.png)
Privacy Policy
Policy Overview
At JD Aesthetics Training Academy Limited, we are committed to protecting the privacy and confidentiality of personal data collected during the provision of our education and training services. This Privacy Policy outlines how we collect, use, store, and protect the personal information of learners, staff, and other individuals associated with our programs. We ensure that all personal data is handled in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.
1. Information We Collect
We collect a range of personal information in the course of delivering education and training services. This information is necessary for the effective administration and management of training programs. The types of personal data we may collect include:
Personal Identification Information: Name, date of birth, gender, contact details (e.g., address, email address, phone number).
Educational Information: Academic records, qualifications, enrollment details, training course progress, assessments, and results.
Health and Safety Information: Details about any medical conditions or disabilities that may affect learning, special accommodations required, or other health-related information (when necessary for the provision of training).
Payment Information: Bank account details, payment history, and financial information related to course fees and other transactions.
Communications Data: Correspondence with learners or staff, such as emails, phone calls, or messages.
2. How We Use Your Information
We use the personal data we collect for the following purposes:
Providing Training and Educational Services: To register learners for courses, manage their progress, issue certifications, and ensure that learning outcomes are achieved.
Communication: To contact learners, staff, or stakeholders about course information, schedules, updates, and important notices related to the training program.
Health and Safety: To ensure that learners’ health and safety needs are met, including any special accommodations required.
Compliance with Legal and Regulatory Requirements: To meet legal and contractual obligations, including providing information to regulatory bodies, accreditation agencies, or exam boards.
Improvement of Services: To analyze feedback and improve the quality of training programs, resources, and learner support.
Financial Administration: To process payments, manage billing, and maintain financial records related to the provision of educational services.
3. Legal Basis for Processing Data
Under the GDPR, we must have a legal basis for processing personal data. For the purposes outlined above, we rely on the following legal grounds:
Contractual Necessity: Processing of personal data is necessary to fulfill our contractual obligations to provide educational services to learners.
Legal Obligation: We may process personal data to comply with legal requirements, such as reporting to regulatory bodies or tax authorities.
Legitimate Interests: In some cases, we may process personal data for legitimate interests, such as improving our services or responding to inquiries.
Consent: We may seek explicit consent for the processing of sensitive data, such as health information, where applicable.
4. How We Protect Your Information
We take the protection of personal data seriously and implement a range of measures to ensure its security:
Physical Security: Our premises are secure, and access to personal data is restricted to authorized personnel only.
Technical Security: We use encryption, secure servers, and firewalls to protect personal data from unauthorized access or breaches.
Access Control: Only employees and authorized personnel who need access to personal data to carry out their duties are permitted to access it.
Data Minimization: We collect only the minimum amount of personal data required to meet our obligations and services.
Training and Awareness: Staff members receive training on data protection and confidentiality to ensure they handle personal data responsibly.
5. Sharing Your Information
We will not share your personal data with third parties unless:
You Give Us Consent: We may share personal data with third parties if you have explicitly consented to it (for example, sharing contact details with course partners or external exam bodies).
Legal or Regulatory Requirements: We may share personal data to comply with a legal obligation or regulatory requirement, such as reporting to accreditation bodies or government agencies.
Service Providers: We may engage third-party service providers (e.g., payment processors, IT services) to assist with certain operations. These third parties are bound by confidentiality agreements and are required to comply with data protection laws.
We will not sell, rent, or otherwise disclose your personal data to third parties for marketing purposes.
6. Your Rights Regarding Your Data
Under data protection law, you have certain rights regarding your personal data, including:
Access: You have the right to request a copy of the personal data we hold about you.
Correction: You can request that we correct any inaccurate or incomplete personal data.
Erasure: You can ask us to delete your personal data, subject to certain conditions (e.g., if we no longer need it for the purposes it was collected).
Restriction: You can request that we restrict the processing of your personal data in certain circumstances (e.g., if you contest the accuracy of the data).
Portability: You have the right to request a copy of your personal data in a commonly used, machine-readable format for transfer to another organization.
Objection: You can object to the processing of your personal data in certain situations, including direct marketing.
Withdrawal of Consent: Where we rely on your consent for processing, you have the right to withdraw your consent at any time.
If you wish to exercise any of these rights, please contact us using the contact details provided below.
7. Retention of Personal Data
We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, or as required by law. When personal data is no longer required, it will be securely deleted or anonymized.
For example, learner records may be retained for a minimum period to meet regulatory or certification requirements but will be securely deleted or archived once that period has passed.
8. Cookies and Tracking
We use cookies and similar tracking technologies on our website to enhance the user experience and improve our services. For detailed information on how we use cookies, please refer to our [Cookies Policy].
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. When changes are made, we will update the “Last Updated” date at the top of the policy and notify individuals where appropriate.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us:
Data Protection Officer: Joanne Daley
Email: jdaesthetics.cheshire@gmail.com
Phone: 07712106586