Privacy Policy

Updated: May 2024

Shillington Online Education Limited (Registered in England and Wales – Company No 15021150)

The Data Compliance Officer can be contacted at ukfinance@shillingtoneducation.com

This privacy policy is in three parts.

Part 1 (for Clients): With the introduction the EU General Data Protection Regulations (GDPR), which become effective in law on 25th May 2018 and new Data Protection Laws to replace the Data Protection Act 1998 (together “Data Protection Legislation”), we are required to update the data protection references in our terms of business and, in the case of individual clients, provide certain details regarding the Group and collection and use of your personal data. This is set out in more detail below.

Part 2 (for all Visitors): The second part sets out, in relation to information we collect from this Site, the practices we follow to respect the privacy of all visitors.

Part 3: Other Applicable Information

Part 1

What are your rights?

If at any point you believe the information we process on you is incorrect you can request to see this information and even have it corrected or deleted. If you wish to raise a complaint on how we have handled your personal data, you can contact our Group Compliance Officer who will investigate the matter.

If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office (ICO).

Unless otherwise agreed with you, we will only collect basic personal data about you. We may also need to hold ‘sensitive personal data’ in order for us to be able to deliver our services to you in as effective a manner as possible. Basic personal data includes your name, and contact details including work address, email address and job title. Sensitive information includes a number of types of data relating to race or ethnic origin, political opinions, religious or other similar beliefs, trade union membership, physical or mental health, sexual life, or criminal record.

We will only hold “sensitive personal data” if you enrol for one of our courses and we will seek your consent to do so as part of the enrolment process.

A full list of your rights under the Data Protection Legislation is as follows:

  1. The right to access the personal data we hold on you
  2. The right to correct and update the personal data we hold on you
  3. The right to have your personal data erased
  4. The right to object to processing of your personal data
  5. The right to data portability
  6. The right to withdraw your consent to the processing at any time for any processing of personal data to which consent was sought.
  7. The right to object to the processing of personal data where applicable.
  8. The right to lodge a complaint with the Information Commissioners Office. You can contact the Information Commissioners Office via email, on 0303 123 1113, or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.

Data Collection

We need to know basic personal data in order to provide you with our services, and to claim our right to be paid in return for our services, under our standard terms of business. If you do not provide this information then we will be unable to provide the services you have requested. We will not collect any personal data from you that we do not need in order to provide and oversee the services we have agreed to provide to you.

Use of Data

All the personal data we hold about you will be processed by Group staff and no third parties will have access to your personal data unless there is a legal obligation for us to provide them with this. We have set out below the legal bases for The Group to process your data.

Some of our processing may be necessary for compliance with a legal obligation. For example the Group may have duties to act as a data controller and may be obliged to report certain matters to law enforcement agencies and/or educational regulatory bodies. The Group ensures that internal compliance is in full accordance with the requirements of theData Protection Legislation.

Some of our processing is necessary to comply with our contractual obligations to clients and prospective clients. It is necessary in order to provide our graphic design services to our clients

We will also communicate with you, as a matter of legitimate interest, information about other services we can offer you and update you about our activities.

Where your information is used other than in accordance with one of these uses, we will first obtain your consent to that use.

We take all reasonable steps to ensure that your personal data is processed securely and more information on this can be found on our website.

How long we keep it

We will generally keep your personal data for a maximum of 6 years, after which time it will be destroyed if it is no longer required for the lawful purpose(s) for which it was obtained. In the United States and Australia we may be required to hold your personal data for at least 20 years. If you consent to marketing, any information we use for this purpose will be kept with us until you notify us that you no longer wish to receive this information.

Sharing your personal data

Your personal data will only be shared with third parties including other data controllers where it is necessary for the performance of the data controllers’ tasks or where you first give us your prior consent. It is likely that we will need to share your data with:

  • Our agents, suppliers and contractors. For example, we may ask a supplier to send out newsletters on our behalf, or to maintain our database software, or to provide us with administration, IT and other related services;

Sharing your personal data

Your personal data will only be shared with third parties including other data controllers where it is necessary for the performance of the data controllers’ tasks or where you first give us your prior consent. It is likely that we will need to share your data with:

  • Our agents, suppliers and contractors. For example, we may ask a supplier to send out newsletters on our behalf, or to maintain our database software, or to provide us with administration, IT and other related services;

Part 2

Introduction

At The Group we implement fair information practices that are designed to protect your privacy. If you have questions or you do not feel that your concerns have been addressed in our privacy statement, or you just want to talk with us, feel free to contact us by email to ukfinance@shillingtoneducation.com

Data Collection

We collect personally identifiable information that is voluntarily provided by visitors to this Site (User Data). The User Data that The Group receives from Site visitors includes name, title, address, email address, screen name, telephone and fax numbers, and any other information provided by visitors in email messages or attachments thereto

Typically, User Data is collected in order to assist visitors to enrol on a course or to express interest in our services

It is The Group’s policy to limit the information collected to only the minimum information required to complete a Site visitor’s request.

The Group’s intention is not to seek any sensitive information through our Site unless legally required for enrolment purposes as set out in Part 1, insurance or recruitment purposes. Sensitive information includes a number of types of data relating to race or ethnic origin, political opinions, religious or other similar beliefs, trade union membership, physical or mental health, sexual life, or criminal record.

Use of User Data

User Data obtained by the Site is used for internal business purposes of the Group and in connection with a visitor’s request. This data is not shared with others for unrelated purposes unless stated in this Privacy Policy or otherwise communicated to the Site visitor.

The Group makes every practical effort to avoid excessive or irrelevant collection of data. If a visitor believes the Site has collected excessive information, we encourage the visitor to contact ukfinance@shillingtoneducation.com to raise any concerns.

Except for instances where visitors explicitly choose to receive specific The Group marketing or other informational materials The Group will not use personal data collected from our Website to distribute marketing or informational materials.

Part 3

Third Parties

It is the Group’s policy to process all data including User Data in accordance with GDPR principles and Data Protection Legislation and only to disclose User Data to third parties who ask us to provide services to them. Otherwise, unless required by law to do so, we do not share User Data with third parties.

We do share User Data:

  • when explicitly requested by the visitor
  • when required to deliver publications or reference materials requested by the visitor
  • when required to facilitate conferences or events hosted by a third party
  • when required to meet any other request of a visitor.
  • When there is a legal obligation to do so.

Categories of third parties with whom we may share personally identifiable information include National Governments and Educational Regulatory bodies in the United States of America and Australia. This Site does not collect or compile personally identifying information for dissemination or sale to outside parties for consumer marketing purposes, or host mailings on behalf of third parties.