CertiTrain Limited is continually improving and adding new functionality and features to its websites and improving and adding to our existing products, services, and programs. Because of these ongoing changes, changes in the law, and the changing nature of technology, CertiTrain Limited's data practices will change from time to time. If and when our data practices change, CertiTrain Limited will post the changes on our websites to notify you of the changes. We encourage you to check this page frequently.
The only personal data CertiTrain Limited currently collects through its websites is the information you voluntarily give us when you use our sites.
For example, you may use this site to contact CertiTrain Limited with questions and comments. When you fill out a form on our websites, you may provide your name and other contact information, including your company's name, your e-mail address, and your mailing address or the mailing address of your company or other personal information.
CertiTrain Limited uses the personal data information you provide to answer the query you will have posted through the site. CertiTrain Limited and our affiliates also use this information to help us improve the content and functionality of our websites, to better understand our customers and markets, and to improve our products and services. CertiTrain Limited and our affiliates may use this information to contact you in the future to tell you about products or services we believe will be of interest to you. If we do so, each communication we send you will contain instructions permitting you to "opt-out" of receiving future communications.
Similarly, we may provide "subscription" e-mail services, either directly or through affiliates, which enable you to receive current news about CertiTrain Limited and its business. For all such services, we will provide an opportunity to "opt-out" of, or cancel, the subscription.
(a) personal data is processed fairly and lawfully;
(b) personal data is always processed in accordance with good practice;
(c) personal data is only collected for specific, explicitly stated and legitimate purposes;
(d) personal data is not processed for any purpose that is incompatible with that for which the information is collected;
(e) personal data that is processed is adequate and relevant in relation to the purposes of the processing;
(f) no more personal data is processed than is necessary having regard to the purposes of the processing;
(g) personal data that is processed is correct and, if necessary, up to date;
(h) all reasonable measures are taken to complete, correct, block or erase data to the extent that such data is incomplete or incorrect, having regard to the purposes for which they are processed;
(i) personal data is not kept for a period longer than is necessary, having regard to the purposes for which they are processed.
(a) the data subject has unambiguously given his consent; or
(b) processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract; or
(c) processing is necessary for compliance with a legal obligation to which CertiTrain Limited is subject; or
(d) processing is necessary in order to protect the vital interests of the data subject; or
(e) processing is necessary for the performance of an activity that is carried out in the public interest or in the exercise of official authority vested in CertiTrain Limited or in a third party to whom the data is disclosed; or
(f) processing is necessary for a purpose that concerns a legitimate interest of CertiTrain Limited or of such a third party to whom personal data is provided, except where such interest is overridden by the interest to protect the fundamental rights and freedoms of the data subject and in particular the right to privacy.
In addition to the information you provide when you use our websites, CertiTrain Limited uses technology to collect anonymous information about the use of our websites. For example, we use technology to track how many visitors access our websites, the date and time of their visit, the length of their stay, and which pages they view. We also use technology to determine which web browsers our visitors use and the address from which they accessed our sites (for example, if they connected to a CertiTrain Limited website by clicking on one of our banner ads).
This technology does not identify you personally. It simply enables us to compile statistics about our visitors and their use of our sites. CertiTrain Limited and our affiliates use this anonymous data and share it with third parties to improve the content and functionality of our websites, to better understand our customers and markets, and to improve our products and services.
While no method of data transmission is guaranteed against unlawful third party interception or other misuse, CertiTrain Limited uses commercially reasonable efforts to ensure protection of your data including industry-standard encryption and offline security methods in our physical facilities.
Your card details are received and processed directly by our payment gateway (PSP), the APCO Gateway; your card details are transmitted from you to the payment gateway (PSP) encrypted over high-strength SSL for maximum protection and confidentially. This site does not at any point handle or store the card information.
For additional security, your three digit security code found at the back of your card is never stored by the payment gateway (CVV/CVC2). Without this number, additional transactions attempted on your card, without your authorization, would be rejected.
The payment gateway (PSP) is licensed and authorized by Visa, MasterCard and other card associations to act as a payment gateway and is fully audited and compliant with the Payment Card Industry Security Standards.
You undertake and agree to provide correct details to APCO for the purpose of ordering or purchasing goods from this website.
You also undertake that the credit or debit card you are using is your own and that there are sufficient funds to cover the cost of the goods or services ordered.
CertiTrain Limited shall at the request of the data subject to immediately rectify, block or erase such personal data that has not been processed in accordance with the Data Protection Act or with regulations made thereunder.
CertiTrain Limited shall notify any third party to whom the data has been disclosed about the measures undertaken as aforesaid.
Provided that no such notification need be provided if it is shown to be impossible or it will involve a disproportionate effort.
CertiTrain Limited will provide information in response to any reasonable subject access request. CertiTrain Limited will ensure data are kept in an accessible form to facilitate subject access.
CertiTrain Limited at the request of the data subject shall provide to the data subject, without excessive delay and without expense, written information as to whether personal data concerning the data subject is processed:
Provided that a request by the data as aforesaid shall only be made by the data subject at reasonable intervals.
Any such application shall be made in writing to CertiTrain Limited and is to be signed by the data subject.
If such data is processed CertiTrain Limited shall provide to the data subject written information in an intelligible form about:
(a) actual information about the data subject which is processed;
(b) where this information has been collected;
(c) the purpose of the processing;
(d) to which recipients or categories of recipients the information is disclosed; and
(e) knowledge of the logic involved in any automatic processing of data concerning the data subject.