This privacy statement was last updated on October 19, 2022 and applies to citizens and legal permanent residents of the United Kingdom.
In this privacy statement, we explain what we do with the data we obtain about you via https://boxcourses.co.uk. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:
- we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
- we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
- we first request your explicit consent to process your personal data in cases requiring your consent;
- we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
- we respect your right to access your personal data or have it corrected or deleted, at your request.
If you have any questions, or want to know exactly what data we keep of you, please contact us.
1. Purpose, data and retention period
We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)1.1 Contact – Through phone, mail, email and/or webforms
1.1 Contact – Through phone, mail, email and/or webforms
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.2 Payments
1.2 Payments
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
- A telephone number
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.3 Newsletters
1.3 Newsletters
For this purpose we use the following data:
- A first and last name
- An email address
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.4 To support services or products that a customer wants to buy or has purchased
1.4 To support services or products that a customer wants to buy or has purchased
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
- A telephone number
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.5 To be able to comply with legal obligations
1.5 To be able to comply with legal obligations
For this purpose we use the following data:
- A first and last name
- A home or other physical address, including street name and name of a city or town
- An email address
- A telephone number
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
1.6 Compiling and analyzing statistics for website improvement.
1.6 Compiling and analyzing statistics for website improvement.
For this purpose we use the following data:
- Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement
The basis on which we may process these data is:
Upon the provision of consent.
Retention period
We retain this data until the service is terminated.
2. Sharing with other parties
We only share or disclose this data to processors for the following purposes:
Processors
Name: PayPal
Country:
Purpose: Processing payments for BOX Courses
Name: Google
Country:
Purpose: Collecting website visitor and interaction data
3. Cookies
Our website uses cookies. For more information about cookies, please refer to our Cookie Policy.
4. Disclosure practices
We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.
If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.
We have concluded a data processing agreement with Google.
Google may not use the data for any other Google services.
The inclusion of full IP addresses is blocked by us.
5. Security
We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.
6. Third-party websites
This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.
7. Amendments to this privacy statement
We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.
8. Accessing and modifying your data
If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:
- You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
- Right of access: You have the right to access your personal data that is known to us.
- Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
- If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
- Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
- Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.
Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.
9. Submitting a complaint
If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Information Commissioner’s Office:
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
10. Children
Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.
11. Contact details
BOX Courses
28a The Hundred, Romsey, Hampshire, United Kingdom, SO51 8BW
United Kingdom
Website: https://boxcourses.co.uk
Email: dp@boxcourses.co.uk
Annex
WooCommerce
This sample language includes the basics around what personal data your store may be collecting, storing and sharing, as well as who may have access to that data. Depending on what settings are enabled and which additional plugins are used, the specific information shared by your store will vary. We recommend consulting with a lawyer when deciding what information to disclose on your privacy policy.
We collect information about you during the checkout process on our store.What we collect and store
While you visit our site, we’ll track:- Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
- Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
- Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
Note: you may want to further detail your cookie policy, and link to that section from here.
When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:- Send you information about your account and order
- Respond to your requests, including refunds and complaints
- Process payments and prevent fraud
- Set up your account for our store
- Comply with any legal obligations we have, such as calculating taxes
- Improve our store offerings
- Send you marketing messages, if you choose to receive them
Who on our team has access
Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:- Order information like what was purchased, when it was purchased and where it should be sent, and
- Customer information like your name, email address, and billing and shipping information.
What we share with others
In this section you should list who you’re sharing data with, and for what purpose. This could include, but may not be limited to, analytics, marketing, payment gateways, shipping providers, and third party embeds.
We share information with third parties who help us provide our orders and store services to you; for example —Payments
In this subsection you should list which third party payment processors you’re using to take payments on your store since these may handle customer data. We’ve included PayPal as an example, but you should remove this if you’re not using PayPal.
We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information. Please see the PayPal Privacy Policy for more details.Complianz | The Privacy Suite for WordPress
This website uses the Privacy Suite for WordPress by Complianz to collect and record Browser and Device-based Consent. For this functionality, your IP address is anonymized and stored in our database. This service does not process any personally identifiable information and does not share any data with the service provider. For more information, see the Complianz Privacy Statement.WooCommerce Product Bundles
Product Bundles does not collect, store or share any personal data.
The Events Calendar
Disclaimer: This information is only for guidance and not to be considered as legal advice.
What personal data we collect and why we collect it
Event, Venue, and Organiser Information
Through the usage of The Events Calendar, Events Calendar PRO, The Events Calendar Filter Bar, Eventbrite Tickets, and Community Events plugins, as well as our Event Aggregator Import service (contained within The Events Calendar plugin), information may be collected and stored within your website’s database.
Suggested text:
If you create, submit, import, save, or publish Event, Venue, or Organizer information, such information is retained in the local database:- Venue information: name, address, city, country, province, postal code, phone, website, geographical coordinates (latitude and longitude)
- Organiser information: name, phone, website, email
- Event information: website, cost, description, date, time, image
Importing Events, Venues, and Organisers:
- All data present within a CSV or ICS file and external URLs (for events, venues, organisers, and tickets)
- Import origin data (URL from where events are being imported—such as Eventbrite, MeetUp, other compatible URL sources, and more, which can include similar or same data as listed above)
- Eventbrite Ticket information: name, description, cost, type, quantity
API Keys
The Events Calendar suite offers the use of third-party API keys. The primary functions are to enhance the features we’ve built in, some of which use Google Maps, PayPal, Eventbrite, and Meetup. These API keys are not supplied by The Events Calendar.
Suggested text:
We make use of certain APIs, in order to provide specific features. These APIs may include the following third party services: Google Maps (API key), Meetup (OAuth token), PayPal (email, Client ID, Client Secret), Eventbrite (API key, auth URL, Client Secret), and Zoom (email, Client ID, Client Secret).How Long You Retain this Data
All information (data) is retained in the local database indefinitely, unless otherwise deleted.
Certain data may be exported or removed upon users’ requests via the existing Exporter or Eraser. Please note, however, that several “edge cases” exist in which we are unable to perfect the gathering and export of all data for your end users. We suggest running a search in your local database, as well as within the WordPress Dashboard, in order to identify all data collected and stored for your specific user requests.
Where We Send Your Data
The Events Calendar does not send any user data outside of your website by default.
If you have extended our plugin(s) to send data to a third-party service such as Eventbrite, Google Maps, or PayPal, user information may be passed to these external services. These services may be located abroad.