Privacy Policy
December 2023
It is important that you read this Policy, together with any other privacy notice we may provide when we are collecting or using personal information about you or provided by you, so that you are aware of how we are using such information, and your rights.
About this document
At The Foundation for Education Development, we take our users’ privacy very seriously.
In this document, “our”, “us”, “we” and “the FED” mean The Foundation for Education Development, UK registered company number 12193966.
The FED is fully compliant with the EU General Data Protection Regulation (GDPR). All Cookies used by this Website are used in accordance with current UK and EU Cookie Law.
This Privacy Policy tells you about personal information we collect, and how we use it.
By submitting data via our website, you acknowledge that you have read and agreed to this Privacy Policy. By registering to use or actually using any of the Climate Change and Sustainability platform, you acknowledge that you have read and agreed to this Privacy Policy and our Terms of Use.
We are a Data Controller under GDPR definitions. This means that we determine the purposes for which, and the way in which, your personal data are processed. Our Data Processor partner is Strategi Solutions Group Ltd, UK registered company number 07004188. This means that Strategi Solutions Group Ltd processes personal data on our behalf.
Our Data Processor partner’s employees have undertaken an IIRSM approved EU GDPR Advanced Training programme. All employees are certified in the collecting, storing, and using of people’s personal data, to handle data on a day-to-day basis, and have an in-depth understanding of the principles of GDPR legislation.
This Website provides links to other websites. We have no control over such websites and are not responsible for the content of these websites. This privacy policy does not extend to your use of such websites. You are advised to read the privacy policy or statement of other websites prior to using them.
Data protection principles
We comply with data protection law and principles, which means that any personal information we collect about you is:
- Used lawfully, fairly and transparently;
- Used only for valid purposes that we have notified you about;
- Relevant to the purposes that we have notified you about;
- Accurate and kept up to date;
- Kept only as long as necessary for the purposes that we have notified you about;
- Kept securely.
Keeping your data safe
We and our servers are based in the UK, so your personal information is stored in the UK.
We may from time to time need to transfer your personal data to third party data processors outside the European Economic Area (EEA) in order to enhance our feature set in which case the processing of your personal information will involve a transfer of data outside of the EEA.
Whenever we transfer your personal information outside of the EEA, we ensure it is protected by making sure at least one of the following safeguards is in place:
- By transferring your personal information to a country that has been deemed to provide an adequate level of protection by the European Commission;
- By using specific contracts approved by the European Commission which give your personal information the same protection it has
- Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.
To keep this privacy policy as short and easy to understand as possible, we have not set out the specific circumstances when each of these protection measures are used.
You can contact us at [email protected] for the details as to how we protect specific transfer of your data.
All information you provide to us is stored on our secure servers or those of our third-party data storage providers.
We and our Data Processing partner have established procedures for accessing personal information and logging any such access, so there is always a record of which data have been accessed, how and when.
Information we hold about you
In connection with your use of the Platform, we may collect, store, and use the following personal information:
- Contact Data: Email address(es).
- Identity Data: First name, last name, email address(es), your school/college, region.
- Survey Data: Responses to survey questions we may ask from time to time via the Platform and/or via email. You should not input any sensitive personal information or offensive information in response to survey questions.
- Technical Data: Internet protocol (IP) address, your login data, device type and screen size, browser type and version, time zone setting and location, browser plug-in types and versions, and the operating system on the device(s) you use to access the Platform.
- Usage Data: Information about how you use the Platform, for example time logged in, links clicked, resources, downloaded.
Access to information
You have the right to request access to your personal information and receive a copy of the data we hold about you.
No one at The FED or its partners, or any Platform user has access to your password, which is always stored and transmitted in an encrypted form.
Identity Data, Participation Data and Usage Data information relating to your school or college account may be accessed by Teacher Users and Admin Users linked to your school or college.
Unless a longer retention period is required or permitted by law, we will only hold your Data on our systems for the period necessary to fulfil the purposes outlined in this privacy policy or until you request that the Data be deleted.
How we use the data
We use personal information based upon consent and/or Legitimate Interest. Consent means obtaining your permission. By using the Platform, you are giving consent for us to use your personal information as described in this document. Legitimate Interest means where using your information will help us serve a particular, valid purpose such as improving the platform or making it available to as many educators as possible.
Your personal information rights
Under certain circumstances, by law you have the right to:
- Request access to your personal information (known as making a ‘data subject access request’). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request your personal information to be erased. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
- Object to processing of your personal information where we are relying on a legitimate interest and there is a specific reason why you want to object.
- Request restricted processing of your personal information. This enables you to ask us to suspend processing your personal information, for example if you want us to establish its accuracy.
- Request the transfer of your personal information to another party.
Contacting us
Email: [email protected]
Phone: +44 (0)7415615526
Address: The Glades Festival Way, Festival Park, Stoke-On-Trent, Staffordshire, United Kingdom, ST1 5SQ
If you would like to contact us about data privacy, please get in touch with our designated Data Protection Officer using one of the communication channels above.
You also have the right to make a complaint to the UK Information Commissioner’s Office (ICO).