ITSM Service Excellence Ltd (“we”, “our” or “us”) is dedicated to safeguarding your privacy. This Privacy Notice outlines how we utilize the personal information we collect from you or that you provide when you:

Depending on the nature of the services we provide, ITSM Service Excellence Ltd may act as a Data Controller or a Data Processor in our relationship with you.

Please read this notice carefully as it contains vital information about who we are, how and why we collect, store, use, and share your personal data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in case of complaints.

We collect, use, and are responsible for certain personal data about you, subject to the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (EU GDPR) for services offered to individuals within the European Economic Area (EEA). Other rules and regulations may apply depending on the services we offer in other countries.

Information We Collect:

We collect personal information from you through various means, such as forms on our website, creating an account on our website, and when you communicate with us. We may also process special category personal data, such as health-related information, which requires additional protection under data protection law.

Some of the personal information we collect includes your name, contact information, identity verification, gender, location data, billing information, and responses to surveys.

 

Information We Collect Automatically:

When you visit our website, we may automatically collect certain information from your device, such as your IP address, device type, browser-type, and pages accessed. This helps us understand our visitors better and improve the quality of our website.

 

Information We Obtain from Third Party Sources:

We may receive personal information about you from third-party sources, such as your employer or agencies if you apply for study or employment. We use this information to provide the requested service or process your application.

 

Use of Your Information:

We primarily use your personal information to provide our Services to you and for various other purposes, including marketing, quality control, and compliance with legal and regulatory obligations.Refunds:

Refunds may take up to 15 working days to process and will be issued through the original payment method.

Course examination vouchers are non-refundable.

 

Changes to Courses:

ITSM Service Excellence may change or reschedule courses due to unforeseen circumstances.

Course timetables are advisory and subject to change.

 

Storing and Retaining Your Personal Data:

We store your personal information on secure servers and use appropriate measures to protect it. However, we cannot guarantee the security of data sent to us electronically. We retain your data as long as necessary for legitimate business needs or to comply with legal requirements.

We may share your personal information with various entities under our corporate group, including subsidiaries and our holding company and its subsidiaries, where lawful bases exist.

Additionally, we may disclose your personal information to the following parties:

  1. Third-party service providers and partners who assist us with data processing services, including the delivery of our Services, or for purposes outlined in this Privacy Notice.
  2. Your employer when they have funded or instructed the goods or services provided to you. This may include information about your progression, assessment, attainment, exam results, or other relevant personal data.
  3. Exam certification bodies, in cases where reasonable adjustments are necessary on health grounds.
  4. Third parties that have funded the services we provide to you or your organization.
  5. Purchasing organizations or course vendors, in connection with any product evaluation or feedback you provide.
  6. NHS or other authorized government agencies, in relation to COVID-19 containment measures or other crisis management scenarios.
  7. Government agencies, as required by the scheme or education path you choose to follow.
  8. To comply with our legal and regulatory obligations, including applicable legislation regarding COVID-19 test and trace or other crisis management schemes.
  9. The ESFA (Education and Skills Funding Agency) or similar government organizations, to provide data and information as necessary.
  10. Partners with whom we collaborate to deliver Services, such as course vendors, examination bodies, customer suppliers, and trainers.
  11. Regulatory bodies or other third parties for audits, enquiries, or investigations in compliance with applicable laws.
  12. Other commercial organizations for potential work placements, or participation in employment fairs.
  13. Any third party involved in or during negotiations of a merger, sale of company assets, financing, or acquisition of our business, in whole or part, by another company.
  14. Law enforcement agencies, courts, regulators, government authorities, or other third parties, if necessary to comply with legal or regulatory obligations, protect our rights, or the rights of any third party. In certain circumstances, we may not be able to inform you of such disclosure to avoid compromising any investigation or proceedings.
  15. Any other person with your consent to the disclosure.

If you are a customer or prospective customer, we may share your data with third-party marketing organizations to identify products and services that may interest you. The personal data used for marketing purposes may include contact details such as your name, address, phone number, and email address. Please note that when sharing with these third-party marketing organizations, your data may be processed in countries inside or outside the European Economic Area (EEA).

 

Disclosing Your Information:

We may disclose your personal information to certain third parties, such as service providers, partners, regulatory bodies, and law enforcement agencies, as required for providing our Services or complying with legal obligations.

 

Third-Party Links:

Our website or provided documentation may contain links to third-party websites. If you access these links, the operators of these sites may collect information from you in accordance with their own Privacy Notices, which you should review. Please be aware that we have no control over these third-party policies and do not accept any responsibility or liability for them.

 

Social Networking:

The Website may offer you the option to share or follow information about us, the website, or our services through third-party social networking functionality (such as “share this,” “like,” or “follow” buttons). This feature is designed to create interest in us and our services among your social networks and allows you to share opinions, news, and recommendations with your friends. However, sharing personal or non-personal information with a social network may result in that information being collected by the social network provider and made publicly available, including through Internet search engines. We do not exercise control over the policies or practices of any third-party social network accessed through the website, and we recommend carefully reading their Privacy Notices to understand their privacy and information usage practices.

 

International Data Transfers:

Some of our Services may involve the transfer of your personal information to countries outside of the European Economic Area (EEA). We have implemented appropriate safeguards to ensure that your personal information remains protected in accordance with this Privacy Notice. These safeguards may include transferring your data to third parties in countries with data protection laws deemed as protective as those in Europe by the European Commission or transferring your data to third parties that have entered into standard contractual clauses with us. For further details on these safeguards, please contact us using the provided contact details.

We are aware of our obligations as of March 2022 concerning international data transfers and strive to conduct a risk assessment for transferring personal data internationally. This may include compliance with the EU Standard Contractual Clauses with the addition of the UK addendum or the International Data Transfer Agreement, in order to meet legal and regulatory requirements.

 

Lawful Basis (EEA Visitors Only):

The lawful basis for collecting and using personal information depends on the context, such as contract performance, legitimate interests, or consent.

 

Marketing:

We may use your personal data for marketing purposes, and you have the right to opt-out of marketing communications at any time.

 

Data Protection Rights:

You have the right to access, correct, update, or request deletion of your personal information, as well as object to processing or request data portability. You can also withdraw consent and lodge a complaint with a data protection authority.

We respond to all requests related to data protection rights in compliance with applicable data protection laws.