Skip to main content

Privacy Policy

1.   Introduction

Welcome to 221+ Patient Support Group. This policy explains how we handle and use your personal information and your rights in relation to that information. Under the GDPR of May 2018, the 221+ Group is the controller of that information.

The 221+ Group is committed to protecting and respecting your privacy.

This Privacy Policy explains why and how we will use the personal information that we have obtained from you or others, with whom we share it and the rights you have in connection with the information we use. Please read the following carefully.

This policy describes the way we handle and use the personal information that we obtain from all the different interactions you may have with us as a business, including when you visit our social media pages or website currently located at or when you contact us.

221+ Group is the controller in relation to the processing activities described below. This means that 221+ Group decides why and how your personal information is processed. Please see the section at the end of this policy for our contact and legal information.

This policy was last updated on the date that appears at the top of this page.

2.    Personal Information We Collect About You

We receive personal information about you that you give to us, that we collect from your visits to our Site and social media pages and that we obtain from other sources. We only collect personal information which we need and that is relevant for the purposes for which we intend to use it.


  • Your name, title and contact details (email address, telephone number, postal address);
  • Any information you include in correspondence you send to us or in forms you submit to us when using our Site or social media pages;
  • Your identification information when exercising the rights that you have in relation to our processing of your personal information (see further Your rights in relation to your personal information);

When you visit our Site we automatically collect:

  • Details of your use of our Site namely traffic data, weblogs and statistical data, including where and when you clicked on certain parts of our Site and details of the webpage from which you visited it;
  • The date and time you used our Site;
  • Cookie, pixels and beacon identification information (for more information please see our Cookie Policy).

3.    Use of Your Personal Information

We use your information (personal or otherwise) to provide you with health services and information. We rely on different legal grounds to process your personal information, depending on the purposes of our use and the risks to your privacy. You will only receive emails from us if:

  1. we have obtained your contact details in the course of your registration and you have not objected to receiving such direct email from us.
  2. if you have consented to receiving marketing from us (you can opt-out of receiving them at any time). We do not share your personal information with companies that would send their marketing to you.

We use your personal information in the following ways:

3.1         Where You Have Provided Consent

We may use and process your personal information for the following purposes where you have consented for us to do so:

To contact you via email, online or by post (as you have indicated) with information about 221+ Group.

To contact you if required in connection with your enquiry or to respond to any communications you might send to us.

You may withdraw your consent for us to use your information in any of these ways at any time. Please see the ‘YOUR RIGHTS IN RELATION TO YOUR PERSONAL INFORMATION’ section below for further details.

3.2         Where Necessary for us to Pursue a Legitimate Interest

We may use and process your personal information where it is necessary for us to pursue our legitimate interests as a business for the following purposes:

  • Processing necessary for us to support you with your enquiries;
  • To respond to correspondence, you send to us and fulfil the requests you make to us;
  • To analyse, evaluate and improve our products and services so that your visit and use of our Site, social media pages and stores are more useful and enjoyable (we will generally use data amalgamated from many people so that it does not identify you personally);
  • Processing necessary for us to operate the administrative and technical aspects of our business efficiently and effectively;
  • To verify the accuracy of data that we hold about you and create a better understanding of you as an account holder or visitor;
  • For network and information security in order for us to take steps to protect your information against loss or damage, theft or unauthorised access;
  • To comply with a request from you in connection with the exercise of your rights (for example where you have asked us not to contact you for marketing purposes, we will keep a record of this on our suppression lists in order to be able to comply with your request);
  • For efficiency, accuracy or other improvements of our databases and systems, for example, by combining systems or consolidating records we hold about you;
  • To inform you of updates to our terms and conditions and policies;
  • For other general administration including managing your queries, complaints, or claims, and to send service messages to you.

3.3         Marketing Communications

If we have requested your consent and you give your consent, we may use your personal information to contact you by email, online or by post to keep in touch.

If you do not wish to receive communications from us, please inform us by using the unsubscribe link inside the email, by sending an email to or by changing your preferences on your online account.

Please note that this is section relates to members who subscribe to the 221+ mailing list and receive informative emails and newsletters.

4.   Disclosure of Your Personal Information by us

We only disclose your personal information outside our business in limited circumstances. If we do, we will put in place a contract that requires recipients to protect your personal information, unless we are legally required to share that information. Any contractors or recipients that work for us will be obliged to follow our instructions. We do not sell your personal information to third parties.

We may disclose your information to our third-party service providers, agents and subcontractors (Suppliers) for the purposes of providing services to us or directly to you on our behalf, including the operation and maintenance of our Site.

When we use Suppliers, we only disclose to them any personal information that is necessary for them to provide their services and only where we have a contract in place that requires them to keep your information secure and not to use it other than in accordance with our specific instructions.

5.   Transfers of Your Personal Information Outside of Europe

We do not transfer your personal information outside of Europe. If we do so in the future, we’ll let you know and take measures to protect your personal information.

All information you provide to us is stored on our secure servers which are located within the European Economic Area (EEA).

If at any time we transfer your personal information to, or store it in, countries located outside of the EEA (for example, if our hosting services provider changes) we will amend this policy and notify you of the changes. We will also ensure that appropriate safeguards are in place for that transfer and storage as required by applicable law. This is because some countries outside of the EEA do not have adequate data protection laws equivalent to those in the EEA. If we transfer your personal information to the United States of America, we will only send the personal information to USA entities subject to Standard Contractual  Clauses or where we have an alternative safeguard in place in accordance with applicable law. Where they apply to our data transfer activities, we may rely on adequacy decisions by the European Commission about certain countries for data transfers to countries outside the EEA.

6.   Security and Links to Other Websites

We take the security of your personal information seriously and use a variety of measures based on good industry practice to keep it secure. Nonetheless, transmissions over the internet and to our Site, and our social media pages may not be completely secure, so please exercise caution. When accessing links to other websites, their privacy policies, not ours, will apply to your personal information.

We employ security measures to protect the personal information you provide to us, to prevent access by unauthorised persons and unlawful processing, accidental loss, destruction and damage.

We use secure SSL networking for all personal data transmission to protect your information. To check that you are in a secure area of the Site before sending personal information to us, please look at the bottom right of your website browser and check that it displays an image of a closed padlock or an unbroken key.

The transmission of information via the internet is not completely secure. Although we will do everything possible to protect your personal information, we cannot guarantee the security of any personal information during its transmission to us online. You accept the inherent security implications of using the internet and will not hold us responsible for any breach of security unless we are at fault.

If you are using a computer or terminal in a public location, we recommend that you always log out and close the website browser when you complete an online session for your security. In addition, we recommend that you take the following security measures to enhance your online safety:

  • When creating a password, we recommend use at least 8 characters with a combination of letters and numbers.
  • We recommend you frequently change your password.
  • Keep your passwords private. Remember, anyone who knows your password may access your account.
  • Avoid using the same password for multiple online accounts.
  • We will never ask you to confirm any account or credit card details via email. If you receive an email claiming to be from Organisation.
  • If you receive such an email claiming to be from the Organisation asking you to do so, please ignore it and do not respond and report it to us.

Our Site, and social media pages may contain links to other websites run by other organisations which we do not control. This policy does not apply to those other websites, so we encourage you to read their privacy policies. We specifically disclaim responsibility for their content, privacy practices and terms of use, and we make no endorsements, representations or promises about their accuracy, content or thoroughness. Your disclosure of personal information to third party websites is at your own risk.

7.   The Periods For Which We Retain Your Personal Information

We are obliged to retain certain information to ensure accuracy, to help maintain quality of service and for legal, regulatory, fraud prevention and legitimate business purposes.

Information will be retained for no longer than is necessary for the purpose for which it was obtained by us or as required or permitted for legal, regulatory, fraud prevention and legitimate business purposes. In general, we (or our service providers on our behalf) will hold this information for a period of seven years, unless we are obliged to hold it for a longer period under law or applicable regulations.

We will not hold your personal information in an identifiable format for any longer than is necessary for the purposes for which we collected it. For certain purposes we retain your personal information indefinitely (e.g. to supress marketing messages).

8.   Your Rights in Relation to Your Personal Information

You have certain rights in respect of your personal data and we have processes to enable you to exercise these rights.

8.1         Right of Access

This is known as a Data Subject Access Request or a DSAR in short. If you want to know if we are processing personal data relating to you and to have access to any such personal data you can contact us at In order to furnish you with a copy of your personal data that we hold we will need to verify your identify.

You have the right to access any personal information that 221+ Group processes about you and to request information about:

  • What personal data we hold about you
  • The purposes of the processing
  • The categories of personal data concerned
  • The recipients to whom the personal data has/will be disclosed
  • How long we intend to store your personal data for
  • If we did not collect the data directly from you, information about the source

8.2         Right to Rectification

If you believe that we hold any incomplete or inaccurate data about you, you have the right to ask us to correct and/or complete the information and we will strive to do so as quickly as possible; unless there is a valid reason for not doing so, at which point you will be notified.

If you believe that we hold inaccurate personal data about you, then you can request to update this information directly by contacting us at Depending on the type of personal data you believe is inaccurate, we may ask you for further proof to ensure that the personal data is being corrected properly. If we are satisfied that the personal data is inaccurate, we will make the necessary changes.

8.3         Right to Erasure

You also have the right to request erasure of your personal data or to restrict processing (where applicable) in accordance with the data protection laws; as well as to object to any direct marketing from us. Where applicable, you have the right to data portability of your information and the right to be informed about any automated decision-making we may use.

You have a right to ask for your personal data to be erased in certain circumstances. However, this right does not apply where we have to comply with a legal obligation or where we need personal data for the establishment, exercise or defence of legal claims. In addition, if you opt out of marketing communications or have previously opted out of marketing communications, we have to keep a record, or such opt out to ensure that we don’t contact you in the future.

8.4         Right to Restriction

You have a right to request that processing of personal data is restricted in certain circumstances. However, we shall continue to process the personal data for storage purposes, for the establishment, exercise or defence of legal claims or with your consent.

8.5         Right to Object

Where we are relying on legitimate interests as a legal basis to process your data, you have a right to object to such processing on grounds relating to your particular situation.

8.6         Right to Portability

In certain circumstances, you can request that we provide to you your personal data in a commonly used format. If you wish to make such a request, you can email us at

8.7         Right to Complain to the Supervisory Authority

You have the right to lodge a complaint with theData Protection Commission and more details can be found on their website at

For more information or to exercise your data protection rights, please contact us using the contact details below.

If you are unhappy about how your personal data has been used, please email us at or write to us at the below address:

Data Protection Office

221+ c/o Irish Cancer Society

43-45 Northumberland Road

Dublin 4

D04 VX65

If you object to our use of your personal data for marketing purposes, we will opt you out of marketing. To amend your preferences, you can email or call us at or at +35319683701.

If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the request; this is to ensure that your data is protected and kept secure.

9.   Changes to Our Privacy Policy

Please check this page regularly for changes to this policy.

You can contact us with your queries in relation to this policy or for any other reason by post, email or by phone.

Please email us at or call us on +35319683701.

Last updated: 24th April 2024