Postgraduate Applications Centre - Privacy Statement

PAC is an organisation which was founded in 1998 to process applications centrally for admission to taught & research based postgraduate courses in third level institutions in the Republic of Ireland

The purpose of the PAC is to process postgraduate applications for higher education courses centrally and to deal with them in an efficient and fair manner.

The HEIs retain the function of making decisions on admissions.

This statement relates to the privacy practices in connection with the website of the Postgraduate Applications Centre. Links to other websites are clearly identifiable as such. We are not responsible for the content or privacy practices of other websites.

General statement

The Postgraduate Applications Centre respects your right to privacy, and will not collect any personal information about you on this website without your permission. Any personal information which you volunteer will be treated with the highest standards of security and confidentiality, strictly in accordance with the Data Protection Acts, 1988 & 2003 and the EU General Data Protection Regulation (GDPR)

The Postgraduate Applications Centre will make no attempt to identify individual visitors, or to associate the technical details listed above with any individual. It is the policy of the Postgraduate Applications Centre never to disclose such technical information in respect of individual website visitors to any third party unless obliged to disclose such information by a rule of law.

Your rights under GDPR

The European Union’s General Data Protection Regulation (GDPR) protects European Union data subjects' fundamental right to privacy and the protection of personal data. It introduces robust requirements that raise and harmonize standards for data protection, security, and compliance. PAC processes data from subjects both within the EU and outside it. While GDPR may not apply to applicants, who reside outside of this jurisdiction PAC never the less will endeavour to provide the same level of security and compliance regardless of your location. The follow are your rights under GDPR

Who is Collecting the Data?

The Joint Controller for the data provided by you is the Postgraduate Applications Centre (PAC) and any Higher Education Institution (HEI) whose course you wish to apply to. PAC has appointed a Data Protection Officer (DPO). He can be contacted directly via the data protection officer email and/or by post. The DPO will provide you with the contact details of the DPO, where applicable, of a HEI.

Further contact details can found on our contact page

What data is being collected?

Registration on the PAC website and/or applying to a course may require the submission of personal data such as, but not limited to: Name, Addresses, Phone Numbers, Email, PPSN, Date of Birth, Higher Education Student Numbers etc.

Completing an application may require uploading or otherwise sending documents containing personal information such as, but limited to: Birth Certificates, Passports, Profile Photographs, Examination Results etc.

The application process may also require personal information about related third parties such referees.

Collection and use of technical information

This website may use cookies. Visitors can use this website with no loss of functionality if cookies are disabled from the web browser. Technical details in connection with visits to this website may be logged for statistical purposes. The technical details logged are confined to the following items:

  1. The IP address of the visitor’s web server
  2. The top-level domain name used (for example .ie, .com, .org, .net)
  3. The previous website address from which the visitor reached us, including any search terms used
  4. Clickstream data which shows the traffic of visitors around this web site (for example pages accessed and documents downloaded)
  5. The type of web browser used by the website visitor.

PAC also make use of Google Tag Manager to send anonymous usage statistics to HEIs, about the pages that you visit and the actions you perform. This information is used for statistical and marketing purposes but is not personal in nature and does not impinge on your rights under GDPR.

What is the legal basis for processing the data and how will it be used?

Your data will be processed for the purpose of assessing applications to the HEI. Once you are registered on the PAC site then the PAC will retain your information whether or not you apply for a course. Your data will also be accessible to HEIs that you apply to.

Where is data being stored and processed?

The processing of your data will take place in the offices of the PAC, and an Irish data centre where the PAC is a tenant, and any HEI that you apply to.

Will the data be shared with any third parties?

The PAC will transfer your personal data to other organisations. These transfers are normally required for the purpose of making payments through a third party payment provider. The exact nature and purpose of these transfers will be listed on the PAC website.

How long will the data be stored for?

Once registered on the site your data will be normally stored for up to 3 years. This duration is chosen to allow for an applicant to apply for, and complete, a standard length postgraduate course, and subsequently apply for another without the need to re-register on the site which could normally hinder or cause delay to subsequent application processing and management. In the case that you apply to a course then the PAC will keep the data for up to 3 years from the last date of either application, acceptance of offer, or other decision action such as withdrawal or deferral. Please note that these actions may be requested by you or by the HEI on your behalf with your agreement. In the case of an applicant applying to the Professional Master of Education (PME), personal will be kept indefinitely. This is done to allow for scrutiny or legal challenges to an applicants eligibility as per the requirements set down by the teaching council. In the case of technical information such data will also be stored for 3 years.

What rights does the data subject have?

The following are your rights under the regulations

  1. Right of access – you have the right to request a copy of the information that we hold about you in accordance with Section 86 of the Data Protection Act 2018;
  2. Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete in accordance with Section 87 and Section 89 of the Data Protection Act 2018;
  3. Right to erasure – in certain circumstances, you can ask for the data we hold about you to be erased from our records in accordance with Section 87 and Section 89 of the Data Protection Act 2018;
  4. Right to restriction of processing – where certain conditions apply to have a right to restrict the processing in accordance with Section 87 and Section 89 of the Data Protection Act 2018
  5. Right of portability – subject to certain restrictions, you have the right to have the data we hold about you transferred to another organisation where we hold it in electronic form. This right of data portability applies to: (i) personal data that we process automatically (i.e. without any human intervention); (ii) personal data provided by you; and (iii) personal data that we process based on your consent or in order to fulfil a contract.
  6. Right to object – you have the right to object to certain types of processing such as direct marketing.

Exercising your rights, queries and complaints

    If:
  • you would like more information on your rights;
  • you would like to exercise any right;
  • you have any queries relating to PAC’s processing of your personal data;
  • or
  • you wish to complain;

please contact:
The Data Protection Officer
The Postgraduate Applications Centre
1 Courthouse Square, Galway, H91 VF21
Email: dpo@pac.ie
Telephone: +353 091 549 277

Requests can be directed to the PAC contact points listed in this Statement. They will be forwarded on should there be a third party involved in the processing of your personal data. It should be noted that a request for data access, rectification, erasure, restricted processing, portability etc. may be subject to administration processing fee of €2.

Glossary of technical terms used

web browser
The software you use to read web pages. Examples include Microsoft Internet Explorer, Mozilla Firefox, Netscape Navigator, and Opera.

IP address
The identifying details for your computer (or your internet service provider’s computer), expressed in "internet protocol" code (for example 192.1.214.10). Every computer connected to the web has a unique IP address, although the address may not be the same every time a connection is made.

cookies
Small pieces of information, stored in simple text files, placed on your computer by a web site. Cookies can be read by the web site on your subsequent visits. The information stored in a cookie may relate to your browsing habits on the web page, or a unique identification number so that the web site can "remember" you on your return visit. Generally speaking, cookies do not contain personal information from which you can be identified, unless you have furnished such information to the web site.