NicheEnglish Privacy Policy
NicheEnglish Ltd is committed to protecting and respecting your personal information, privacy and complying with the General Data Protection Regulation and the Data Protection Act 2018. The information that you share with us is very important and we want you to be confident that any data is kept safely and securely and to understand how we use it to benefit you and our communication with you.
How we collect information from you
We obtain information about you when you provide it to us through subscribing, or partaking in online classes.
As we need to keep a back up of the site including subscriptions, the site will be backed up monthly which will include subscription details such as email, contact information ect. The backup files will be encrypted and held offline which can only be accessed by authorised personnel.
Confirmation emails will be sent to both yourself and us when a subscription has been made which will have contact personal information. These emails are password protected and can only be accessed by authorised personnel. In addition, they will only be accessed when needed for backup purposes.
If you make a payment to us online, your payment details are not held by us but are collected by our third-party payment processors, who specialise in the secure online capture and processing of such transactions.
How we use your information
Data Protection says that we are allowed to use and share your personal data only where we have a proper reason to do so. The law says we must have one or more of these reasons and these are:
Legal obligation:
Where there is statutory or other legal requirement to share the information
e.g. when we have to share your information for law enforcement purposes such as HMRC requests
Contractual:
Where we need to process personal data to comply with obligations under the contract.
Legitimate interests:
The processing is necessary for legitimate interests or the legitimate interests of a third party
Who we share your information with
NicheEnglish does not share your data with any third parties. We will not sell your information to third parties. We may provide your information to processors with whom we have entered into written contracts which require them to comply in all respects with the requirements of this Privacy Policy and all legal requirements relating to information privacy.
Some examples of the categories of third parties with whom we share your data are:
IT companies
NicheEnglish works with businesses who support our website and other business systems.
Marketing companies
We may work with marketing companies who help us manage our electronic communications with you or carry out surveys and product reviews on our behalf.
Payment processing
NicheEnglish may work with regulated, trusted third party payment processing providers in order to securely take and manage payments.
Your rights
Your personal data is protected by legal rights, which include your rights to object to our processing of your personal data; request that your personal data is erased or corrected; request access to your personal data.
Transfers to third countries
Your data is held in the UK on our systems which are hosted on secure and legitimate UK servers. At no point will NicheEnglish share or transfer your data to other countries without prior notification.
How long we keep your information
If we collect your personal information, the length of time we retain it is determined by a number of factors including the purpose for which we use that information and our obligations under other laws.
We may need your personal information to establish, bring or defend legal claims or due to government institution requirements like HMRC. For this purpose, we will always retain your personal information for 7 years after the date it is no longer needed by us for any of the purposes listed under ‘How we use your information’ above. The only exceptions to this are where:
1. The law requires us to hold your personal information for a longer period, or delete it sooner;
2. You exercise your right to have the information erased (where it applies) and we do not need to hold it in connection with any of the reasons permitted or required under the law;
3. We bring or defend a legal claim or other proceedings during the period we retain your personal information, in which case we will retain your personal information until those proceedings have concluded and no further appeals are possible; or
4. In limited cases, existing or future law or a court or regulator requires us to keep your personal information for a longer or shorter period.
Your rights
You are entitled to request the following from NicheEnglish, these are called your Data Subject Rights and there is more information on these on the Information Commissioners website www.ico.org.uk.
1.Right of access – to request access to your personal information and information about how we process it
2.Right to rectification – to have your personal information corrected if it is inaccurate and to have incomplete personal information completed
3.Right to erasure (also known as the Right to be Forgotten) – to have your personal information erased.
4.Right to restriction of processing – to restrict processing of your personal information
5.Right to data portability – to electronically move, copy or transfer your personal information in a standard form
6.Right to object – to object to processing of your personal information
7.Rights with regards to automated individual decision making, including profiling –rights relating to automated decision making, including profiling
8.Right to withdraw your consent to the use of your personal information.
If you have any general questions about your rights or want to exercise your rights, please email niche.dataprotection@hotmail.com and put ‘GDRP’ in the subject line and describe in full what you would like to know and like us to do and how you would like us to contact you to confirm we have satisfied your request.
You have the right to lodge a complaint with a data protection regulator in Europe, in particular in a country you work or live or where your legal rights have been infringed. The contact details for the Information Commissioner’s Office (ICO), the data protection regulator in the UK, are available on the ICO website www.ico.org.uk where your personal information has or is being used in a way that you believe does not comply with data, however, we encourage you to contact us before making any complaint and we will seek to resolve any issues or concerns you may have.
Security
We will ensure that your personal information is held securely and encrypted and only authorised personnel can access.
Some of your “non-sensitive” details (such as your email address) may be transmitted over the internet and this can never be guaranteed to be 100% secure.
This Privacy Policy was last updated on 15thMay 2019.