STATEMENT - updated 20th April 2018
WHAT INFORMATION WILL WE COLLECT?
The business of the Xyz Training Group is predominantly designed to help users find suitable courses and learning providers. This is defined as our Legitimate Business Interest. We process personal data to help our clients make informative decisions about the selection of training courses and learning providers. We do that by: * Providing educational and course information * Recommend to user things we predict they would be interested in, such as courses and learning providers * Notifying our users about things they’ve told us they like, such as additional course opportunities in their local area * Personalising sections of our website to suit user preferences * Dealing with any requests clients make or content when submitted to us * Getting in touch on an infrequent basis if we need to tell our clients about something, like a change to our policies or issues with our service * Monitoring usage and performance in order to improve the services we offer. Keeping your information safe and private is very important to us. All our services are designed with privacy and security in mind.
The key reason we collect information about you is to improve and tailor CPCS Training to your likes and dislikes. We will collect certain information about you when you either register as a visitor or as a training provider (name, address, telephone number, e-mail address, web sites owned, user data). As a user, CPCS Training will collect information about you from your use of the CPCS Training site via cookies. We do not process any sensitive data about you or share it with any 3rd parties outside of the Xyz Training Group.
WHAT WILL WE DO WITH YOUR INFORMATION?
CPCS Training will use the information you share with us to administer your CPCS Training account and issue you with a personalised security password. This ensures that only you can use your CPCS Training account. We may also compile statistical databases to help run the CPCS Training site. You can browse our websites at any time without providing personal information. However, in order to use some of our enhanced functionality we will, for security purposes, request additional information in order to process your request. Examples include: * Providing your name, email, user password and contact details to an education provider in order to register you onto a course. * Providing your name, email address, password and preferences to create an account to manage your training enquiries and save your preferences. * Providing your name and contact details to offer you training course options
The details we request for each piece of enhanced functionality will depend on what is required to perform the action. For example: * If we need to contact you by email, we will request your email address. * If we need to tailor your experience by displaying available courses, we will ask for your preferred start date. * If you are making a payment to Xyz or to one of our training partner providers, you will be asked for you card and billing details. We will not ever record or save your payment information either in written format or on our servers.
We also collect some technical information while you use our websites. For example, information on the type of browser you use and your IP address. This information is used to maintain and monitor the performance of our websites and for security of your information and enhanced services..
CPCS Training will NOT share your personal information with any third parties and will never sell, rent, exchange or release any personal information to any third party without your consent. This does not include those 3rd parties who require certain elements of your personal information necessary for the performance of the training course contract. In such circumstances only the personal information required for the performance of the contract will be shared, such as your name and contact telephone number.
PROCESSING OF DATA
CPCS Training supports the use of third party ROI tracking and analysis of visitor data. By using CPCS Training and/or its services, you expressly grant CPCS Training permission to request and review aggregated (i.e. in a format that will not allow the identification of specific client’s performance) data from any such third party. Any such data obtained from a third party company will not allow the identification of any specific visitor and will be used by CPCS Training for internal review purposes. CPCS Training may also use aggregated, non personal information to report on trends observed in keyword searches and clicked keywords for PR, sales and marketing purposes. Such information will not allow your personal information to be identified.
CPCS Training RELATIONSHIP WITH WEB SERVERS
The CPCS Training website uses ad servers to serve many of the training courses that you see on pages of the CPCS Training website. We use multiple Web servers situated across the world to help with the load balancing of our visitors. Information entered into CPCS Training in the form of training courses is distributed via a web feed to 3rd party websites to aid the sales process. Such information will not allow your personal information to be identified
CPCS Training is committed to the security of all data we collect. To this end, we will issue you with a personalised password to secure your data. It is your responsibility to keep this password secret. We also use industry standard procedures to protect your data, including anti-robot and anti-spamming technology. It should be noted that although we have such security measures in place we cannot guarantee the loss, misuse or alteration of personal data.
Reviewing and updating your data You can update the information we store on your behalf by logging into your website account and updating your profile. If you were not assigned a password when creating your account, you can request a new password online by selecting the ‘forgotten password’ option. If you do not have access to this account, you can request a data update by contacting us by email at [email protected] Training.
In line with the GDPR regulations, you have the following rights:
The right to be informed
You have the right to be informed why and how we collect your personal data, how we will use this information, who we share it with, what are the security measures we take to protect this information and what are you are your individual rights. We will publish this information in this Privacy Notice.
The right of access
You have the right to access the information we hold for you by logging to your online profile. If you need further information, you can make a Subject Access Request by contacting your Xyz contact or the Xyz Privacy Manager.
The right to rectification
You have the right for inaccurate or incomplete data we hold to be updated. You can make a request to have your data updated either through your Xyz contact or the Xyz Privacy Manager.
The right to erasure
You have the right to be forgotten at any point by contacting the Privacy Manager or emailing [email protected] Training . At your request, we will remove all the data we have for you which we are not required legally to retain.
The right to restrict processing
You have the right to restrict processing when you have exercised one of the above right and it may take some time to process that request. For example: when you contact us to update your details you have the right to request restriction until your details are updated.
Right to withdraw consent
For the processing activities where we have asked you for consent, you have the right to withdraw this consent at any point by clicking on the unsubscribe link in any email we send you, or contacting the Privacy Manager.
The right to object
You can object to the processing of your personal data at any point by contacting the Privacy Manager. There may be instances where we may not be able to fulfil those requests, but we will provide you with explanation when replying back to you.
Right to not be subject to automated decisions and profiling
None of our processing activities are purely automated. There are instances where we process data to analyse or predict behaviour but we will ask you for explicit consent when this processing will involve your personal data.
Right to data portability
If you have provided us with your personal data with consent or under the contact obligations, you have the right to request the data you have provided to us in a machine-readable format. CPCS Training does not expressly seek consent from the individual under GDPR rules because all information collected is used solely to supply information or services to a user that they have expressly requested themselves, or so that we may be able to fulfil our obligations under a services contract
CPCS Training contains links to many other Websites. CPCS Training declaims responsibility for the privacy practices or the content of other linked Websites provided through or on this CPCS Training Internet site. The privacy practices and content of any third party materials should be determined individually.
CHANGES TO THE POLICY
By using CPCS Training and/or by completing the training provider and/or visitor registration form, you hereby consent to CPCS Training using and sharing the information in the manner referred to above. If you consent now but later change your mind, you may at any time withdraw your consent by notifying us at [email protected] Training. If you withdraw your consent, CPCS Training will close your account and stop using your information immediately. You may also change or correct any of your details at any time by using your profile edit at CPCS Training.