Privacy/GDPR Policy

GDPR and privacy are important to Flourish Education because it has regulations and implications on how we as professionals handle the information received about a learner and their family, the personal information we collect about them and communication carried out.

Data held by Flourish Education may include:

• contact details of learners including emergency contact
• emails and other correspondence
• completed coursework
• registration forms
•payment details for training and personal learning appointments.

It is your responsibility to update Flourish Education with any changes in details.

Storing information:

•Data will only be stored on password protected electrical items relating to Flourish Education.
•Written data is stored in a file per learner and only accessed by Flourish Education.
•Information that must be kept for an extended period after training or personal learning appointments have been completed: a) Anything relating to safeguarding, accidents or incidents must by law be held until the learner reaches 21 years and three months of age, b) Contracts, consent forms, information sheets, invoices and payment information must be held for seven years.

Sharing data:

Information will only be shared with third parties in the case of a safeguarding issue or if a child’s parent or carer has given permission or specifically asked that information is shared (e.g. with a school).

We are registered with the ICU Commissioner’s Office under the registration number: C1177658.