Last Updated: August 2023

1. Introduction

Pro-Learning Ltd ("we", "us", or "our") is committed to ensuring the protection and privacy of personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This GDPR Policy outlines how we collect, process, store, and protect personal data.

2. Data Controller and Contact Information

Pro-Learning Ltd is the data controller responsible for the processing of personal data. If you have any questions or concerns about how your personal data is being processed, you can contact us at:

Learning@Pro-Learning.co.uk, or call on 01473-354097

3. Principles for Processing Personal Data

We adhere to the following principles when processing personal data:

• Lawfulness, fairness, and transparency: We process personal data in a lawful, fair, and transparent manner.

• Purpose limitation: We collect and process personal data only for specific, explicit, and legitimate purposes.

• Data minimization: We collect and process only the data necessary for the intended purpose.

• Accuracy: We ensure that personal data is accurate and kept up to date.

• Storage limitation: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected.

• Integrity and confidentiality: We implement appropriate security measures to protect personal data from unauthorized access, loss, or disclosure.

4. Types of Personal Data We Collect

We may collect and process the following types of personal data:

• Contact information: Name, email address, phone number, address.

• Account information: Usernames, passwords, account preferences.

• Payment information: Credit card details, billing information.

• Usage data: Information about your interactions with our services.

• Communication data: Correspondence and communication history.

5. Legal Basis for Processing

We process personal data based on one or more of the following legal bases:

• Consent: When you have given clear and explicit consent for the processing.

• Contractual necessity: When processing is necessary for the performance of a contract.

• Legal obligation: When processing is necessary to comply with legal obligations.

• Legitimate interests: When processing is necessary for our legitimate interests or those of a third party.

6. Data Subject Rights

You have the following rights with respect to your personal data:

• Right to access: You can request information about the personal data we hold about you.

• Right to rectification: You can request the correction of inaccurate or incomplete personal data.

• Right to erasure: You can request the deletion of your personal data under certain circumstances.

• Right to restrict processing: You can request the limitation of processing under certain conditions.

• Right to data portability: You can request a copy of your personal data in a structured, commonly used, machine-readable format.

• Right to object: You can object to the processing of your personal data under certain circumstances.

7. Data Security

We implement appropriate technical and organizational measures to ensure the security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction, or damage.

8. Data Breach Notification

In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify affected individuals and relevant authorities within the timeframe required by law.

9. International Data Transfers

If we transfer personal data to countries outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place to protect the data.

10. Changes to this GDPR Policy

We may update this GDPR Policy from time to time. The "Last Updated" date at the beginning of this policy indicates the date of the most recent changes.

11. Contact Us

If you have any questions, concerns, or requests regarding this GDPR Policy, please contact us at Learning@Pro-Learning.co.uk.