PRIVACY & DATA

Privacy & Data

Privacy Notice
This privacy policy explains how we collect and use any personal information as part of our business. 
What information do we collect?
The personal information we collect from our customers falls into two basic categories:
  • Customer information needed to communicate as part of marketing, logistics and financial aspect of the services we provide. This will only be information relating to :
    • business contact information such as contact names, business email addresses, business telephone numbers (mobile and landline), business mailing addresses
    • Information on the type of services relevant to you, agreed payment terms, venues used and delivery dates
  • Customer information for those that have attended our workshops and training seminars, which will be limited to:
    • First and last name
    • The name of the courses attended
    • The date and location of the courses attended
We will never collect or keep any additional personal information about our customers or course delegates.
We will never pass on personal information we hold to a third party without the explicit consent of the customer and for a specified purpose (for example where one customer has agreed to provide a reference to another customer).

How will we use the information about you?
We will use this information in the following ways:
  • To contact our customers in order to:
    • Provide information about the services we offer
    • Make arrangements for courses that are being delivered
    • Send post-course communications and certificates
    • Send invoicing and other payment related communications
  •  To keep a record of all customers that have attended our workshops and seminars for the following reasons:
    • Provide a record of attendance that clients can refer to at a later date
    • Protect our legal rights in the event that training attendance is a matter of interest in future any legal proceedings
    • Enable delegate-customers to request copies of historical certificates that they have lost
    • Provide delegate-customers with a method of confirming attendance personal development events to a new employer
What is the legal basis for collecting & processing this data?
This privacy notice has been set out to comply with the provisions of the General Data Protection Regulation (GDPR). Under GDPR there are a number of legal bases on which organisations can rely when processing personal data. We process personal data on the basis of Legitimate Interest. That is, we believe it is in the legitimate interest of both our company and our customers for this data to be processed in this way because:
  • There is no legal requirement to process this data
  • There is a clear benefit for both CMS and our customers for the data to be processed in this way
  • There is very limited privacy impact on the individual
How can you get access to your information?
You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please email info@cmstraining.net or write to us at 3 Priory Court, Tuscam Way, Camberley GU15 3YX. We will provide this information free of charge.

What other rights do I have?
You have the right to:
  • Be informed about the collection of your personal information
    • This privacy notice will be posted prominently on our website and links to it provided in all our communications
  • Have inaccurate information rectified
    • You can contact us at the above addresses and request corrections to any data that is inaccurate. We will respond to any requests immediately and in any case within one month of receipt
  • Have personal data erased
    • We will carefully consider any request to have personal data erased. However, where we consider it to be in the legitimate interest of CMS Training or our customer for data to be retained, we may refuse such a request (for example, a request to delete a record of attendance on a training course may be detrimental to a client in any future legal proceedings)
  • Request the restriction or suppression of your personal data
    • We will carefully consider any request to restrict processing of personal data. However, where we consider it to be in the legitimate interest of CMS Training or our customer for data to continue to be processed, we may refuse such a request (for example, a request to not send further communications would require a note on our systems to facilitate that preference)
  • Obtain and reuse their personal data for their own purposes across different services
    • As we hold such limited data it is unlikely that such a right is relevant to our processing. However, we will respond positively to any requests to transfer data to a third party 
  • Object to the processing of their personal data in certain circumstances
    • We will carefully consider any objections to processing personal data. However, where we consider it to be in the legitimate interest of CMS Training or our customer for data to be processed, we may refuse such a request (for example, an objection to a record of attendance on a training course may be detrimental to a client in any future legal proceedings)
  • Challenge the use of automated profiling
    • We do not use any type of automated decision making or profiling 
This policy will be reviewed bi-annually and also on implementation of the anticipated Data Protection Act 2018.
New Paragraph.

If you have any questions regarding our data policy,p please contact us via the contacts page on this website.
Share by: