GDPR Policy

At INAR,  privacy and data protection rights are very important to us. We will not collect any personal information about you on this website without your clear permission. Any personal information which you volunteer to INAR will be treated with the highest standards of security and confidentiality.

The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union.  Because INAR is a company registered in the EU, the full protection of the GDPR applies to all users of whether or not they are EU citizens or present in the EU at the time of making a report.

What is GDPR about?
The General Data Protection Regulation is an update to existing Data Privacy laws, and aims to harmonise and strengthen the Data Privacy rights of EU citizens in how their data is controlled and processed.  GDPR came into force on May 25th 2018. It sets out regulations for the security and privacy controls required when handling Personally Identifiable Data (PII).  

INAR is committed to Data Protection and only collects and retains data about individuals or organisations collected through, with users consent, and for the purposes of publishing anonymised reports on hate crime, racist discrimination and racist incidents, or where a user has indicated, for the purpose of contacting the user to follow up on a racist incident for advocacy purposes or to seek consent to contact them on behalf of media or journalists. 

Why does INAR need your personal information?
INAR collects personal information solely for the purpose of providing the above named services we offer. At each point of collection, we will endeavour to provide full transparency as to the purpose, retention, transfer and use of such data. GDPR requires data processing to be lawful, fair and transparent.  

Does INAR do anything else with your data?
We do not share your personal information with third parties unless you have consented when we contact you to follow up as indicated in the iReport questionnaire.  Personal data from the system relating to you may only be seen by the INAR director and by INAR’s named data processors. In those instances, we currently have contractual agreements in place that ensure the data processor upholds its GDPR obligations with regard to data security and privacy.  

How long do we keep your data?
GDPR requires us to minimise the data we keep unless it’s required for the provision of a service or for existing legal requirements so we keep your data only for as long as it’s needed for the original purpose we collected it. If it is not needed, we get rid of it!