GDPR Privacy Statement
Docklands Academy London (DAL) is committed to protecting your privacy
Docklands Academy London (DAL) is committed to data security and to the fair and transparent processing of personal data. This Privacy Statement sets out how we deal with the personal data which you provide to us, in compliance with the General Data Protection Regulation (GDPR).
Please read this Statement carefully, as it contains important information on how and why we collect, store, use and share personal data, your rights in relation to your personal data. It also states how to contact us and the supervisory authorities in the event of any concern about the way in which we process your data.
Docklands Academy London (DAL) is a not-for-profit company, with premises located at Crossharbour and with registered UK company number 06999859. Our registered address is 261 Green Lanes, Palmers Green, London N13 4XE.
Docklands Academy London (DAL) has appointed a Data Controller, who you can contact if necessary by sending an email to email@example.com.
What personal data do we collect?
We may collect and process the following personal data:
Information about you:
If you are a student, tutor/lecturer, member of staff or administrator at Docklands Academy London (DAL), we may receive information about you when you register or liaise with us to receive products and/or services from us.
Information you provide to us:
- complete a form on our website
- complete a survey
- correspond with us by telephone, e-mail, or in writing
- report a problem
- sign up to receive our communications
- register as a student directly with us
- enter into a contract with us to receive products and/or services,
we may collect and store your name, date of birth, e-mail address, postal address, telephone number and other relevant data that you supply at that time.
If you are aged 16 or under you must get your parent/guardian’s permission before you provide us with your personal information. Unless you have this consent, you are not allowed to give us your information. We will not gather, hold or process any information without such consent.
Information about other people:
If you provide information to us about any person other than yourself, such as your relatives, next of kin, your advisers or your suppliers, you must ensure that they understand how their information will be used, and that they have given their permission for you to disclose it to us and for you to allow us to use it.
Sensitive personal data:
In certain limited cases, we may collect certain sensitive personal data from you, that is, information about your racial or ethnic origin, religious beliefs or details of criminal offences, or genetic or biometric data. However, we will only do so on the basis of your explicit consent
A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website to better tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or to any information about you, other than the data you choose to share with us. You can choose to accept or decline cookies. Some web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may, of course, prevent you from taking full advantage of the website.
How do we use your personal data?
When we ask you to supply us with personal data we will make it clear whether the personal data we are asking for must be supplied so that we can provide the products and services to you, or whether the supply of any personal data we ask for is optional.
We may use your personal data to fulfil a contract, or take steps linked to a contract:
- to provide products and/or services to you
- to communicate with you in relation to the provision of contracted products and services
- to provide you with administrative support, such as account creation, security, and responding to issues
- provide you with industry information, surveys, information about our awards and events, or offers and promotions related to our products and/or services
Where this is necessary for purposes which are in our legitimate interests.
These interests are:
- providing you with newsletters, surveys, information about our awards and events, offers, and promotions, related to products and services offered by Docklands Academy London (DAL) which may be of interest to you
- communicating with you in relation to any issues, complaints, or disputes
- improving the quality of experience when you interact with our products and/or services, including testing the performance and customer experience of our website
- performing analytics on sales/marketing data, determining the effectiveness of promotional campaigns and activities
Note: you have the right to object to the processing of your personal data on the basis of legitimate interests as set out below, under the heading your rights.
Where you have given your explicit consent to receive marketing communications, we may use your personal data to:
- send you newsletters, surveys, information about our awards and events, offers, and promotions, related to products and services offered by Docklands Academy London (DAL) which may be of interest to you
- develop, improve, and deliver marketing and advertise for products and services offered by Docklands Academy London (DAL)
Where required by law:
We may also process your personal data if required by law including responding to requests by government or law enforcement authorities, or for the prevention of crime or fraud.
Who do we share your personal data with?
We take all reasonable steps to ensure that our staff protect your personal data and are aware of their information security obligations. We limit access to your personal data to those who have a genuine business need to know it.
We may also share your personal data with trusted third parties, including legal and other professional advisers, consultants, and professional experts, service providers contracted to us in connection with provision of our products and services, such as providers of IT services and customer relationship management services; and analytics and search engine providers that assist us in the improvement and optimisation of our website.
We will ensure there is a contract in place with the categories of recipients listed above which include obligations in relation to the confidentiality, security, and lawful processing of any personal data shared with them.
Where a third party recipient is located outside the European Economic Area, we will ensure that the transfer of personal data will be protected by appropriate safeguards, namely the use of standard data protection clauses adopted or approved by the European Commission where the data protection authority does not believe that the third country has adequate data protection laws.
We will share personal data with law enforcement or other authorities if required by applicable law.
How long will we keep your personal data?
Where there is a contract between us, we will retain your personal data for the duration of the contract, and for an indefinite period following its termination or expiry, to ensure we are able to comply with any contractual, legal, audit and other regulatory requirements, or any orders from competent courts or authorities. Specifically, student registration and results data will be kept in perpetuity to enable us to confirm validity of awards on request
Where you have consented to marketing communications, you may change your preferences or unsubscribe from marketing communications at any time by clicking the unsubscribe link in an email from us. Consent for marketing communications will be deemed to expire after three years unless renewed.
Where do we store your personal data and how is it protected?
We take reasonable steps to protect your personal data from loss or destruction. We have procedures in place to deal with any suspected data security breach. We will notify you and the Information Commissioner`s Office (ICO) of a suspected data security breach where we are legally required to do so.
If you have a username or password (or other identification information) which enables you to access certain services or parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your personal data transmitted to our website; any transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.
Under GDPR, you have various rights with respect to our use of your personal data:
Right to access:
You have the right to request a copy of the personal data that we hold about you by contacting us by email or post. Please include with your request any information that will enable us to verify your identity. We will respond with 30 days of request.
Please note that there are exceptions to this right. We may be unable to make all information available to you if, for example, making the information available to you would reveal personal data about another person, if we are legally prevented from disclosing such information or if your request is manifestly unfounded or excessive.
Right to rectification:
We aim to keep your personal data accurate and complete. We encourage you to contact us using the contact details provided to let us know if any of your personal data is not accurate or if it changes, so that we can keep your personal data up-to-date.
Right to erasure:
You have the right to request the deletion of your personal data where, for example:
- the personal data are no longer necessary for the purposes for which they were collected
- where you wish to withdraw your consent to processing
- where there is no overriding legitimate interest for us to continue to process your personal data
- if your personal data has been unlawfully processed.
If you would like to request that your personal data is erased, please contact us.
Right to object:
In certain circumstances, you have the right to object to the processing of your personal data where, for example, your personal data is being processed on the basis of legitimate interests and there is no overriding legitimate interest for us to continue to process your personal data, or if your data is being processed for direct marketing purposes. If you would like to object to the processing of your personal data, please contact us.
Right to restrict processing:
In certain circumstances, you have the right to request that we restrict the further processing of your personal data. This right arises where, for example, you have contested the accuracy of the personal data we hold about you and we are verifying the information, you have objected to processing based on legitimate interests and we are considering whether there are any overriding legitimate interests, or the processing is unlawful and you elect that processing is restricted rather than deleted.
Right to data portability:
In certain circumstances, you have the right to request that some of your personal data is provided to you, or to another data controller, in a commonly used, machine-readable format. This right arises where you have provided your personal data to us, the processing is based on consent or the performance of a contract, and processing is carried out by automated means. If you would like to request that your personal data is ported to you, please contact us.
Please note that the GDPR sets out some exceptions to these rights. If we are unable to comply with your request due to an exception we will explain this to you in our response.
If you believe that your data protection rights may have been breached, and we consider that we have been unable to resolve your concern, you may lodge a complaint with the applicable supervisory authority or to seek a remedy through the courts. Please visit //ico.org.uk/concerns/ for more information on how to report a concern to the Information Commissioner’s Office (ICO).
If you would like to contact us about this Privacy Statement, our use of your personal data, or about exercising any of your rights, please contact us:
Docklands Academy London (DAL)
11 Selsdon Way,
0207 515 9695