At SONI Ltd (“SONI”), we take our obligations under data protection law very seriously and we're committed to keeping your personal data private and secure. This statement is designed to help you understand what Personal Data we hold, why we collect it, why it is required, what we do with it and how we protect it. It also explains your rights in relation to how we hold and use your personal data, how to exercise those rights, and what to do if more information is required or a complaint is to be made.
This privacy notice applies to all Personal Data we hold, irrespective of any relationship with us.
We respect your right to privacy. If you have any questions about how we use your information, then please write to: the Data Protection Officer, Data Protection Officer, SONI Ltd. Castlereagh House, 12 Manse Road, Belfast, BT6 9RT or at DataProtection@soni.ltd.uk.
About SONI
SONI, part of the EirGrid Group since 2009, is the electricity system operator for Northern Ireland: We are responsible for the consistent and reliable transmission of electricity on our high-voltage grid, matching supply and demand for power across Northern Ireland, every second of every day.
SONI also operates the all-island wholesale electricity market with EirGrid through the Single Electricity Market Operator (SEMO) which has been in operation since November 2007.
In this privacy policy, the terms "we", "our", and "us" are used to refer to SONI. SONI is a “Controller” under the General Data Protection Regulation ((EU) 2016/679) (“GDPR”) in respect of certain Personal Data you furnish to us.
SONI is regulated by the Utility Regulator Northern Ireland.
What is personal data?
“Personal Data” is any information relating to an identified or identifiable natural person (“Data Subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier such as a user IP addresses or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person and includes Special Categories of Personal Data;
"Special Categories of Personal Data" is any Personal Data that reveals racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership; genetic data or biometric data and data concerning health or sex life and sexual orientation.
Technical data collected
When you visit the SONI website, we gather statistical and other analytical information collected on an aggregate basis of all visitors to our website. This non-personal data comprises information that cannot be used to identify or contact you, such as demographic information regarding, for example, user IP addresses where they have been clipped or anonymised, browser types and other anonymous statistical data involving the use of our website. We also collect certain information by the use of cookies. Cookies are small text files that web servers can store on your computer's hard drive when you visit a website. They allow the server to recognise you when you revisit the website and to tailor your web browsing experience to your specific needs and interests. For more information on our use of cookies, please see our Cookies Policy which can be found at http://www.soni.ltd.uk/Legal/#Cookies.
What personal data do we use?
We use, or process, a number of different categories of personal data.
Information you give us – this is information about you that you give us when engaging with SONI for example by filling in forms, responding to questionnaires or by corresponding with us by phone, face-to-face or e-mail generally or when you respond to a public consultation exercise or an information gathering exercise which relates to SONI's general business or responsibility for the safe, secure, efficient and reliable operation of the high voltage electricity Transmission System in Northern Ireland. The information that you give us will include some or all of the following (depending on the circumstances):
We may record telephone calls you make to us for training or quality purposes. Where you provide information about others you must ensure that you have their consent or are otherwise entitled to provide this information to us.
Information we receive from other sources – this is information about you that we receive from other sources such as our business partners (e.g. N.I.E.N.), or from publically available sources such as (but not limited to) the land registry, death notices and electoral registers. The information that that we receive from these sources will include some or all of the following (depending on the circumstances):
What do we use personal data for?
Our core business and central focus is the safe, secure, efficient and reliable operation of the high voltage electricity Transmission System in Northern Ireland. To this end we use information held about you in the following ways (as applicable):
What are our legal grounds for processing personal data?
Data protection laws require that we meet certain conditions in order to use your data in the manner described in this privacy statement. We rely on the following legal grounds in order to process your data:
Who do we share personal data with?
We may share your personal information with the EirGrid Group. This means EirGrid plc, the Single Electricity Market Operator for the island of Ireland (known as "SEMO"), EirGrid Interconnector DAC and EirGrid Telecoms DAC.
We will only disclose your information:
Transfers of your personal data outside of the European Union
The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (the "EEA"), in particular, where we use third party cloud storage providers.
When we send personal data overseas, we will make sure suitable safeguards are in place, in accordance with European data protection requirements, to protect the data. In all cases these safeguards will be one of the following:
More information on these safeguards can be found here: https://ec.europa.eu/info/law/law-topic/data-protection_en
How long is personal data kept for?
We will retain information about you for the period necessary to fulfil the purposes for which the information was collected. After that, we will delete it. The retention period may vary depending on the purposes for which the information was collected.
Where a specific legal or regulatory requirement applies to your information we will retain it for the period of time specified in such legal or regulatory requirement. In the absence of a specific legal or regulatory requirement we will retain your information for the applicable statutory limitation period following the end of the matter to which it relates. We may be required to extend the retention period if the information is required in relation to a complaint, investigation, judicial review, a claim or litigation.
Please also note that we are sometimes legally obliged to retain original legal documents, such as easements or title deeds, indefinitely.
Your rights
You have a number of rights under data protection law in relation to the way we process your personal data. These rights are a right to:
These rights are subject to certain restrictions provided for in data protection legislation. For example:
You may contact us using the details on our website (or by contacting our DPO directly – details below) to exercise any of these rights. Please address any questions, comments and requests regarding our data processing practices to our Data Protection Officer in the first instance. Our DPO can be contacted by writing to the Data Protection Officer, SONI Ltd. Castlereagh House, 12 Manse Road, Belfast, BT6 9RT or you can email DataProtection@soni.ltd.uk.
If you have any concerns regarding our processing of your personal data, or are not satisfied with our handling of any request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office – Northern Ireland.
The Information Commissioner’s Office in Northern Ireland's contact details are:
Telephone: +44 28 9027 8757 OR 0303 123 1114
E-mail: ni@ico.org.uk
Postal Address
The Information Commissioner’s Office – Northern Ireland
3rd Floor
14 Cromac Place,
Belfast
BT7 2JB
Changes to our privacy statement
We may update this privacy statement from time to time. Any changes we may make in the future will be posted on this page of our website and, where appropriate, we will endeavour to bring the changes to your attention by other means.
Last updated 24 May 2018