Privacy and data protection policy

Last updated: 29 March 2019

Updated to reflect legal changes brought about by the introduction of the Data Protection Act 2018 and the General Data Protection Regulation (GDPR)

 

The following privacy statement outlines ways in which we (Impartica Limited) collect, retain and use data that you supply to us, and data that could be used to identify individuals who visit our website.

Enquiries

Where you supply us with your email address or other contact information in the course of making an enquiry, either via the internet or by directly emailing us, we will only retain and use that information in order to respond to your enquiry. If you have any concerns about how we are using your data please email datacontroller@impartica-training.co.uk at any time. You can also remove your details at any time by clicking here.

Mailing list

Where you supply us with your email address or other contact information for the specific purpose of joining our mailing list, either via the internet or by other means such as directly emailing us, we will only retain and use that information so that we may occasionally provide the specific information you have asked for e.g, new dates and special offers on any courses you have asked about. If you have any concerns about the way we are using your data please email datacontroller@impartica-training.co.uk at any time. You can also remove your details at any time by clicking here.

Bookings

Where you supply us with your email address or other contact information as part of making a booking, either via the internet or by directly emailing us, we may retain that information after you have attended the course in order to: a) ask you for feedback on the course, which is in our legitimate interest so that we can give you and our other customers the best possible service, and b) fulfill our legal duties in respect of your booking, including accounting procedures. Unless you have separately given us permission, we will not use your email address for any other purpose, for example marketing. If you have any concerns about how we are using your data please email datacontroller@impartica-training.co.uk at any time.

General

You have certain rights of access to any personal data we hold. More information is available from The Information Commissioner’s Office website.

We will not at any time supply any information you give us to third parties for any purpose, other than those already mentioned.

We will not use your contact details to deliver regular mailshots, newsletters or other bulk email unless prior permission has been obtained. We may however use your contact details in order to seek this permission from you, unless forbidden under GDPR.

Data retention

Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

Impartica Ltd will aim to -

  • review the length of time we keep personal data;
  • consider the purpose or purposes we hold the information for in deciding whether (and for how long) to retain it;
  • securely delete information that is no longer needed for this purpose or these purposes; and
  • update, archive or securely delete information if it goes out of date

As a general rule, data relating to enquiries will be kept for a maximum of 2 years, and data relating to bookings will be kept for no longer than the minimum time period required for accounting purposes, as mandated by HMRC.

Data erasure

You can request that we remove all information that we hold on you by emailing datacontroller@impartica-training.co.uk at any time or by clicking here. We will remove all information other than that which we demonstrably are required to keep for legal, accounting or similar purposes.

Accessing your data

You can request details about any information that we hold on you by emailing datacontroller@impartica-training.co.uk at any time.

Hosting provider

This website is hosted by Storm Internet. All details that you provide to us, and that we retain as specified in this document, will be stored on a UK based server hosted by Storm Internet. If you have any concerns regarding the physical way in which your data will be held, please contact us.

Credit and debit card details

We use a Sage Pay Virtual Terminal to process all credit and debit card transactions. Sage Pay's Terms and Conditions constitute a written agreement with us that they are responsible for the security of cardholder data they possess ("Condition 3.2: We are responsible for securing all customer data, including credit and debit card data, which is solely in our possession and under our control. We comply with PCI DSS, which sets out the industry standards for maintaining a secure environment. Further details about our security policy and our compliance certificate can be found on our website: http://www.sagepay.com/security"). (Taken from http://www.sagepay.com/merchant_terms_conditions)

We also offer the facility for you to pay with a debit or credit card via the Nochex service. In this instance, we will only send Nochex your name, invoice number and the amount payable. Any details you then provide to Nochex in order to make your payment will be on their servers. Nochex are committed to data security and GDPR principles. You can read their privacy policy here (opens new window)

We do not store any cardholder details. Any cardholder details that you send to us will be processed as soon as possible, and then destroyed immediately.

Cookies

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

The table below explains the cookies we use and why.

Cookie Name Purpose

Visit source cookie

VisitSources

When you link through to us via a paid for advertisement, such as Google Adwords, we will attempt to write to a cookie recording that fact. It will not record any information that could identify you or your PC, just the referring site.

Site cookie acceptance

CookiesAccepted

 This cookie is used to record if a user has accepted the use of cookies on this website.

Google Analytics

_utma
_utmb
_utmc
_utmz

These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.

Click here for an overview of privacy at Google

AddThis

__atuvc

The __atuvc cookie is created and read by AddThis javascript on the client side in order to make sure the user sees the updated count if they share a page and return to it before our share count cache is updated. No data from that cookie is sent back to AddThis and removing it when disabling cookies would cause unexpected behavior for users.

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.

To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout.