At Xel Training & Development, we take your privacy seriously and our privacy statement is detailed below.
The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the website and website owners. Furthermore the way this website processes, stores and protects user data and information will also be detailed within this policy.
Who We Are
John Fenton Training Ltd trading as Xel Training & Development (‘we’ or ‘us’ or ‘our’) gather and process your personal information in accordance with this privacy notice and in compliance with the relevant data protection Regulation and laws. This notice provides you with the necessary information regarding your rights and our obligations, and explains how, why and when we process your personal data.
Xel Training & Development registered office is at 105 Garstang Road, Preston, Lancashire, PR1 1LD and we are a company registered in England and Wales under company number 03156499. We are registered on the Information Commissioner’s Office Register registration number ZA389467 and act as the data controller and data processor depending on the service being provided. We have a designated Data Protection Officer/Appointed Person (DPO) for the organisation and the DPO can be contacted at firstname.lastname@example.org.
Information That We Collect
Xel Training & Development processes your personal information to meet our legal, statutory and contractual obligations and to provide you with our products and services. We will never collect any unnecessary personal data from you and do not process your information in any way, other than as specified in this notice. The personal data that we collect is dependant of the service we provide to you. Xel Training & Development may collect, store and process the following data:
- Contact Name;
- Contact Phone Number;
- Contact Email Address;
- Business Name;
- Business Address & Post Code;
- Unique customer identifier(s) that tie you to customer account(s) on our systems;
- Business Location (City);
- Business Location (County);
- Bank account and payment details;
- Training course assessment feedback;
- Personality profile survey responses;
Xel Training & Development may collect, store and process the following data from the use of our website:
- IP address;
- Geographical location;
- Browser type and version;
- Referral source;
- Length of visit;
- Page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use.
We use different methods to collect data from and about you including: – Online web forms, email, corresponding with us by post, phone or otherwise. This includes personal data you provide when you enquire about or book our services; subscribe to our updates or publications; download or request marketing to be sent to you; enter a survey; or give us some feedback. Should we collect your personal information during an enquiry we shall remove your personal data within 24 months of us recording it unless you subsequently become a customer.
How We Use Your Personal Data (Legal Basis for Processing)
Xel Training & Development takes your privacy very seriously and will never disclose, share or sell your data without your consent; unless required to do so by law. We only retain your data for as long as is necessary and for the purposes specified in this notice. Where you have consented to us providing you with promotional offers and marketing, you are free to withdraw this consent at any time. You may instruct us at any time not to process your personal information for marketing purposes or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.
Xel Training & Development may from time to time send you emails, direct mail or otherwise contact you for marketing purposes, or to promote new services, activities or content where we believe there is a legitimate interest to you or where you have agreed to this. Where you have agreed to receive these communications, we may personalise the message content based upon any information you have provided to us and your use of the Xel Training & Development website. You may at any time request us to stop using your personal data for direct marketing purposes, or unsubscribe from email communications. If you wish to do this please contact us at email@example.com.
Access to your Personal Information (Your Rights)
Xel Training & Development recognises that you have the right to access any personal information that we process about you and to request information about:
- What personal data we hold about you;
- The purposes of the processing;
- The categories of personal data concerned;
- How long we intend to store your personal data for;
- If we did not collect the data directly from you, information about the source.
If you believe that we hold any incomplete or inaccurate data about you, you have the right to ask us to correct and/or complete the information and we will strive to update/correct it as quickly as possible; unless there is a valid reason for not doing so, at which point you will be notified.
You also have the right to request erasure of your personal data or to restrict processing (where applicable) in accordance with data protection laws, as well as to object to any direct marketing from us, to exercise your data portability rights and to be informed about any automated decision-making we may use.
If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the request; this is to ensure that your data is protected and kept secure.
Any data access requests should be directed to our Data Protection Officer at firstname.lastname@example.org. We will respond to any requests to remove data within a reasonable timeframe.
Xel Training & Development takes your privacy seriously and takes every reasonable measure and precaution to protect and secure your personal data. We work hard to protect you and your information from unauthorised access, alteration, disclosure or destruction and have several layers of security measures in place, including but not limited to:
- Encryption of sensitive data;
- Cloud back-up is UK based and fully encrypted;
- Software & Hardware Firewalls;
- Anti-Virus software;
- Regular software security reviews and updates;
- Password protection and authentication;
- Secure server network that is fully maintained & supported under an external maintenance & support agreement.
We may disclose your personal data to any member of our employees, officers, insurers, professional advisers, agents, suppliers or subcontractors insofar as reasonably necessary for the purposes set out in this policy. We may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to do so. We will not, unless requested by you personally, provide your data to any third party for the purpose of their direct marketing.
As noted in the ‘How We Use Your Personal Data’ section of this notice, we occasionally process your personal information under the ‘legitimate interests’ legal basis. Where this is the case, we have carried out a thorough Legitimate Interests’ Assessment (LIA) to ensure that we have weighed your interests and any risk posed to you against our own and that such interests are proportionate and appropriate.
We use the ‘legitimate interests’ legal basis for processing:
- Your contact information to inform you of any changes to the products and services you have purchased/used previously;
- Your contact information to undertake market research and analysis to determine whether a given product or service is beneficial to you and whether the product or service is cost effective;
- Your contact information to send you marketing information where we believe a particular product or service maybe of interest to you;
- Your account information, in particular invoices, where we can examine your purchases and payments to ensure good accounting practices have been applied;
- Your emails, calls and other communications where we can examine the practice of good corporate governance and for training and quality improvements.
How Long We Keep Your Data
Xel Training & Development only ever retains personal information for as long as is necessary and we have strict review and retention policies in place to meet these obligations. We are required under UK tax law to keep your basic personal data (name, address, contact details) for a minimum of 6 years after which time it will be destroyed. Where your personal data has been obtained pre-contract we will remove your data from our systems within 24 months unless during this time you have become a customer. Where you have consented to us using your details for direct marketing or where we process your personal information under the ‘legitimate interests’ legal basis, we will keep such data until you notify us otherwise and/or withdraw your consent.
Your Right To Complain
Xel Training & Development only processes your personal information in compliance with this privacy notice and in accordance with the relevant data protection laws. If, however you wish to raise a complaint regarding the processing of your personal data or are unsatisfied with how we have handled your information, you have the right to lodge a complaint with the supervisory authority.
Data Protection Officer
Xel Training & Development
6 Church Row Chambers
T: 01772 611115 or E: email@example.com
Information Commissioner’s Office
T: 0303 123 1113
Cookies are small files saved to the users computers hard drive that track, save and store information about the users interactions and usage of the website. This allows the website, through it’s server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and it’s external serving vendors.
Other cookies may be stored to your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:
- Click here for Chrome;
- Click here for Firefox;
- Click here for Internet Explorer;
- Click here for Safari;
- Click here for Edge;
Blocking all cookies will have a negative impact upon the usability of many websites. If you block cookies, you may not be able to use all the features on our website.
Shortened Links in Social Media
This website and it’s owners through their social media platform accounts may share web links to relevant web pages. By default some social media platforms shorten lengthy url’s [web addresses] (this is an example: http://bit.ly/zyVUBo). Users are advised to take caution and good judgement before clicking any shortened url’s published on social media platforms by this website and it’s owners. Despite the best efforts to ensure only genuine url’s are published many social media platforms are prone to spam and hacking and therefore this website and it’s owners cannot be held liable for any damages or implications caused by visiting any shortened links.
Amendments/Changes to this Policy
Revision date: 24th May 2018