We use cookies to give you the best online experience. By using our website, you agree to our use of cookies in accordance with our Privacy Policy.

Privacy Policy - TLP

This Privacy Policy explains how we use and store any personal information you provide to us through www.learning.tree-house.co.uk (the "TLP") or when contacting us in relation to our services.

The Company is aware of its obligations under the General Data Protection Regulation (GDPR) and is committed to processing your data securely and transparently. This privacy notice sets out, in line with GDPR, the types of data that we hold on you as user of the TLP. It also sets out how we use that information, how long we keep it for and other relevant information about your data.

 

Data controller details

The Company is a data controller, meaning that it determines the processes to be used when using your personal data. Our contact details are as follows The Treehouse at Hawkley Cottage, Fidges Lane, Eastcombe, Gloucestershire, GL6 7DQ, telephone: 01452 770 680 and email  enquiries@tree-house.co.uk.

 

Data protection principles

In relation to your personal data, we will:

  • process it fairly, lawfully and in a clear, transparent way
  • collect your data only for reasons that we find proper for the course of your engagement in ways that have been explained to you
  • only use it in the way that we have told you about
  • ensure it is correct and up to date
  • keep your data for only as long as we need it
  • process it in a way that ensures it will not be used for anything that you are not aware of or have consented to (as appropriate), lost or destroyed.

 

Types of data we process

We hold the following data about you:

  • Contact data and personal details such as first name, last name, business email address.
  • Registration data when you create an account on the TLP, such as username, userID and password
  • Training programme participation data such as training topic, discussion block opinions, registration, attendance, completion and certifications
  • Payment data such as open and paid fees for training programmes

 

How we collect your data

We normally collect data directly from you when you register for a course.

Personal data is kept within the TLP, and within our company IT systems for email contacting purposes.

 

Why we process your data

The law on data protection allows us to process your data for certain reasons only:

  • in order to perform the contract that we are party to
  • in order to carry out legally required duties
  • in order for us to carry out our legitimate interests
  • to protect your interests
  • where something is done in the public interest and
  • where we have obtained your consent.

 

All of the processing carried out by us falls into one of the permitted reasons. Generally, we will rely on the first three reasons set out above to process your data. For example, we need to collect your personal data in order to:

  • register and allow you access to the TLP to complete your training course
  • process your payment for the course

 

Sharing your data

Your data will be shared only with employees within the Company where it is necessary for them to undertake their duties.

We share your data with third parties in order to allow you access to the TLP.

We may also share your data with third parties as part of a Company sale or restructure, or for other reasons to comply with a legal obligation upon us.

We do not share your data with bodies outside of the European Economic Area.

 

Protecting your data

We are aware of the requirement to ensure your data is protected against accidental loss or disclosure, destruction and abuse. We have implemented processes to guard against such.

Where we share your data with third parties, we provide written instructions to them to ensure that your data are held securely and in line with GDPR requirements. Third parties must implement appropriate technical and organisational measures to ensure the security of your data.

 

How long we keep your data for

In line with data protection principles, we only keep your data for as long as we need it, which will be at least for the duration of your training course with us and at least 12 months afterwards. After this period, your personal data will be deleted or processed in an anonymized way for legitimate business purposes.

 

How Can I Access My Personal Data?

If you want to know what personal data we have about you, you can ask us for details of that personal data and for a copy of it (where any such personal data is held). This is known as a “subject access request”. To do so please use the contact details at the top of this document.

There is not normally any charge for a subject access request. If your request is ‘manifestly unfounded or excessive’ (for example, if you make repetitive requests) a fee may be charged to cover our administrative costs in responding.

We will respond to your subject access request within 28 days and, in any case, not more than one month of receiving it. Normally, we aim to provide a complete response, including a copy of your personal data within that time. In some cases, however, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be kept fully informed of our progress.

Where you have provided consent to our use of your data, you also have the unrestricted right to withdraw that consent at any time. Withdrawing your consent means that we will stop processing the data that you had previously given us consent to use. There will be no consequences for withdrawing your consent. However, in some cases, we may continue to use the data where so permitted by having a legitimate reason for doing so.

 

Making a complaint

The supervisory authority in the UK for data protection matters is the Information Commissioner (ICO). If you think your data protection rights have been breached in any way by us, you are able to make a complaint to the ICO.