Enlighten Training & Consultancy Ltd (company number 08399144) of Golden Cross House Duncannon Street, Office 511, London, England, WC2N 4JF respects the privacy of our clients, customers, learners and associates and are committed to to protecting your data and respecting your privacy. This policy provides the basis upon which we collect personal data, and how this will be processed in accordance with UK General Data Protection Regulation (UK GDPR).

Our Data Privacy and Protection Policy offers you a thorough explanation regarding your personal data provided to us or any data we may collect from you.  This Privacy Policy is reviewed and updated from time to time by our Data Protection Officer (DPO), Eleanor Pyemont, ellie.pyemont@enlightentraining.org 

This policy contains the following sections:

  1. How do we collect data from you?
  2. Why do we collect personal data?
  3. How do we store your data and keep it secure?
  4. How long do we keep your information for?
  5. Who do we share your data with?
  6. What are your rights?
  7. Cookies
1. Collecting data
  • Information you provide us with. This is information you provide by filling in forms (digital or hard copy), via email, over the phone or otherwise. This includes information you provide when interacting with our website and other online services such as our learning platform, EnlightenOnline.
  • Information we collect when you interact with our online services. When you visit our website, we automatically collect your Internet protocol (IP), information about your operating system, browser type, and what type of device you are using, traffic data, location data, weblogs and other communication data and the material that you access.
  • Information we collect from other sources. We work closely with other organisations including your employer or training provider.
2. Purpose of data collection
  • To provide our services including providing a personalised experience for our learners, customers, clients and associates.
  • To evaluate and improve our products and services.
  • To keep a record of services and training provided and provide this record to appropriate bodies such as your employer or training provider.
  • To measure our effectiveness in delivering our products and services.
  • To send marketing communication and measure its impact.
  • For audit and accreditation purposes and to keep our systems secure.
3. Data storage
  • Locations outside the European Economic Area may be used for transferring data we collect about you. These data sites are for storing or processing of your information. The information we share outside the European Economic Area may be shared with staff based on the process and storage of said data. It may include such processes as processing a payment or offering support for your service or product needs. 
  • The staff processing or storing information may work for our suppliers outside the European Economic Area. By submitting your data to use you have agreed to this transfer and storage of data. We take all reasonable action to ensure the safety of your personal data in agreement with this Privacy Policy.
  • Information we are provided will be stored on secure servers. Transaction data is encrypted for your safety.
  • You should understand data via online transmission is not completely secure. We cannot guarantee full protection and security data, only that we take all reasonable action to protect information sent to us electronically. Transmission of any data by you is at your own risk. Where applicable you may be given access to sections of our site that require a password. You are responsible for the passwords safety and confidentiality.
4. Data retention
  • We review all personal data stored on an annual basis. 
  • Personal data of individuals we have not interacted with for a period of 4 years or more will be removed from our systems with the exception of:
    • Records complaints.
    • Training records.
    • For these purposes we will retain your name, role information, qualifications, correspondence, and a record of your interaction with services related to training.
5. Data sharing
  • At times we may disclose personal information to persons in our group. This can include subsidiaries, holding companies, or any other subsidiaries involved in our business, if applicable. Third Party disclosure may occur for the following reasons:
    • Selling any or all of our business to a third party may result in sharing your information
    • When we are legally required to we may disclose information about you and your visits to our sites
    • To prevent fraud and help in fraud protection in order to reduce credit risk
  • We may use data or allow third parties to use information that is not related to goods or services you may be interested in. We, or third parties, contact you only if consent has been provided by you at any time, based on information we collected.
  • Any new customer can only be contacted by us, or third parties, if consent has been offered via our site. We only send communications you have consented to.
  • Anyone who does not wish to give consent for our site or third party use has the opportunity to decline. Once we receive your withhold for consent we will remove your details from any mailings or third party communications.
  • No information collected about you will offer identifiable characteristics. Information shared to a third party is statistical only. We will not reveal who you are, only mathematical information about our visitors.
  • Third party links may be discovered on our site. These third party links have their own privacy policy, which you agree to when you click on the link. We are not responsible nor do we accept responsibility for third party links. Our liability covers us only on our site, and thus we do not accept liability for third party links as we have no control over them.
6. Your rights
  • You have the right to be informed about how we collect and use your data.
  • You have the right to access your data. You may make a Subject Access Request (SAR) verbally or in writing, for which we charge a £10 administration fee. The fee covers our costs for processing your request and getting the data to you. We will respond to this request within one month.
  • You have the right to correct any inaccuracies or incomplete information we hold on you. 
  • You have the right to have your personal information removed. 
  • You have the right to restrict our processing of your personal data.
  • You have the right to data portability. This means you can obtain and reuse your personal data for your own purposes across different services.
  • You have the right to object to the processing of your personal data. This may be for a particular purpose, for example, direct marketing.
  • You have the rights related to automated decision making. See here for more information on this and all other rights.
7. Cookie usage
  • There are instances where we may use cookies to gather information regarding our services in a mathematical collection for our website and our advertisers.  Any information collected will not have any identifying data. It is statistical data about our visitors and how they have used our site. No personal details will be shared that could identify you.
  • We may assemble information about your common internet use with a cookie file. When used, the cookies are downloaded to your computer automatically. The cookie is stored on the hard drive, with transferred information. The data sought by the cookie helps us improve our website and any service offered to you.
  • Your browser has the ability to decline cookies. This is done by setting your browser options to decline all cookies. 

Note: if you do decline the download of cookies, some aspects of our site may not work or allow you access.

  • Our advertisers may download cookies to which we have no control. If used, these cookies are downloaded by clicking on an advertisement found on our website.