Register for Online Banking
As a member you can enjoy free Online Banking with MFCU.
Become a Member
You can join us online through our all new digital membership application. Verify your ID and upload your documents remotely.
The purpose of this privacy notice is to explain how Member First Credit Union (the “Credit Union”, “we”, “us” and “our”) may process your personal information.
We are committed to protecting your privacy. This Data Privacy Statement sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us and details how we collect, use, disclose, transfer and store your personal information.
We reserve the right to amend this Data Privacy Statement from time to time without prior notice. You are advised to check our website www.mfcu.ie or our in branch noticeboards regularly for any amendments. Such amendments will not be made retrospectively.
We will always comply with the General Data Protection Regulation (“GDPR”) when dealing with your personal data. Further details on the GDPR can be found at the Office of the Data Protection Commissioner’s dedicated GDPR website; gdprandyou.ie.
For the purposes of the GDPR, we will be the “controller” of all personal data which we hold about you. You can find our contact details at the end of this privacy statement.
If you are providing personal information on behalf of a third party, you must ensure that the third party receives a copy of this privacy notice before their personal information is shared with us.
We gather and process your personal information for a variety of reasons and rely on a number of different legal bases to use that information, for example, we use your personal information to process your membership application, to help administer your products and services, to ensure we provide you with the best service possible, to prevent unauthorised access to your account and to meet our legal and regulatory obligations.
We are required to process your personal information to comply with certain legal obligations, for example:
In order to consider your application for membership of the Credit Union and to process any product/service applications which you may make, we have to gather some personal information.
In order to administer and manage any account you have with the Credit Union, we have to process your personal information. Examples of processing include the administration of accounts, payments, deposits, lending, credit decisions. As part of this process, we may be required to pass some personal information to an intermediary or counterparty.
In certain circumstances, we process your personal information on the basis of the legitimate interests of the Credit Union. In doing so, we ensure that the impact of the processing on your privacy is minimised and that there is a fair balance between the legitimate interests of the Credit Union and your privacy rights. If you disagree with your information being processed in this manner, you are entitled to exercise your right to object.
Examples of situations in which your personal information is processed based on our legitimate interests, include:
We use your personal information to make you aware of products and services which may be of interest to you where you have consented to us doing so and in accordance with your preferences. You can at any time withdraw that consent using the contact details below.
In the event that you apply for a loan, we may collect and process information on your health. You will be asked for your consent to process this type of personal information.
The information we hold about you can vary depending on the products and services you use. This includes personal information which you give to us when you are applying for membership or applying for a product or service, personal information we collect automatically, for instance, your IP address and the date and time you accessed our services when you visit our website or app, and personal information we receive from other sources like credit referencing agencies. The personal information we collect about you may include:
We collect personal information from a number of sources, including:
We may obtain information about your general Internet usage by using a cookie file which is stored on your browser or the hard drive of your computer. Cookies are small pieces of information, stored in simple text files, placed on your computer by a website. Cookies can be read by the website on your subsequent visits so that you can access information in a faster and more efficient way. Cookies do not in any way compromise the security of your computer. The information stored in a cookie may relate to your browsing habits on the web page, or a unique identification number so that the website can “remember” you on your return visit. Generally speaking, cookies do not contain personal data from which you can be identified, unless you have separately furnished such information to the website. Some of the cookies we use are essential for the website to operate. For more information on how to manage cookies, including how to disable cookies please visit: www.aboutcookies.org
When you access your accounts online using CUAnywhere and CuOnline we will collect information about you and your use of our services. For example, we will be able to identify you as a member, what pages you navigate and your actions while logged in.
We are committed to ensuring that your information is secure with us and with the third parties who act on our behalf. We protect your information with security measures under the laws and regulations that apply, and we meet international standards (ISO27001). We keep our buildings, computers and files secure at all times. When you contact us to ask about your information, we will ask you to identify yourself. This assists us in protecting your information.
From time to time, we would like to make you aware of other products and services that we offer which may be of interest to you. We can do this by using some of the personal information we hold about you. You have a right not to receive such information. You can make changes to your marketing preferences at any time by contacting us at the address below.
We sometimes share your personal information with trusted third parties who perform important functions for us based on our instructions and applying appropriate confidentiality and security measures. For example, we may share your personal information with the following third parties:
(a) our legal and professional advisers such as auditors and external legal counsel;
(b) trade / representative bodies;
(c) any sub-contractors, agents or service providers engaged by the Credit Union (including their employees, directors and officers), such as back up and server hosting providers, IT software and maintenance providers, document storage providers and suppliers of other back office functions;
(d) credit reference, debt recovery or fraud prevention agencies;
(e) payment recipients and other financial institutions.
We may also share your personal information with any third parties to whom you have instructed us to share your information with.
We are required to cooperate by law or otherwise through a legal process with Irish and EU regulatory and enforcement bodies such as the Central Bank of Ireland, an Garda Síochána, the courts, fraud prevention agencies or other bodies. We are also required to report personal and account information to Irish Revenue for interest reporting, CRS and FATCA purposes.
We may disclose personal information relating to our members to any third party in the event of a transfer or merger (or potential transfer or merger) of the Credit Union.
The people and organisations that we may share your personal information with may be located in a country that does not have data protection laws which provide the same level of protection as the laws in Ireland. Some countries already have adequate protection for personal information under their applicable laws. In other countries safeguards will be applied to maintain the same level of protection as the country in which the products and services are supplied. These safeguards may be contractual agreements with the overseas recipient, or it may require the recipient to subscribe to international data protection frameworks. For more information about the European Commission’s decisions on the adequacy of the protection of personal information in countries outside the EEA, please visit: https://ec.europa.eu/info/law/law-topic/data-protection_en
We are unable to enter into or administer the relationship with you without some personal information about you. In cases where providing your personal information is optional, we will make this clear. In particular, it is not mandatory that our members sign up to receive marketing communications.
If any of the personal information you have given to us should change, such as your contact details, please inform us without delay. Similarly, if we have collected personal information about you that you consider to be inaccurate, please inform us accordingly.
How long we hold your data for is subject to legislation and regulatory rules we must follow. We need to keep your personal information for as long as necessary to fulfil the purposes for which it was collected (as described above). Even when you close your account with us, we must retain some of your personal information in order to comply with legal and regulatory requirements and in case of claims. We will also keep some of it in case of queries from you. The criteria we use to determine data retention periods for your personal information includes the following:
If you would like further information about our data retention policy, you can contact us using the details below.
From 25 May 2018 you will have several enhanced rights in relation to how we use your information. These rights are as follows (noting that these rights do not apply in all circumstances):
In addition, you have the right to complain to the Office of the Data Protection Commissioner which has enforcement powers and can investigate compliance with data protection laws.
If you wish to exercise any of these rights, you can contact us using the details below. Your rights may be exercised freely and at no cost.
If you have any questions about this Privacy Statement and how we use your information or you wish to exercise any of your data rights you can contact our Data Protection Officer at firstname.lastname@example.org or by writing to them at: Data Protection Officer, Member First Credit Union, Artane Roundabout, Malahide Road, Dublin 5.
We will make changes to this Data Privacy Statement from time to time, particularly when we change how we use your information, and change our technology or products. An up-to-date version of this notice will be available at www.mfcu.ie/data-protection or on display in any of our branches. You may also request a copy of the most recent version of this Data Privacy Statement by contacting us.
DPO, November 2019.