TheETA (The Education Technnology Alliance) Privacy Policy

Last Modified Date: 4th July, 2018

This Privacy Policy applies to The Education Technnology Alliance (“TheETA”, “we”, “us” or “our”) owned and operated websites and its subdomains, email notifications, and our other products and services that link to this Policy (collectively, the “Services”).

For all our Services, the data controller — the company that’s responsible for your privacy — is Blueglass Limited.

The purpose of this Privacy Policy is to help you make informed decisions about the personal data you share with us. It describes what, how and when we collect, use and share your personal data across our Services.

The use of information collected through our Services is limited to the purposes under this Privacy Policy.

By using any of our Services you agree to this Privacy Policy.

1. Information Gathering and Usage

(a) Account Information

If you choose to subscribe to / register for our Services, we process (i) first name and last name, (ii) company name, (iii) billing address, (iv) shipping address, (v) email address, (vi) debit or credit card number, (vii) the expiration date, (viii) CVV code and (ix) IP address.

We do not store any card information. The card information is processed by our payments processor as described in paragraph 3. a) Service Providers. We store first name and last name, company name, billing address, shipping address, email address, and IP address.

Purposes for processing account information:

  • in order to process the purchase;
  • in order to place an order;
  • in order to process the payment;
  • in order to generate an invoice / receipt;
  • in order to deliver your purchases to you;
  • in order to identify and authenticate you when you login to our Services;
  • in order to comply with the applicable legal provisions;
  • in order to send you transactional / administrative emails related to an order, such as order updates;
  • in order to send you transactional / administrative emails related to updates to our Services;
  • in order to send you transactional / administrative emails related to to legal notices, such as privacy policy updates and others.

If you no longer wish to receive transactional / administrative emails you may opt out of them by cancelling your account according to the procedure described in paragraph 5. a) Access, correction, deletion.

(b) Checkout (Basket) Information

The checkout process contains two steps. In the first checkout step we process first name and last name, company name, email address, billing address and shipping address. We collect this information if you don’t finish the checkout process by placing the order.

Purposes for processing checkout information:

  • to help you not to re-enter your personal data if you start the checkout process again.

(c) Contact Information

You may send an email message to us for any reason using the Contact Us page on our website. In this case we process your full name and email address.

Purposes for processing contact information:

  • to respond to your request.

(d) Informational and Marketing Information

In order to be kept up to date with our new or improved Services we process your e-mail address. You will be able to give your explicit consent for this informational and marketing information through the Registration page on our website.

Purposes for processing marketing information:

  • to send you informational and marketing emails about our Services;
  • to receive notifications when we publish a new News or Blog article.

How to stop informational and marketing messages from TheETA

You can stop receiving informational and marketing messages from us at any time.

You can do this:

  • by changing your Consent in the ‘My account’ page on our website;
  • by clicking on the ‘unsubscribe’ link in any email;
  • by contacting us using the Contact Us page on our website.

Once you do this, we will update your account to ensure that you don’t receive further informationl or marketing messages.

Stopping marketing messages will not stop transcational / administrative service communications (such as, order updates, updates to our Services, updates to legal notices) or where you have asked us to provide information.

(c) Additional Information

You may choose to provide us with additional information by submitting your email address in any form available on our Services.

Purposes for processing additional information:

  • to collect feedback about our Services.

2. Cookie Policy

A cookie is a small amount of data that is sent to your computer or mobile device. Our cookies don’t store sensitive or personally identifiable information such as your name or address. TheETA uses cookies to make parts of our website work.

Although most web browsers automatically accept cookies, you can modify your browser settings to refuse all cookies or to indicate when a cookie is being sent. If you reject cookies, you may still use our Services, but your ability to use some features may be limited, and user experience may also be affected.

We use cookies to store user preferences so that you don’t have to re-enter it during a visit or on subsequent visits.

We process data collected through the usage of Cookies:

  • to identify your browser and/or device;
  • to provide some features of our Services;
  • to improve your user experience of our Services.

Here is a list of the main types of cookies we use, and what we use them for. We have described them using the categories recommended by the International Chamber of Commerce in the ICC UK Cookie Guide.

Strictly Necessary Cookies: These cookies are essential in order to enable you to move around the website and use its features, such as accessing the secure area of the website, accessing the forum, or commenting on our forum, news and blog posts. Without these cookies these Services cannot be provided.

Functionality Cookies: These cookies allow the website to remember choices you make and provide enhanced, more personal features. TheETA use this type of cookie when you tick “Remember Me” when logging in or registering to access a secure area of the website, or comment on our forum, news and blog posts.

By using the TheETA website you agree we may place these types of cookies on your device.

3. Third Parties with whom we Share Personal Information

We do not, and will not, sell any of your personal data to any third party – including your name, address, email address or credit card information. We want to earn and maintain your trust, and we believe this is absolutely essential in order do that.

(a) Service Providers

We work with third-party service providers to provide and improve our Services. We share:

  • billing and payment information with PayPal to securely process payments, prevent, detect and investigate fraud or other prohibited activities; facilitate dispute resolutions such as chargebacks or refunds; and for other purposes associated with the acceptance of credit and debit cards;
  • order information with our Vendors who fulfill your order.

(b) Testimonials

With your consent, provided in written notice by email, we share or disclose your name, company or company URL as part of testimonials we make public.

(c) Change of Ownership

In the event that we are involved in a bankruptcy or insolvency, acquisition, merger, sale of assets or similar transactions, your information will be sold or transferred as part of that transaction. You will be notified via email of any change in ownership or uses of your personal data.

(d) Law

Notwithstanding anything to the contrary in this Privacy Policy, we preserve or disclose your information if required to do so by the law or in the good-faith belief that such action is necessary to:

  • comply with applicable laws;
  • take precautions against liability;
  • protect ourselves or others from fraudulent, abusive or unlawful activities;
  • investigate and defend ourselves against any third-party claims;
  • protect our property or other legal rights, enforce our contracts and terms.

Nothing in this Privacy Policy is intended to limit any legal defenses or objections that you may have to a third party’s request to disclose your information.

Except as described in this Policy, we will not disclose your personal data.

4. How we Secure Personal Information

We store collected data:

  • in a database provided by Microsoft Azure.

No method of safeguarding information is 100% secure. We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. We use SSL technology to encrypt data during transmission. Once we receive your information we make efforts to ensure security on our systems against accidental or unlawful destruction, accidental loss, unauthorised alteration, unauthorised disclosure or access, misuse, and any other unlawful form of processing your personal data in our possession.

In case of any security system breach, TheETA will notify you electronically so that you can take appropriate protective steps.

If you believe your personal data has been compromised, please contact us using the Contact Us page on our website.

5. Control your Personal Information

We respect your privacy rights and provide you with reasonable access to your personal data that you have provided or we have collected through your use of our Services. If you wish to access or amend any other personal data we hold about you, or to request that we delete or transfer any information about you, you may contact us using the Contact Us page on our website.

(a) Access, correction, deletion

If you have an account for our Services, we provide you with the ‘My account’ page to access, correct, delete or modify the personal information you provided to us and is associated with your account. Please note that while any change you make will be reflected instantly or within a reasonable period of time in the active users database, we retain information for backups, archiving, prevention of fraud and abuse, complying with legal obligations, or where we otherwise reasonably believe that we have a legitimate reason to do so, but not exceeding the periods described in 7. Data Retention.

If you wish to permanently delete your account, you may contact us using the Contact Us page on our website.

Alternatively, in the ‘My account’ page on our website are sections where you can:

  • manage consent;
  • view the history of consents allowed or denied;
  • view the communication received from TheETA;
  • request deletion of your personal information;
  • download your personal information;

(b) Opting Out from Email Communications

If you wish to revoke your consent for receiving informational and marketing communications via e-mail, you can opt-out by:

  • following the unsubscribe instructions in the email;
  • replying to the email;
  • revoking consent in ‘My account’ page on our website https://localhost:15536/customer/consent;
  • contacting us using the Contact Us page on our website.

Please note that if you opt-out of receiving certain emails from us, it may take up to ten (10) business days for us to process your request. Additionally, even after you opt-out you may continue to receive transactional / administrative messages from us regarding the Service, such as Privacy Policy changes, license legal notices, and other important notices related to the future use or past usage of our Services.

6. Data Subject’s Rights

In accordance with the applicable legal provisions with regard to the processing of personal data and the free movement of such data, you have:

  • the right to be informed about how your personal information is being used (this Privacy Policy);
  • the right to access the personal information we hold about you (this can be done in the ‘My account’ section of our website;
  • the right of rectification / correction of inaccurate personal information we hold about you (this can be done in the ‘My account’ section of our website;
  • the right to delete your personal data (this can be done in the ‘My account’ section of our website;
  • the right to data portability (this can be done in the ‘My account’ section of our website;
  • the right of restriction of processing your personal data;
  • the right not to be subject to a decision based solely on automated processing, including profiling; and
  • the right to withdraw your consent to receive informational or marketing messages (which you can do by changing your Consent preferences in the ‘My Account’ section https://localhost:15536/customer/consent).

Furthermore, you have the right to complain to the data protection regulator – in the UK, the Information Commissioner’s Office.

For exercising these rights please contact us using the Contact Us page on our website.

7. Data Retention

We only retain personal identifiable data received or collected from you for as long as an account is active or for a limited period of time as long as we need it to fulfil the purposes for which we initially collected it, unless otherwise required by law.

We will retain and use your information as necessary to comply with our legal obligations, enforce our agreements, and resolve disputes as follows:

  • Account financial transactions are retained for a period of seven (7) years in accordance to the UK accounting and taxation laws.
  • Checkout (basket) information prior to placing an order is retained for a period of forty-five (45) days.
  • Contact information is retained for as long as your account is active. If you haven’t logged onto our website for three years we will delete your information from our systems. If you no longer wish to be a customer, you can also contact us using the Contact Us page on our website and request to delete all the information we have on you.
  • Information and Marketing messages will be sent until you withdraw your consent.
  • Database backups are retained for one (1) year.

8. Link to Other Sites and Third-party Integrations

TheETA Services contain links to other websites or services that have a different Privacy Policy. Please remember that when you use a link to go from our Services to any third-party websites or services, our Privacy Policy does not apply.

If you submit personal information to any of those websites or services, your information is governed by their privacy policy. We encourage you to carefully read the privacy policy of any website you visit.

9. Changes to the Privacy Policy

TheETA may periodically update this policy. All changes to this Privacy Policy are effective when they are posted on this page. We will notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your TheETA account or by placing a prominent notice on our site. We will also keep prior versions of this Privacy Policy in a private archive.

10. Child Privacy

Protecting the privacy of children is especially important. Our Services are not directed to persons under 16.

TheETA does not collect or solicit personal information from anyone under the age of 16 or allow such persons to purchase through our Services. If we become aware that we have collected personal information from a child under age 16 without verification of parental consent, we take steps to remove that information. If you believe that we might have any information from or about a child under 16, please contact us using the Contact Us page on our website.

11. Contacting TheETA

Postal Address

If you have a privacy concern regarding TheETA, or this policy, you should contact us using the Contact Us page on our website or write to us at:

  • (TheETA)
  • Blueglass Limited,
  • 39 Wynford Avenue,
  • Leeds,
  • LS16 6JN.