacy rights, please refer to http://www.dataprotection.ie/.