Privacy Policy
Updated April 2024
Who we are
Our website address is https://thecybertrainingcentre.co.uk.
What personal data we collect and why we collect it
We generally only collect and use personal data and use cookies in order to provide our training services. We do not sell personal data to other organisations. As described elsewhere in this policy we use 3rd parties cloud services to sub-process personal data, which is strictly necessary to deliver our services.
Note: We monitor, capture and store your IP address to help diagnose problems with our server and to administer and protect our Website. Your IP address is captured if you attempt to login or register as a user, complete forms, perform any actions when logged in, leave comments, attempt to access site content using the API or using external tools to access site content.
General Visitors
The training course services we provide are “paid” for commercial services aimed at UK businesses and not general consumers. Visitors who simply wish to browse the website can do so freely and can accept or decline the use of tracking cookies, but they will be unable to access the training material unless the visitor registers and then pays for the training course services.
Orders
When a user registers or attempts to log in to access the training course services we log their IP address to help diagnose problems and to administer and protect our Website and secure user data from malicious activity. Refer also to the section concerning the use of cookies.
When courses and assessments are purchased through our store, we capture and retain your names and business contact details and other business information required to process orders. We use a secure 3rd party service for processing credit card payments. We do not store credit/payment card details.
Courses and Assessments
In order to provide the website services including training courses to registered users, we collect and store information including statistics about what courses users are enrolled in, their progress and results of assessments taken. We will also use the data to provide support and keep registered users informed about changes to our products and services.
When purchasing and accessing courses for groups, a user becomes a Group Leader. Group leaders must only register an account on behalf of a registered business or charity. They must only enter the personal details of other individuals of the same organisation into the website in order to enroll them onto courses and assessments. It is the group leader’s responsibility (as a data controller) to comply with their own organisation’s privacy policies and should only enter the business contact details of their colleagues. We then use that information in order to deliver the training services to the users enrolled in the group courses.
Comments
Individuals enrolled on courses and assessments may leave feedback and ratings related to the services provided. We may use that feedback to improve our services and may share feedback and ratings with other users and to publicise our products.
When users and visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media and documents
If you upload images or documents to the website, you should avoid uploading them with embedded personal information and location data included. Visitors to the website may be able to download and extract any location data from images on the website.
Registration and Contact forms
This website is owned and managed by a commercial business intended to promote its services to other business organisations and to employees in those organisations. If you enter your personal and contact details into a contact form, then we will retain and process that data for the purposes of delivering services, providing support and also for communications concerning our products and services.
You should only use corporate business contact details and not enter any personal details like a home phone or address contact details or sensitive personal details into this website.
Newsletters
If you subscribe to a newsletter we require you to provide your name and email address. You do not have to register as a website user in order to receive newsletters but registered users and members can also subscribe to newsletters. You may subscribe to one or more newsletters and you are able to unsubscribe at any time, using the links within the newsletters.
We will use the personal information you provide to send you newsletters and also to inform you about changes to terms and conditions and our privacy policy. If you unsubscribe from newsletters we will retain minimal information about you to prevent you receiving newsletters from us.
Cookies
The purpose of our use of cookies in general is to help assure website functionailty, the confidentiality, integrity and availability of both our and your data and for protecting our intellectual property. All the cookies which are being used in the current user session are shown below at the end of this policy page. Please return to this page at any time to review the cookies in use. This website uses cookies that are:
- Essential for security, delivering the training course services and enable visitors and users to complete forms. Users are not able to prevent the use of these essential cookies.
- Used for tracking activity which we use to help improve our service and provide discounts from web affiliate referrals. Visitors can accept or decline the use of tracking cookies, but it is recommended to accept their use to obtain the best user experience. If a visitor declines the tracking cookies, we must set an essential cookie in order to remember the visitor selection. This declined cookie will expire after 1 day. If the visitor accepts the use of tracking cookies we set an essential cookie to remember the selection. That cookie will expire after 3 months.
To view and access the free content of this website visitors may accept or decline the use of tracking cookies. If a visitor is referred to this website by clicking on an affiliate link from a 3rd party website and wishes to obtain the benefit of a discount voucher then allowing tracking cookies is recommended so that the referral and discount can be properly applied. Affiliate link cookies expire after 1 day.
If you leave a comment on our site without registering as a user you may have to save details like your name, email address and a website which will be stored in cookies. These cookies are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Should you wish to do so, you can also refuse cookies by disabling them in your web browser’s settings, but you may not be able to login or use our services. Most browsers are defaulted to accept and maintain cookies and you can set your browser to notify you when you receive a cookie, giving you the chance to decide whether to accept it or not. Please consult the support documentation for your web browser, which can be found online, for more information.
If you wish to prevent google tracking cookies then google provide a browser plugin. Please see this link…
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Analytics
We use google analytics to monitor and improve our service. We will track visitors to the website to determine what pages they visit. We do this to help ensure that the website is functioning properly and to help improve and protect the content. Google uses cookies to perform the analytics. Reference should be made to the google privacy policy: https://policies.google.com/privacy?hl=en-US
We minimise the use of personal data for tracking purposes and do not use google tracking for advertising, marketing or automated decision making. We do not share Google tracking information with third parties, other than Google who provide the tracking service itself.
Where users log into the website will track all user activity for the purposes of administration and security.
Who we share your data with
We only use data for the purpose of our legitimate business interests and we do not sell or share your data with third parties that have no role in delivering our services to you.
Administrators of the website and employees and agents responding to users and visitors completing forms or requests for information on this website have access to all the contact data provided by you.
Group leaders will have access to the personal data they enter for individuals they enroll in courses and they will also have access to all the course information and statistics for the courses and assessments that their enrolees take.
In the normal course of business, we do not transfer the data we receive outside of the UK / EEA. Some of our business information systems in which we process the data you provide to us may be hosted on the internet by third parties who are classed as sub-processors. If those subprocessors host their services outside of the EEA, we minimise the personal dataused.
Sub Processors
We ensure that we have a data processing agreement in place with all sub-processors.
If visitors and users of this website provide or input personal contact information to us, we may transfer that to other information systems that we administer for the purposes of processing the data. Such processing systems may be hosted by third parties. Access to administer, read, update and delete such data is restricted to our employees and agents only.
Third party information processing systems include:
- Microsoft Office 365
- Zoho (customer service desk)
- Atlassian (Technical support services)
- FreeAgent accounting and Royal bank of Scotland
- Stripe (payment gateway)
- Google Analytics
- Brevo (email service)
Please refer to their respective privacy policies by clicking on the links.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or request deletion of their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
All data relating to purchases will be retained for the minimum period required by UK HMRC.
All data relating to a user course enrollment, course completion, assessment (test) results and statistics will be retained for a predefined period following initial enrollment, regardless of when the user commenced the course. Reference should be made to each course for “expiry” details. When a course is “expired” then course access is revoked and permanent course data deletion is automated.
What rights you have over your data
Your rights are governed by the UK Data Protection act 2018. An explanation of these rights is summarised by the UK Information Commissioners Office (ICO). If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
If you have been enrolled through your organisation, for example by a group leader you should in the first instance speak with the Group Leader or person responsible for training in your organisation.
In order to protect and manage our intellectual property, which is exposed in the member only content, we may retain certain identifying details and activity records indefinitely.
How to contact us about Privacy
Additional information
How we protect your data
Data you enter into this website is protected by technical and organisational controls to prevent unauthorised access.
What third parties we receive data from
We do not receive data about users from third parties, other than website analytics provided by google.
What automated decision making and/or profiling we do with user data
We do not perform automated decision making or automated profiling using user data that you input to this site.