Your privacy is important to us
1. Introduction
OneVoice Digital Limited (registered in England under number
10842253) whose registered office is at 196 Deansgate, Manchester,
M3 3WF) ("we") are committed to protecting and respecting your
privacy. We are the operator of Apprentice extra. We
gather and process data in accordance with the prevailing data
protection legislation, including the General Data Protection
Regulation 2016 (the "GDPR") and the Data Protection Act 2018.
When you purchase an Apprentice extra platform registration you
are entering into a legally binding agreement which allows us to
deal with your data as set out in this policy. This policy
sets out the basis on which we will process personal data we
collect about you, or that you provide to us. Please read the
following carefully to understand our views and practices regarding
your data.
This policy affects the following website:
www.apprenticeextra.co.uk
2. Information we may collect about you
We may collect and process the following data about you:
- Information that you provide:
- approaching us to supply products and services;
- by applying for and while being a member of the Apprentice
extra platform discount scheme;
- by applying for and while being a member of a student union
which uses our services;
- by interacting with our website, including by participating on
our blog and entering prize draws and competitions;
- requesting further information, services or content; and
- completing surveys and questionnaires.
This includes your title, gender, age, full name, address and
other communication contact information, course and level of study,
apprentice provider, personal interests and preferences.
- Details of your visits to our website. This may include, but is
not limited to:
- details of the computer or other device that you are
using;
- details of the web browser you are using;
- details of your language settings;
- traffic data;
- location data;
- weblogs;
- other communication data; and
- IP address data
- Information provided by reputable third-party data sources such
as student unions, universities and further education
establishments.
If you contact us, we may keep a record of that correspondence,
including any information provided or required to resolve your
enquiry or issue.
3. Cookies
We use Cookies on our website pages in order to optimise
functionality and for anonymised statistical purposes.
A 'cookie' is a small piece of information which is sent to your
browser and stored on your computer's hard drive. Cookies do not
damage your computer, and by themselves cannot be used to discover
the identity of the user.
You can set your browser to notify you when you receive a
cookie; and you may block cookies by adjusting the settings on your
browser. Please note that if you restrict all cookies you may not
be able to access all or parts of our site. Unless you have
configured your browser to refuse cookies, our system will issue
cookies as soon you visit our websites.
When you first visit any of our sites a pop-up header will be
generated alerting you to our cookie policy. It will re-appear in
the event that you change your cookie settings from time to
time.
A copy of our cookie policy can be found here . CookiePolicy
You can find more about how cookies are used and opting out of
their use at: cookies
information.
4. Storage of personal data
We implement appropriate security measures to protect
information from:
- loss;
- misuse;
- unauthorised access or modification;
- disclosure;
- alteration; or
- destruction.
Our security systems include password authenticated access to
internal databases. We also encrypt and anonymise data
wherever it is appropriate to do so. We regularly take
back-ups of our data. We regularly review overall web security and
audit procedures.
Our security measures include the following Information Security
Management ("ISMS") policies:
ISMS policy: Acceptable Usage
ISMS policy: Antivirus
ISMS policy: Backup
ISMS policy: Cloud Computing
ISMS policy: Data Protection
ISMS policy: Data Security Breach
ISMS policy: Incident Management
ISMS policy: Information Handling
ISMS policy: Logical Access Control
ISMS policy: Mobile Computing
ISMS policy: Network and System Security
ISMS policy: Password protection
ISMS policy: Physical Security
Information Technology Security policy: Patch Management
In conforming with data protection laws, we endeavour to
implement appropriate procedures to protect your personal data and
to prevent any unauthorised access or misuse of it. Our
servers, on which your personal data is kept, are located in the
European Union.
We use Adobe Systems Incorporated; Amazon.com, Inc; GitHub, Inc;
Google, LLC; LinkedIn Corporation; Microsoft Corporation; to assist
us in managing your data. While those companies are located
in the United States, each of them has joined the Privacy Shield
system allowing the processing of data by those company in
accordance with the GDPR.
We also use the services of the following company based in the
European Union: Hotjar Limited.
Please be aware that the transmission of information via the
internet is not completely secure. Although we will do our best to
protect your personal data, we cannot guarantee the security of
your data when transmitted via the internet between us: any such
transmission is at your own risk.
5. Uses made of the information
We use information held about you in the following ways:
- To ensure that content from our site is presented in the most
effective manner for you and for your computer.
- To provide you with relevant information, services of a type
that you request from us or which we feel may interest
you.
- To carry out the requirements of any contracts entered into
between you and us.
- To allow you to use the interactive features of our website,
when you choose to do so.
- To notify you about changes to our service.
If you have provided us with your email address in relation to
participating in or buying our products or services or attempting
to do so we may send a reminder email within 14 days if you have
then left the process half way though. Our lawful basis to do this
is Legitimate Interest.
We are committed to responsible email practices. We only
send email to individuals whose data has been lawfully and fairly
obtained. If at any time you do not wish to receive emails
from us, please use the unsubscribe functionality contained in our
communications. Alternatively, please contact us on dpc@onevoicedigital.com.
6. Disclosure of your information
We may disclose your relevant personal information for temporary
maintenance purposes freely between the member companies of our
group, which at the moment are Arrk Limited (registered in England
under number 03574335 whose registered office is at 196 Deansgate,
Manchester, M3 3WF), OneVoice Digital Limited and Arrk Solutions
Private Limited, a private limited company duly incorporated with
registration number U72900MH2002FTC135091 under the laws of India,
having its registered office at Unit No. 1 & 2, Building No. 5,
Sector-2, Millennium Business Park, Mahape, Navi Mumbai, PIN
400710. This Privacy Notice applies to each of those
companies and we reserve the right to freely pass the data between
these companies. Arrk Limited (which is the parent company of
OneVoice Digital Limited and Arrk Solutions Private Limited) and
Arrk Solutions Private Limited have entered into a Model Form
Contract based on the Standard Contractual Clauses on transfer of
personal data to third countries as per Directive 95/46/EC of
European Parliament and of the Council. This allows for the
lawful transfer of your data to Arrk Solutions Private
Limited.
National Union of Students
National Union of Students (United Kingdom) registered in
England under number 08015198 whose registered office is at Ian
King House, Snape Road, Macclesfield, Cheshire, SK10 2NZ
("NUS").
NUS is one of the oldest student organisations in the world, and
it works hard every day to help to make your experience as a
student the best it can be. NUS works to influence national
and local policies in areas that are important to you, such as
accommodation, fees and the right to study. NUS also
run ground breaking programmes to drive change, such as improving
environmental impact and reducing alcohol abuse. We pass your
information to NUS so that they can better provide you with their
services and help manage your data. NUS is an English
company.
Where you opt in to doing so, we also pass information to NUS so
that NUS can use the information to provide you with their latest
information, offers and competitions.
If you do not wish to receive this information from NUS you can
use the unsubscribe function at any time.
Endsleigh
Endsleigh Insurance Services Limited registered in England under
number 00856706 whose registered office is at Shurdington Road,
Cheltenham Spa, Gloucestershire, GL51 4UE ("Endsleigh").
We disclose your data to Endsleigh (www.endsleigh.co.uk) which
uses your personal information to ensure they have the best rates
to offer you if you contact them directly, and so that they can
check that information you supply to them is accurate. We
also give you the option to opt in to Endsleigh's great product
offers and services. We supply Endsleigh with the following
data: Your title, name, gender, country, date of birth, email,
Students Union, start and end date of study, course, course level
and the source of your data.
7. Your rights
The data protection legislation gives you a number of
rights. These rights include:
- Right to data erasure.
- Right to make a "subject access request", which is a request
for a copy of the data which we hold about you.
- Right of correction (or where appropriate erasure) of data
which we hold about you where this is inaccurate.
- Right to data portability.
- Rights in relation to automated decision making and
profiling.
- Right to withdraw your future consent to our processing your
personal data.
- Right to contact and make enquiries of our data protection
co-ordinator who can be contacted at
email: dpc@onevoicedigital.com
- Right to complain to the Office of the Information
Commissioner.
Please be aware that if you exercise one of these rights, that
in order to protect your privacy, we may require you to undergo
some verification tests to ensure that we are dealing with
you.
You have the right to be informed of the matters stated in this
privacy policy.
There are three legal bases upon which we collect, process and
transfer your personal data as described in this privacy
policy:
- Contract - to consider potential or to fulfil actual contracts
with you. If we were not able to process this data we would
be unable properly to perform our side of any actual or potential
contract.
- Legitimate Interest - in order to consider potential or to
fulfil actual contracts with you and others, we need to collect,
process and transfer personal data about you.
- Consent - also, we may rely on your express consent for us to
use your personal data.
8. Data Retention
We normally hold and process your data in accordance with the
following criteria and duration:
Source criteria of the data
|
Relevant Event date
|
Maximum duration of processing
|
Data collected when you initially register on the Apprentice
extra website
|
|
24 months after your last interaction with us
|
Data collected for the Apprentice extra Card purposes
|
Membership expiry
|
24 months after the date of expiry of paid-for membership
|
Data collected during case studies, white papers, articles,
blogs, surveys and questionnaires and similar
|
The last date on which such case studies, white papers, articles
and blog were hosted live on our websites
|
12 months after the end of the year in which such contents were
withdrawn from our websites
|
Data collected when you correspond or similarly interact with
us
|
The last date of such correspondence or interaction with us
|
12 months after the end of the year in which the last such
correspondence or interaction took place
|
Data not falling into any of the categories above but otherwise
collected about you from a third party
|
Last date on which we had contact with you
|
12 months after the end of the year in which the last date on
which we had contact with you fell
|
In addition, we may regularly purge personal data subject
records which are not relevant on earlier occasions.
In any event we will stop the processing of your data where you
ask us to do so by contacting us at unsubscribe@onevoicedigital.com.
The only circumstances in which we will not do so or where we
may keep data for a longer period are where we have a legal
obligation or a legitimate interest to continue processing your
data.
Our websites and email bulletins may contain links to and from
the websites of third parties including our partner networks,
advertisers and affiliates. If you follow a link to any of
these websites, please note that these websites have their own
privacy policies. We do not set and are not responsible for
those policies.
9. Analytic Suppliers
In common with comparable companies we use your personal data to
help Analytic Suppliers match relevant ads to you using the data
analytics of those Analytic Suppliers. However, we only use
the data in that way where you are a subscriber to the services of
Analytic Suppliers and have therefore agreed to this service by
acceding to the relevant Agreements of those Analytic
Suppliers. Accordingly, we do not control the countries in
which those Analytic Suppliers process data.
We mean by Analytic Suppliers companies such as: Facebook;
Google; LinkedIn; Twitter and Microsoft. Analytic Suppliers
supply us with statistical information on how users interact with
our website to help us improve our user experience.
You can find further details of our interaction with Analytic
Suppliers in our cookie policy a copy of which can be found here:
CookiePolicy
10. Changes to our privacy policy
Any changes we may make to our privacy policy in the future will
be posted on this page. Where we make any material change to
this privacy policy we will notify you that it has been changed.
11. Contact
Questions and requests regarding this privacy policy should be
addressed to dpc@onevoicedigital.com.