This Privacy Notice explains in detail the types of personal data we may collect about you when you interact with us. It also explains how we’ll store and handle that data and keep it safe.
We want you to be fully informed about your rights, and how Peritus Learning uses your data.
Our promises to you:
- We believe in using your personal information to make things simpler and better for you. -
- We will always keep your personal information safe and will never sell it to third parties.
- We will be clear and open with you about why we collect your personal information and how we use it.
- Where you have choices, we’ll explain them to you and respect your wishes.
We hope you’ll find it clear and simple but if you have any concerns or questions please feel free to contact us by:
Calling us: 0116 268 8727
Emailing us: [email protected]
Writing to us: Data Privacy, Peritus Learning & Development Ltd, DOCK, Pioneer Park, 75 Exploration Drive, Leicester, LE4 5NU
This is a notice to inform you of our policy about all information that we record about you. It sets out the conditions under which we may process any information that we collect from you, or that you provide to us. It covers information that could identify you (“personal information”) and information that could not. In the context of the law and this notice, “process” means collect, store, transfer, use or otherwise act on information.
We take seriously the protection of your privacy and confidentiality. We understand that all visitors to our website are entitled to know that their personal data will not be used for any purpose unintended by them and will not accidentally fall into the hands of a third party.
We undertake to preserve the confidentiality of all information you provide to us and hope that you reciprocate. Our policy complies with UK law accordingly implemented, including that required by the EU General Data Protection Regulation (GDPR). The law requires us to tell you about your rights and our obligations to you regarding the processing and control of your personal data. The GDPR provides the following rights for individuals:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision-making and profiling
For detailed information on these rights, please read the information provided at www.knowyourprivacyrights.org
Who is in control of your data?
We have registered as a ‘Data Controller’ with the Information Commissioner’s Office (ICO). Details are published on a register on the ICO website where you can also find lots of useful information about Data Protection and what it means to you as an individual.
Collecting Information About You
Information we collect from Clients
We collect personal information about you, or individuals at your organisation, whenever you purchase from us or use our services. Some of it is information you give us directly when, for example:
- You place an order on any of our secure websites;
- You sign up for a demonstration of our products or services;
- You request information about products and services from us.
Information we collect from Associates/Suppliers
We need a small amount of information from our associates/suppliers to ensure that things run smoothly. We need contact details of relevant individuals at your organisation so that we can communicate with you. We also need other information such as your bank details so that we can pay for the services you provide (if this is part of the contractual arrangements between us).
Information we collect from Affiliates and Business Partners
This is information given to us by you in your capacity as an affiliate of us or as a business partner. It allows us to recognise visitors that you have referred to us, and to credit to you commission due for such referrals. It also includes information that allows us to transfer commission to you. The information is not used for any other purpose. We undertake to preserve the confidentiality of the information and of the terms of our relationship. We expect any affiliate or partner to agree to reciprocate this policy.
From external companies
We do not supplement the information we hold about you with data from other commercially-available sources like the electoral roll and companies that collate and update data.
Occasionally, for marketing purposes, we may obtain lists of potential customers from external companies. Below is the process we follow to assure legitimacy and privacy as much as we can.
- We check that the seller is a member of a professional body (or is accredited in some way)
- We will not use bought-in lists unless the seller can prove opt-in consent within the last 6 months
- When we contact prospective clients, we try to make sure that our service/product offering are the same or similar to those that the individual has consented to receive marketing for
- We only use the information on the lists for marketing
- We securely delete any irrelevant or excessive information
- We make sure that we screen the lists against any of our existing customers who have already opted out of marketing
- When we first obtain a list, we carry out sample marketing to assess the reliability of the data on the list
- When marketing you will see our name and appropriate contact details
- We let people know where we obtained their data
- We tie the seller of the information into a contract to help ensure the reliability of the list and gives us the ability to audit
The bases on which we process information about you
The law requires us to determine under which of six defined bases we process different categories of your personal information, and to notify you of the basis for each category. If a basis on which we process your personal information is no longer relevant, then we will immediately stop processing your data. Should the basis change, if required by law, we will notify you of the change and of any new basis under which we have determined that we can continue to process your information. If we use your data for communication and marketing purposes, then we use ‘legitimate interest’ and ‘explicit consent’ as the basis of our processing. If your personal data is required to perform the services, we then will ensure that there is a contract between us that gives us permission for that use.
Personal data shall be obtained and processed only for one or more specified and lawful purposes and shall not be further processed in any manner incompatible with that purpose or those purposes. All processing of personal data is performed in line with the reasonable expectations of the individual/s concerned and is done to provide requested services and products.
Information we process with your consent
Except where you have consented to our use of your information for a specific purpose, we do not use your information in any way that would identify you personally. We may aggregate it in a general way and use it to provide class information, for example to monitor the performance of a page on our website. We continue to process your information on this basis until you withdraw your consent, or it can be reasonably assumed that your consent no longer exists.
You may withdraw your consent at any time by contacting us at [email protected] However, if you withdraw your consent, you may not be able to use our website or our services further.
Learning more about you
We’ll consolidate the information we hold about you across Peritus Learning. We do this to keep our records accurate and up to date, provide you with a seamless and consistent service and build a clearer picture of our customers both as a group and as individuals. By understanding you better we can offer you the best and most personalised service we can.
Information we process because we have a legal obligation
We are subject to the law like everyone else. Sometimes, we must process your information to comply with a statutory obligation. For example, we may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order. This may include your personal information.
Marketing and advertising
We may analyse your personal information, including the products and services you view and buy, your browsing habits and other ways you interact with Peritus Learning and the Learning Management System, to evaluate the effectiveness of our advertising and to help us provide more relevant offers, advice and information. Rest assured, however, that we will only send you marketing material if you’ve agreed that we can and that we will never use sensitive information. You can change your mind about receiving marketing material from us at any time by contacting Peritus Learning. Please be aware that, as our marketing campaigns are prepared well in advance, you may still receive material by post for up to 2 months, and by email or text for up to 28 days, after updating your preferences.
You can click on the link at the bottom of any email we have sent you to opt out. If you require access to any of this information you should write to us (at the address listed above) We will ask you to provide proof of your identity, the date and as much detail as you can to help us locate the specific information required.
We may invite you to take part in market research activities such as customer surveys, questionnaires or focus groups. Again, we will never pass your personal information to external companies for this purpose without your consent.
Companies that provide services on our behalf
We share your personal information with companies that provide services on our behalf, such as printers, couriers, mailing houses, manufacturers and suppliers. We always ensure these companies give your information the same level of care and security as we do. If your information is to be sent outside of the EU, we make sure it will be subject to standards of protection and security that are as high as those we use here in the UK.
If you have any concerns regarding your personal data please contact us at [email protected] .
Changes to our business
If ownership of all or part of our business changes or we undergo a reorganisation we will transfer your personal information to the new owner or successor company, so we can continue to provide our services.
Specific uses of information you provide to us
Information relating to your method of payment
Access to your payment information is restricted to authorised staff only. If we ask you questions about your payment information, we only use partial details, so that you can identify the means of payment to which we refer. At the point of payment, you are transferred to a secure page/link of Stripe which is not controlled by us.
Job application and employment
If you send us information in connection with a job application, we may keep it for up to thirty (30) days in case we decide to contact you at a later date. If we employ you, we collect information about you and your work from time to time throughout the period of your employment. This information will be used only for purposes directly relevant to your employment.
Sending a message to our support team
When you contact us, whether by telephone, through our website or by e-mail, we collect the data you have given to us to reply with the information you need. We record your request and our reply to increase the efficiency and accuracy of our business. We keep personally identifiable information associated with your message, such as your name and email address so as to be able to track our communications with you to provide a high-quality service.
When we receive a complaint, we record all the information you have given to us. We use that information to resolve your complaint. If your complaint reasonably requires us to contact some other person, we may decide to give to that other person some of the information contained in your complaint. We do this as infrequently as possible, but it is a matter for our sole discretion as to whether we do give information, and if we do, what that information is.
We may also compile statistics showing information obtained from this source to assess the level of service we provide, but not in a way that could identify you or any other person.
Complaints regarding content on our website
We monitor, moderate and control all content published on our website. If you complain about any of the content on our website, we shall investigate your complaint if a legitimate issue, problem or risk is brought to our attention. If we feel it is justified or if we believe the law requires us to do so, we shall remove the content while we investigate. Free speech is a fundamental right, so we must make a judgment as to whose right will be obstructed: yours, or that of the person who posted the content that offends you.
If we think your complaint is vexatious or without any basis, we shall not correspond with you about it.
Use of information we collect through automated systems when you visit our website
Personal identifiers from your browsing activity
Requests by your web browser to our servers for web pages and other content on our website are recorded. We record information such as your geographical location, your Internet service provider and your IP address. We also record information about the software you are using to browse our website, such as the type of computer or device and the screen resolution. We use this information in aggregate to assess the popularity of the webpages on our website and how we perform in providing content to you. If combined with other information we know about you from previous visits, the data possibly could be used to identify you personally, even if you are not signed in to our website.
Our use of re-marketing
Our use of profiling, automated decision-making and targeted display advertising
We may use profiling, automated decision-making and targeted display advertising from time to time to provide you with a more customised and personalised experience; as well as to offer you products and services that relate directly to your specific needs.
If you wish to object to your personal data being used for these services, including for marketing purposes, please contact us at [email protected]
Disclosure and sharing of your information
Data may be processed outside the European Union
Our websites are hosted in the EU. We may also use outsourced services in countries outside the European Union from time to time in other aspects of our business. Accordingly, data obtained within the UK or any other country could be processed outside the European Union. For example, some of the software our website uses may have been developed in the United States of America or in Australia.
We use the following safeguards with respect to data processed outside the European Union:
- the processor is within the same corporate group as our business or organisation and abides by the same binding corporate rules regarding data processing.
- we comply with appropriate codes of conduct and we are certified under an approved certification mechanism as provided for in the GDPR
An appropriate contract exists between our Data Controller/Data Protection Officer and our Data Processor, to ensure that personal data is handled and processed within the required regulatory guidelines, and security measures are adhered to.
Access to your own information
Access to your personal information
At any time, you may request to review or update personally identifiable information that we hold about you, by contacting us at [email protected] To obtain a copy of any information that is not provided on our website, including your personal data, you may send us a request at [email protected] After receiving the request, we will tell you when we expect to provide you with the information, and whether we require any fee for providing it to you. We will endeavour to provide this information to you without undue delay.
Removal of your information
If you wish us to remove/delete any personally identifiable information from our website or that we hold, you may contact us at [email protected] This may limit the services and products we can provide to you.
Verification of your information
When we receive any request to access, edit or delete personal identifiable information we shall first take reasonable steps to verify your identity before granting you access or otherwise taking any action. This is important to safeguard your information.
Staying in control of your information
We respect the fact that your personal information is your information, and we’ll make it easy for you to update or change your personal details or marketing permissions. Please help us to help you by letting us know if your contact details change or if you spot any errors in the information we hold about you.
Use of site by children
We do not sell products or provide services to children under the age of eighteen (18) years old; nor do we market directly to children.
Encryption of data sent between us
We use Secure Sockets Layer (SSL) certificates to verify our identity to your browser and to encrypt any data you give us. We also use the latest version of the TLS protocol which is currently TLS 1.3. Whenever information is transferred between us, you can check that it is done so using SSL by looking for a closed padlock symbol or other trust mark in your browser’s URL bar or toolbar. All credit/debit card payments are securely handled by an industry-leading payment processor (Stripe) and are never stored on the Peritus Learning website/s.
How you can complain
Retention period for personal data
Except as otherwise mentioned in this privacy notice, we keep your personal information only for as long as required by us:
- to provide you with the products and/or services you have requested;
- to comply with other law, including for the period demanded by our tax authorities;
- to support a claim or defence in court.
Compliance with the law