Data Protection and Privacy Policy

Riseladder School of Business and Technology

1. Purpose of This Policy

Riseladder School is committed to protecting the privacy and security of all personal data we collect and process. This policy explains how we collect, use, store, share, and protect personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. What Data We Collect

We may collect and process the following types of personal data:

  • Learner Information: Full name, date of birth, contact details, academic records, identification documents, qualifications, and financial data.
  • Staff Information: Employment history, qualifications, DBS checks (if applicable), and performance records.
  • Website Usage Data: IP address, browser type, device type, usage patterns (via cookies).
  • Special Category Data(if needed and with consent): Health/disability disclosures for reasonable adjustments, ethnicity (for monitoring purposes), etc.

3. Why We Collect Your Data

We collect and process personal data to:

  • Process admissions and enrolments
  • Deliver teaching, learning, and assessment services
  • Provide student support and safeguarding
  • Comply with awarding body (e.g., Pearson) and legal obligations
  • Improve our services and digital platforms
  • Maintain internal records, quality assurance, and communications
  • Meet OfS or UK government regulatory reporting requirements

4. Legal Basis for Processing

We process your personal data under the following lawful bases:

  • Contractual necessity: To provide you with educational services
  • Legal obligation: To comply with UK education and safeguarding laws
  • Legitimate interest: To manage and improve our operations
  • Consent: Where applicable (e.g., marketing or sensitive health data)

5. Data Sharing and Disclosure

We may share your information with:

  • Awarding bodies(e.g., Pearson) for registration, assessment, and certification
  • Regulators and government bodies (e.g., OfS, UKVI, HMRC)
  • External IT providers and professional service partners (bound by data protection agreements)
  • Third-party agents only where explicitly consented and in compliance with GDPR

We do not sell or rent your data to third parties.

6. How We Store Your Data

All data is stored securely on encrypted systems with access controls in place. We implement appropriate technical and organizational measures to protect your data from loss, misuse, or unauthorized access.

7. How Long We Keep Your Data

We retain personal data only as long as necessary for the purposes it was collected and in accordance with our retention schedule, which meets legal and awarding body requirements (usually 6 years minimum after course completion).

8. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Correct inaccuracies
  • Request deletion (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent (where applicable)
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, contact our Data Protection Officer below.

9. Cookies

Our website uses cookies to enhance user experience and track website performance. You will be prompted to accept or manage cookies upon visiting the site. For details, see our Cookie Policy.

10. Contact Us

Data Protection Officer
Riseladder School of Business and Technology
📧 Email: dpo@riseladderschool.com
📍 Address: [Insert official address]
☎ Phone: [Insert contact number]

Scroll to Top
RISELADDER