Privacy and Cookies Policy
Date: [13 October 2020]
The CPD Certification Service Limited of The Coach House, Ealing Green, London W5 5ER (we, us, our) is committed to protecting and respecting your privacy. We are registered with the ICO and our registration number is 00013863325.
This Privacy and Cookies Policy (“Policy”) sets out the basis on which we will process any personal data we collect from you, or that you (or your employer) provide to us, whether via our Website (www.cpduk.co.uk) or due to your provision of services to us as a supplier. Please read this Policy carefully to understand our practices regarding your personal data and how we keep it secure.
INFORMATION WE MAY COLLECT FROM YOU
We may collect and process the following personal data about you:
Information you give us. You (or your employer) may give us your personal information by filling in forms on our Website or by corresponding with us by phone, email or otherwise. This includes information provided on:
- registration to use our Website or requesting to have CPD Materials certified by us;
- corresponding with us in relation to our services;
- subscribing to our services;
- using our services;
- placing an order on our Website;
- reporting a problem with our Website.
You may also give us information that you’d like us to publish about you and certified CPD material. The information you (or your employer) gives us may include your name, address, email address, phone number, financial, payment card information, professional qualifications, professional interests and any other relevant information you provide in any particular circumstance.
Information we collect or create about you. With regard to each of your visits to our Website we may automatically collect the following information:
- technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform;
- information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); items you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number.
We may create account information on you or your business, such as account identifiers; contact details; marketing preferences and cookie settings.
Information we receive from other sources. We may receive information about you if you use any of the other websites we operate or the other services we provide. We are also working closely with third parties (including, but not limited to business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers and credit reference agencies) and may receive information about you from them.
USES MADE OF THIS INFORMATION AND THE LEGAL BASES
We use your personal data in the following ways:
Information you give to us. We will use this information:
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us. The legal basis for this processing is the performance of a contract between you and us and/ or taking steps, at your request, to enter into such a contract;
- to provide you or your employer, or permit authorised CPD providers to provide you or your employer organisation with information about other goods and services we offer that are similar to those that you have already purchased or enquired about or which we feel may interest you (you may opt- out of receiving such communications at any time, either by following the opt- out link in the email or contacting us at the email address below). The legal basis for this processing is our legitimate interests, namely marketing our services;
- to notify you about changes to our service. The legal basis for this processing is our legitimate interests, namely keeping you up-to-date of any changes to the services that you are interested in or have contracted to participate in;
- to provide references or course feedback to prospective customers, whether on our Website or otherwise. The legal basis for this processing is our legitimate interests, namely marketing our services.
to ensure that content from our Website is presented in the most effective manner for you and for your computer.
The legal basis for this processing is our legitimate interests, namely the efficient provision of our Website.
Information we collect or create about you. We will use this information:
- to administer our Website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- to improve our Website to ensure that content is presented in the most effective manner for you and for your computer;
- to allow you to participate in interactive features of our service, when you choose to do so;
- as part of our efforts to keep our Website safe and secure;
- to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
- to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.
- To efficiently manage our relationship and make sure we are able to provide our services in the way you expect.
The legal basis for this processing is our legitimate interests, namely communications with our Website visitors, service users, individual customers and customer personnel, the maintenance of our relationships, enabling the use of our services, and the proper administration of our Website, services and business.
- Information we receive from other sources. We may combine this information with information you give to us and information we collect about you. We may us this information and the combined information for the purposes set out above (depending on the types of information we receive).
We may also use your personal data from any source to obtain insurance coverage, legal or other professional advice; to establish, exercise or defend legal claims; and to comply with law and regulation. The legal basis for this processing is our legitimate interests, namely the proper protection of our business against risks and the exercise of our legal rights.
DISCLOSURE OF YOUR INFORMATION
We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries in so far as is reasonably necessary for the purposes, and on the legal bases, set out in this Policy.
We may share your information with selected third parties including:
- Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you. This includes CPD providers, IT service companies who provide us with IT services such as payment processing and Website hosting.
- Analytics and search engine providers that assist us in the improvement and optimisation of our Website.
- Credit reference agencies for the purpose of assessing your credit score where this is a condition of us entering into a contract with you.
- Insurers and/ or professional advisors.
We make sure that we have got appropriate contracts in place with such third parties to make sure they keep your personal data secure to the same high standards as us.
We may disclose your personal information to third parties:
- In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
- If The CPD Certification Service Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
- If we are under a duty to disclose or share your personal data in order to comply with any legal obligation in any contracts between us or to protect the rights, property, or safety of The CPD Certification Service Limited, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
WHERE WE STORE YOUR PERSONAL DATA
We store your personal data on our servers located in the European Economic Area (EEA). We take appropriate technical and organisational precautions to secure your personal data and to prevent the loss, misuse or alteration of your personal data.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Website, you are responsible for keeping this password confidential and making sure it is not susceptible to being guessed. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will use reasonable efforts to protect your personal data using industry standard technological measures, we cannot guarantee the security of your data transmitted to our Website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
HOW LONG DO WE STORE YOUR PERSONAL DATA?
We keep your personal data for six full UK tax years following the end of your membership or the expiry/ termination of any contract we have with you. We keep general enquiry data (which does not lead to a contractual relationship) for a period of up to two calendar years). After this period, we delete your personal data from out systems unless we have to retain it pursuant to any applicable law or regulation to which we are subject.
Your principal rights under data protection law are:
- the right to access – you can ask for copies of your personal data;
- the right to rectification – you can ask us to rectify inaccurate personal data and to complete incomplete personal data;
- the right to erasure – you can ask us to erase your personal data;
- the right to restrict processing – you can ask us to restrict the processing of your personal data;
- the right to object to processing – you can object to the processing of your personal data;
- the right to data portability – you can ask that we transfer your personal data to another organisation or to you;
- the right to complain to a supervisory authority – you can complain about our processing of your personal data; and
- the right to withdraw consent – to the extent that the legal basis of our processing of your personal data is consent, you can withdraw that consent.
These rights are subject to certain limitations and exceptions. You can learn more about the rights of data subjects by visiting https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.
You may exercise any of your rights in relation to your personal data by contacting us at email@example.com.
THIRD PARTY WEBSITES
Our Website contains links to and from the websites of our certified clients, partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Please let us know if the personal information that we hold about you needs to be corrected or updated.
We use the following cookies:
- Necessary cookies. These are cookies that are required for the core functionality of our Website such as page navigation. They also include cookies that enable you to log into secure areas of our Website.
- Analytical/performance cookies. These allow us to recognise and count the number of visitors and to see how visitors move around our Website when they are using it. This helps us to improve the way our Website works, for example, by ensuring that users are finding what they are looking for easily.
- Functionality cookies. These are used to recognise you when you return to our Website, for example by remembering the cookies you have consented to.
- Marketing cookies. These cookies record your visit to our Website, the pages you have visited and the links you have followed. We will use this information to make our Website and any advertising displayed on it more relevant to your interests. We may also share this information with third party service providers for this purpose.
Any changes we may make to our Policy in the future will be posted on this page and, where we think it appropriate, notified to you by email. Please check back frequently to see any updates or changes to our Policy. The last date the Policy was changed is at the top, for your reference.
Questions, comments and requests regarding this Policy are welcomed and should be addressed to firstname.lastname@example.org.