Safeguarding Your Privacy
We view the maintenance of the privacy of the users of this site as one of our highest priorities. No details will ever be sold on for the use of third parties and we will only ever be in contact with you on matters relating directly to the provision of our services. We will use best practice at all times to maintain the security of the data we hold.
In accordance with the new GDPR guidelines, this top section of our policy is designed to be easy to read and succinct.
We collect personal data in order to run our teaching processes and send information to those who have requested it, but not for any other purpose. The personal contact data we hold are the phone, email and postal address of the parents who have contacted us, plus the name and birthdate of each learner. In addition to that, we keep a track of the performance of each learner in the system activities and the correspondence between the team here and each parent or teacher.
Our shopping cart partner holds the credit card details of each subscriber to our services and keeps a track of payments made.
Data Breach Notification
If our data security systems were to be compromised, we would alert our database of that breach.
Right to Access
We are happy to share all the data we store on any account holder, with that account holder. Most of it is viewable in the admin zone of the account in any case.
Right to be Forgotten
If any account holder wants to have their record deleted, we can do that on request. A significant number of clients recontact us for help with siblings and so we do not routinely delete old accounts.
We can supply the data we hold in a CSV format on request.
Privacy by Design
We update our server systems and security processes to keep up with current best practice. The privacy of our clients and learners is viewed as a high priority for us. There is no such thing as an unhackable data store, but we do everything we reasonably can to make a data breach unlikely.
Data Protection Officer
As a small company, the duty of care for data protection lies with our CEO, David Morgan. David works with outside consultant specialists to ensure that best data security practice is maintained by the whole team.
Cookies are small files saved to the user’s computers hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors.
The site uses tracking tags for Facebook and Twitter to allow us to reduce advertising costs on those platforms by targeting ads at visitors who seem most interested in the content on the site.
All tracking is placed purely for our own use only and will not be shared. It is designed to improve the efficiency and relevance of our advertising processes, to reduce costs for the organisation and also to avoid irrelevant adverts being placed in an irritating way for other Internet users.
Other cookies may be stored to your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
Your personal information is kept private and stored securely until a time it is no longer required or has no use, as detailed in the Data Protection Act 1998. Every effort has been made to ensure a safe and secure form to email submission process but advise users using such form to email processes that they do so at their own risk.
This website and its owners use any information submitted to provide you with further information about the products / services they offer or to assist you in answering any questions or queries you may have submitted and assisting people with our education services. This includes using your details to subscribe you to any email newsletter program the website operates but only if this was made clear to you and your express permission was granted when submitting any form to email process. Or whereby you the consumer have previously purchased from or enquired about purchasing from the company a product or service that the email newsletter relates to. This is by no means an entire list of your user rights in regard to receiving email marketing material. Your details are not passed on to any third parties.
This website operates an email newsletter program, used to inform subscribers about products and services supplied by this website. Users can subscribe through an online automated process should they wish to do so but do so at their own discretion. Some subscriptions may be manually processed through prior written agreement with the user.
Subscriptions are taken in compliance with UK Spam Laws detailed in the Privacy and Electronic Communications Regulations 2003. All personal details relating to subscriptions are held securely and in accordance with the Data Protection Act 1998. No personal details are passed on to third parties nor shared with companies / people outside of the company that operates this website. Under the Data Protection Act 1998 you may request a copy of personal information held about you by this website’s email newsletter program.
In compliance with UK Spam Laws and the Privacy and Electronic Communications Regulations 2003 subscribers are given the opportunity to un-subscribe at any time through an automated system. This process is detailed at the footer of each email campaign. If an automated un-subscription system is unavailable clear instructions on how to un-subscribe will by detailed instead.
Social Media Platforms
Communication, engagement and actions taken through external social media platforms that this website and its owners participate on are custom to the terms and conditions as well as the privacy policies held with each social media platform respectively.
Users are advised to use social media platforms wisely and communicate / engage upon them with due care and caution in regard to their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.
This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.
Shortened Links in Social Media
This website and its owners through their social media platform accounts may share web links to relevant web pages. By default some social media platforms shorten lengthy urls [web addresses] (this is an example: http://bit.ly/zyVUBo).
Users are advised to take caution and good judgement before clicking any shortened urls published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine urls are published many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.
California Online Privacy Protection Act
According to CalOPPA we agree to the following:
Users can visit our site anonymously
Users are able to change their personal information:
• By emailing us
• By calling us
• By logging into their account
• By chatting with us or sending us a ticket
How does our site handle do not track signals?
We honour do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not market to children under 13, even though our education systems are designed to be used by children under 13.
We do not share any child data with any third parties or partners.
We only collect a name or nickname or other indicator (as entered by the parent or teacher) to allow identification of the child using our systems by the parent or teacher (e.g. in a class list of children using the app).
We do collect the birth date of the child in order to allow us to wish the child a happy birthday and in order for us to collate anonymous data on how children progress at different ages. This allows us to optimise the experience in our apps for children as they use the apps.
We collect the gender of children purely in order to be able to refer them by the appropriate pronoun.
Any information requested from the children on our systems is purely requested for the benefit of the children using the systems, either directly or through the optimisation of the underlying systems (e.g. fun ratings help us know which games are liked and disliked).
All the information held by us is visible to the linked parent or teacher for that child and can be deleted on request (by message, email or phone call).
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via email
• Within 7 business days
We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questions.
• Process orders and to send information and updates pertaining to orders
• We may also send you additional information related to your product and/or service.
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred
To be accordance with CANSPAM we agree to the following:
• NOT use false, or misleading subjects or email addresses
• Identify the message as an advertisement in some reasonable way
• Include the physical address of our business or site headquarters
• Monitor third party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly
• Allow users to unsubscribe by using the link at the bottom of each email
If at any time you would like to unsubscribe from receiving future emails, you can
• Follow the instructions at the bottom of each email.
Oxford Learning Solutions
29 Beaumont Street
Last Edited on 18th December 2018.
Resources & Further Information
Data Protection Act 1998
Privacy and Electronic Communications Regulations 2003