The General Data Protection Regulation (GDPR) has transformed how personal data is handled across Europe, and notary services are no exception. If you're attending a Notary Public and providing personal documents and information, you may be wondering how GDPR applies and what your rights are. This guide explains the intersection of GDPR and notary services in Ireland.
GDPR and the Notary Public
Notaries Public in Ireland process significant amounts of personal data as part of their work. When you attend a notary appointment, you provide your name, address, date of birth, passport details, and potentially other sensitive personal information. The notary examines and copies identity documents, witnesses signatures on personal and commercial documents, and maintains permanent records of their notarial acts.
Under GDPR, a Notary Public is a data controller — they determine the purposes and means of processing your personal data. This means they must comply with all GDPR requirements, including data minimisation, purpose limitation, storage limitation, security, and transparency.
Why Does a Notary Public Need Your Data?
The legal basis for a Notary Public collecting and processing your personal data includes:
- Legal obligation: Notaries Public are legally required to verify the identity of persons appearing before them. They must examine identification documents and record identity details to prevent fraud and comply with anti-money laundering regulations.
- Legitimate interests: Maintaining accurate records of notarial acts protects both the notary and their clients, and serves the public interest in the integrity of notarised documents.
- Performance of a contract: When you engage a notary's services, processing your data is necessary to fulfil the contract (i.e., to notarise your documents).
What Data Is Collected?
A Notary Public typically collects and processes the following personal data:
- Full name, address, and date of birth
- Passport or ID card details (including photographs and document numbers)
- Contact details (phone number, email address)
- Details of the notarial act performed
- The content of the documents notarised (which may contain additional personal data)
- A record in the notarial protocol (permanent register)
The Notarial Protocol and Data Retention
One of the unique aspects of notarial practice is the notarial protocol — a permanent register of all notarial acts performed. Notaries Public are required by professional rules to maintain this register indefinitely. This creates an apparent tension with GDPR's storage limitation principle, which requires data to be kept only as long as necessary.
However, GDPR recognises that data may be retained where there is a legal obligation to do so. The requirement to maintain the notarial protocol is a longstanding legal and professional obligation that predates GDPR, and it serves the important public interest of maintaining a permanent, verifiable record of notarial acts. This record can be essential if questions arise about a notarisation years or even decades later.
Your GDPR Rights
As a data subject, you have several rights under GDPR in relation to your notary's processing of your data:
- Right to be informed: The notary must tell you what data they collect and why (typically through a privacy notice).
- Right of access: You can request a copy of the personal data the notary holds about you.
- Right to rectification: You can request correction of inaccurate data.
- Right to erasure: You can request deletion of your data, but this is limited where the notary has a legal obligation to retain records (as with the notarial protocol).
- Right to data portability: In certain circumstances, you can request your data in a portable format.
- Right to object: You can object to processing in certain circumstances.
Data Security
Notaries Public must implement appropriate technical and organisational measures to protect your personal data. This includes secure storage of physical documents, password protection and encryption of digital records, secure disposal of documents no longer needed, restricted access to personal data, and compliance with the Data Protection Commission's guidance.
Anti-Money Laundering (AML) Obligations
In addition to GDPR, Notaries Public must comply with anti-money laundering legislation (the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010–2021). This requires them to conduct customer due diligence — verifying your identity and, in some cases, understanding the purpose and nature of the transaction. These AML obligations provide additional legal basis for collecting and retaining certain personal data.
Frequently Asked Questions
Does GDPR apply to Notary Public services?
Yes. Notaries are data controllers and must comply with GDPR.
What personal data does a Notary Public collect?
Name, address, date of birth, ID details, contact information, and records of notarial acts.
Can I ask a Notary Public to delete my data?
The right to erasure is limited where the notary has a legal obligation to retain records, such as the notarial protocol.
Hugh Phelan's Privacy Commitment
Hugh Phelan takes data protection seriously and complies fully with GDPR and AML regulations. Your personal data is processed only as necessary for the notarial services you have requested and as required by law. Contact Hugh Phelan’s office at 021-489-7134 or email info@phelansolicitors.com.
Looking for a Notary Public in Cork?
Hugh Phelan is a Solicitor & Notary Public appointed by the Chief Justice of Ireland. Same-day appointments available.
Notary Public Cork — Book Now📞 +353-21-489-7134 · East Douglas Street, Douglas, Cork