GDPR Policy

Objectives

The objectives of this policy are

To comply with The General Data Protection Regulation (GDPR) (EU) 2016/679.
To process personal data safely, and in line with current requirements
To ensure consistency across the business in relation to how and why individuals are contacted
To provide transparency to individuals about the data we hold relating to them, and allow them the opportunity to have certain aspects removed when necessary.

Personal Details

PERSONAL DETAI LS HELD BY THE CENTRE

Below is a list of the personal details we currently hold on all registered students.

Full name, including prefix and middle names where applicable
Previous surname (where applicable)
Date of Birth
Address
Contact telephone number
Email
Registration number with awarding organisation (if applicable)
If you feel personally feel that you have restricted learning abilities
Emergency contact and telephone number
Medical conditions, medication or allergies, including GP name and contact number
Disabilities
Learning difficulties

We also ask for permissions for the following:

If you are happy for photographs/videos to be taken and used as evidence or for training purposes
If you are happy for photographs/videos to be taken and used for advertising by our business only (no third parties or advertising rights sold)
If you are happy for your details to be stored and monitored for registration, certification and quality assurance purposes
If you are happy to be contacted during or after your course to review your experience.

This information allows us to ensure our learners are registered on a suitable qualification that meets their career objectives, and allows them to learn in a way that enables achievement and a supportive learning environment.

PERSONAL DETAI LS WHICH MAY BE SHARED

For the purpose of certification for regulated qualifications, we have to share some of the personal details we hold about learners with our Awarding Organisations. Below is a list of the details we may share, and with whom.

Information shared in all cases:

Full name, including prefix and middle names where applicable
Previous surname (where applicable)
Date of Birth
Address
Contact telephone number
Email
Registration number with awarding organisation (if applicable)

Information shared in some cases, and always in agreement with the individual prior to sharing:

If you feel personally feel that you have restricted learning abilities
Medical conditions, medication or allergies, including GP name and contact number
Disabilities
Learning difficulties
Highest and current qualifications, preferred learning style and abilities with core educational tasks
Career plans

Who we share information with:

Awarding organisations are regulated bodies that approve centres to offer their qualifications after a strict approval process. These are government recognized bodies and qualifications.

These organisations use your information for the purpose of certification, and qualification regulation only. These bodies have their own GDPR policies.

Funding companies – where application has been completed by the learner, as the learners own decision, and as an external and separate application to the centre. When a learner applies for funding options to help with part or their entire course costs, it may be necessary to send information regarding the learners progress and achievements to the funding source.

Accreditation bodies are other industry related bodies that have approved our own qualification content, and they may use your information differently, depending on the service they offer. We are less likely to need to share your personal information with these companies. On occasion, we may need to confirm your position on a training programme with us. Please refer to their own GDPR statements for how they may process your information

VTCT www.vtct.org.uk +44 (0) 23 8068 4500

PROFESSIONAL BEAUTY Professional Beauty Insurance | Beauty Therapy Insurance UK (professionalbeautydirect.co.uk)

Both of which are GDPR compliant.

Obtaining consent

We will always explicitly ask you on more than one occasion to give consent for us to store your data.

If you do not give us consent to storing your data, we may not be able to continue with the service offered, due to the nature of our record keeping requirements.

ASKING FOR CONSENT

We will ask you to consent to us storing your data during the following activities:

Enrolling onto a training program
Being put onto a specific mailing list including:
- Latest training course dates
- Waiting lists for specific courses
- Updates to our terms, conditions and any accreditation/approval changes

REMOVING YOUR CONSENT

As a company, we want you to be happy with the information processes we adopt. We will ensure the following:

You have an easy opt out of mailing lists
You are able to request a copy of the personal information we hold on you

Please be aware that we are not able to delete your information and remove it from our centre records if you have enrolled and started any training program with us, even if you have only attended an induction. For our own insurance and responsibilities to our awarding/accrediting and funding organisations, we must store all relevant information for 7 years.

Please see ‘Storing information’ for details on which information is considered relevant.

Cookies

What is a ‘cookie’? When you enter a site, your computer will automatically be issued with a cookie. Cookies are text files that identify your computer to our server. Cookies in themselves do not contain any personal identifying information about a visitor or their location. They just identify the computer used. Many sites do this whenever a user visits their site in order to track traffic flows and patterns of behaviour of site visitors.

You can see a schedule of the cookies we use and adjust your cookie consent preferences via our Cookie Policy.

Storing information

To maintain our processes within awarding organization and accrediting bodies requirements, we must keep ‘relevant’ records of learners for up to 7 years, depending on the type of information.

The information considered relevant, and their storage time is listed below.

Kept for 7 years

Information
Storage requirements
Full name, including prefix and middle names
where applicable
Previous surname (where applicable)
Date of Birth
Address
Contact telephone number
Email
Registration number with awarding organisaton (if applicable)

Duration of the course

If you feel personally feel that you have restricted learning abilities
Emergency contact and telephone number
Medical conditions, medication or allergies,
including GP name and contact number
Disabilities
Highest and current qualifications,
Preferred learning style and abilities with core
educational tasks
Career plans
Learning difficulties Duration of course, or 7 years if reasonable adjustments were applied to assessment

All information supplied to us is stored online using a safe and GDPR compliant system.

All online storage is password protected, with appropriate levels of log in for other staff directly affected by the information.

Data is not saved on individual computers, and access is limited to the Data Controller, or appointed staff who have a direct need for information to be able to complete their task safely and to regulated standards.

Any technology used to access the information is protected by trusted anti-virus and malware software appropriate to the equipment.

Data Controller

The company does not exceed the level of data to contract a role specific Data Controller, however, as a measure of good practice, ETS have registered with the Information Commissioners Office.

The current registered Data Controller/s is/are:

Katie Newman- Havering Beauty Academy 01708472727 or [email protected]

Other roles within the organisation that may have access to your records:

Tutor/assessor
Internal Quality Assurer
Centre Management
Learning Support Co-ordinator

RESPONSIBILITIES

The data controller is responsible for the following:

Processing personal data in line with current legislation
Processing data in a safe and secure fashion
Ensuring as far as practical that passwords for systems storing data remain secure
Organising and allocating passwords and appropriate access levels to others involved in the use of data
Editing and removing data in line with timescales, client requirements and consent
Reporting a breach within 72 hours of the occurrence
Evaluating, authenticating, approving and supplying copies of requested data

Changes to your data

If you would like to make changes to the data we hold on you, please contact the Data Controller on [email protected]

You will need to state which pieces of data you would like to change and give reason or possibly evidence for the change. Please note, this will not mean that previous data is removed.

Requesting a copy of your data

if you would like a copy of the data we hold on you, please contact the Data Controller, and request a full copy of your data record.

We aim to respond in 3-5 working days.

Sarah Larvin

06:24 08 Feb 22

In 2021 I completed my level 3 AET through Havering Beauty Academy. Katie was really helpful throughout with any questions I had. The process was straight forward and well managed. It was great to be able to get my level 3 AET somewhere that focused in the beauty industry as I will be teaching in this industry it was tailored to my needs. Many thanks to Havering Beauty.

Maria Hayllar

23:44 05 Feb 22

I did a teaching qualification with katie when there were many covid restrictions in place. Katie managed to still carry out the course with zoom classes which were carried out in a professional but yet relaxed manner.Once the covid restrictions eased I was able to go to the academy to finish my teaching course. I was very pleased with how I was taught and was over the moon to have had passed my course.I am looking at starting the assessors course this year to complete my teaching qualifications.Would highly recommend this academy to anyone looking at doing a beauty or hair course.

Kym Pulham

07:24 02 Dec 21

Have recently had the collagen lift facial with the amazing Ashleigh, my skin looks and feels lifted and tightened, Ashleigh is extremely professional and I am looking forward to having more treatments .

Emily Tyrrell

19:52 16 Nov 21

Have always been happy with the treatments I’ve had, lash lift, eyebrows and nails. Everyone is always friendly and helpful, really recommend Havering beauty!

Dorina Ésik

17:40 13 Oct 21

I had my level 2 beauty training and level 3 intimate waxing with Havering Beauty Academy. My tutor Angelique is one of the most patient, professional, supportive and kindest tutor I ever had, also I got a lots of support and help from Katy who is always there and happy to help even today, any time I go to her with any questions. I already spoke to her to take my next, third course with them which I can’t wait 😍