Privacy Policy

Learning Technologies Group Plc. its subsidiaries, and its associated businesses (“LTG”, “we” or “us”) are committed to protecting and respecting your privacy. The LTG companies includes the following entities: Affirmity, Breezy HR, GetBridge, Gomo Learning, Instilled, Open LMS (including eCreators and eThink), PeopleFluent, PRELOADED, Reflektive, Rustici Software (including SCORM Cloud, and Rustici Managed Hosted products (Rustici Engine, Content Controller)), and Watershed. We provide this privacy notice (“Privacy Notice”) to explain how we collect, use and disclose certain personal information online via our group websites, and our SaaS or Subscription Services (as listed below, collectively referred to as “Sites”), and how you can exercise your privacy rights. This Privacy Notice does not apply to GP Strategies, whose corresponding notice is available here.

We recommend that you read the Privacy Notice carefully to understand our practices and to ensure you are fully informed. However, if you only want to access a particular section of this Privacy Notice, then you can click on the relevant section below in the table of contents.

If you have any questions regarding our privacy practices or this Privacy Notice, please contact us using the contact details given below.

Who are “You”?

This Privacy Notice describes how we use “your” information. To understand which of our uses of information are actually applicable to you and your information, please refer to the following helpful definitions.

You may be a(n):

Customer – an entity, or person representing an entity that has an agreement in place with LTG or one of its subsidiaries under which we provide you with SaaS or Subscription Services, or is visiting our Site to purchase SaaS or Subscription Services via an online payment system.

End-User – a person with a user account to one of our Customer’s instances of our SaaS or Subscription Services. For example, you may be a user of your workplace or educational institution’s Learning Management System, of which we are the provider. Or you may be an applicant to your employer or prospective employers recruitment system, of which we are the provider.

Visitor – A person who is visiting our website, or who has expressed interest in our products or services by filling in a contact form or sign-up sheet in relation to an event or webinar, or has had conversations about our products with our sales team and provided them with your details.

Job Candidate / Applicant - An applicant for a position with LTG, one of its subsidiaries, or associated business. 

Contractor, Partner, or Supplier - A company, company representative or individual whose tools or services we procure and engage with.

Your Information

To learn about the information we may collect about you, p. Please select the appropriate option below based on your group categorization (see Who are “You”? section above).

Customer Information

Our agreement with you is the best source of information on which personal data we process for you and how we use and protect that personal data. We encourage you to familiarize yourself with the terms of our agreement and reach out to your account manager if you have any questions.

Online Purchases

If you make a purchase via one of our Sites, or by clicking the “Pay by Debit or Credit Card” link in one of our emails or invoices (“Online Payments”), this section shall apply.

When you click the “Pay” or “pay by credit or debit card link, you will be taken to another site, managed by our payment provider in order for your payment to be processed. When you click on the link we will receive details of your IP address. To process your payment, you will be required to provide your payment details to the relevant payment provider via its payment gateway. Your payment details will also be made available to the merchant bank to process the transaction. We will not receive and/or store your payment details, but once you have made payment we will receive confirmation that your payment has been processed and be provided with certain details regarding the transaction including the amount paid. We are required to retain a copy of the transaction details for up to seven (7) years; however, this does not include card data.

For further information regarding the payment providers used on each of our sites, please see below. Please note that we are not responsible for the privacy practices or the content of such web sites, and this Privacy Notice does not apply to such sites or gateways operated by our payment providers. We encourage our users to be aware when they leave our site to read the privacy notice/statement of the relevant payment provider(s) used to process their payments.

End-user information

If you are an End-User, we have been provided with your information, and handle your information subject to an agreement with one of our customers. Our customer may be your employer (or an affiliate of your employer), a prospective employer to whom you have submitted a job application or resume, your educational institution, or another company which has either given you or asked you to sign up for an account with one of our Sites. In these instances, our customer acts as ‘data controller’ for your information, and we act as ‘data processor’. This means that we do not determine how we collect or use your data. Our customer determines how we collect or use your data, and provides us with instructions on what to do with it in our agreement with them. We only collect and use your data in accordance with the agreement between us and our client.

Our customer is responsible for the management of your account on our relevant Site. If you have any questions or concerns regarding our use or collection of your data, or if you wish to make a request to exercise your rights as a data subject or a consumer (as explained below), please reach out to our customer as they are best placed to assist you.

How do we collect your Information?

Your information will either have been provided to us by our customer if they have set your account up for you, or provided to us by you where our customer has invited you to set up an account or submit information such as a resume. Additionally, if you or our customer contact us to report problems or ask questions about your account, we may record your contact information and details of our interaction with you or our customer in our support ticket management system.

Which Types of Information Do We Collect?

This depends on which of our Sites you are using and how our customer is using our Site to collect your information. Broadly, the types of data we collect may include:

• Account details (username, password, login details, profile details);
• Contact details (name, work/institution phone or email, personal phone or email (for recruitment Sites only));
• Location (IP address);
• Education or Training related data (for LMS sites only) (course enrollment, course completion, course information, quiz scores, results, class/training schedules, and other training related information determined by our customer);
• Employment and performance related data (for workforce management, and D&I Sites) (job roles or descriptions, performance reviews, length of service, feedback, job title, division, development goals or plans, performance plans, salary data, D&I analytics); and/or
• Recruitment related data (for Recruitment sites only) (home address, qualifications, work history, resume/CV data, job application data).

If you require more information about which of your information we collect, please contact our customer as they can advise you on which of your information they have used our Site to collect.

How Do We Use Your Information?

We will only use your information in connection with the services that we provide to our customer in accordance with the agreement between us and our customer. Our services to our customer include the routine activities of providing cloud-based services, such as hosting, support, and maintenance. The majority of the time we have no need to access any individual's information to provide these Services. There are only certain scenarios where we would ever need to access your information. These scenarios largely are based around providing technical support to your or our customer, in which case we may need to access your information to identify or resolve a technical issue. We will only ever access your information to the extent required, and with the permission of our customer. Our customer is responsible for ensuring that they have all appropriate consents from you to enable us to perform the services.

For more information about how we or our customer use your information, please contact our customer as they are best placed to provide you with this information.

Where We Store Your Information and for How Long

All of your information is stored on secure servers, with layers of security to keep your information protected. The location of the server on which your information is stored depends on which of our Sites you are using, and also on what we have agreed with our customer. The length of time for which we store your information is also determined by our agreement with our customer. Our customer, as a "data controller," is responsible for determining both of these things.

For more information about where and for how long we store your information, please contact our customer as they are best placed to provide you with this information.

Visitor Information

How Do We Collect Your Information?

If you are a Visitor, you may have directly provided us with your information. We may collect and process your information when you:

• Complete a form on our website or via online advertising;
• Provide us with your personal data at an event;
• Subscribe to a newsletter, contest, webinar, event, or other service;
• Register online or place an order for any of our products or services.
• Voluntarily complete a customer survey or provide feedback on any of our Sites or via email.
• Use or view our website through your browser's cookies.

In most of these cases, you will share personal information with us voluntarily. When you visit our Sites, portals or use our SaaS or Subscription Services, we may also collect certain information automatically from your device as further explained in the Cookies and Other Tracking Technologies section below. [In some countries,  this information may be considered personal information under applicable laws, and accordingly, you may be presented with pop-ups, banners or other notice which ask you whether you consent to such collection.]

What Types of Information do We Collect?

The types of information we may collect through our Sites include:

• Contact details (e.g. name, address, email address, phone and fax numbers, institution, title or job position),
• Location (IP address);
• Your interest in LTG's (or its subsidiaries') products or services;
• Information about your interest in newsletters, webinars, events, or other services that we provide (solely or jointly with others); and
• Any other data you provide.

Except for certain information that may be collected automatically when visiting our Sites and portals (see further the Cookies and Other Tracking Technologies section below), a Visitor to our Sites who is not seeking employment or expressing an interest in purchasing products or services is not required to reveal any personal information.

How Do We Use Your Information?

We may use your information in the following ways:

• To provide you with information by post, email, or phone about products or services you have requested or we feel may interest you;
• To manage any query you have raised;
• To allow you to participate in interactive features of our services, when you choose to do so;
• To administer our newsletters, surveys, and contests;
• To organize and manage events and webinars; and
• To administer our Site and for internal operations (including troubleshooting, data analysis, testing, research, statistical purposes, and as part of our efforts to maintain the safety and security of our Sites)

Once we receive your information, it is subject to strict security measures in accordance with applicable law. We may transfer your personal information to companies that help us provide our Services and that we believe offer a secure solution that improves our Service delivery. We may also transfer personal data to our affiliates and partners.

If you are a system user of one of our customers and have questions about the processing of your personal information, please contact our respective customer directly as they control the handling of your data.

Job Candidate / Applicant Information

If you are a Job Candidate /  Applicant, the personal data we collect from you helps us manage the recruiting and hiring process with you, conduct business, and comply with our legal obligations. This includes assessing your skills and qualifications, verifying your information, carrying out reference checks, carrying out background checks and improving our recruitment processes. We may also keep this information on file to contact you about future opportunities unless you ask us not to do this.

How Do We Collect Your Information?

Much of the personal data is obtained from you during the application, employment, or contracting process. Other data may be obtained from third parties, including, for example, from recruitment agencies.

What Kind of Information Do We Collect?

We may collect and use the following categories of personal data about you (some or all may apply to you):

• Identification data;
• Contact information;
• Demographic data and responses to screening questions;
• Background check information (including previous employment details / resume data);
• Data pertaining to work preferences and abilities;
• Sensitive information (any information you voluntarily provide that may include sensitive data such as race, ethnicity, health information, or other protected characteristics);
• Information on certain health conditions (only where required by law);
• Job interview notes and any applicable assessment results;
• Financial data; and
• Cookies data

With Whom Do We Share Your Personal Data?

Your personal data may be shared within LTG where lawful to do so.  We take appropriate steps to ensure that people who receive your data are bound by confidentiality obligations.

In addition, we may share your information with third party service providers assisting with the application and recruitment process. These may include background check agencies, recruitment agencies, and other intermediate parties involved in the process. In providing such services, your personal data may be processed by the service provider on LTG’s behalf for the purposes of providing the required service to LTG.

We may also share your personal data with third parties, who may act as controllers in their own right, in other circumstances, including:

• Insurance organizations;
• Governmental organizations or agencies, including law enforcement (where required by law or in response to legal processes); and
• External advisors (such as legal advisors, accountants)

Contractor, Partner, or Supplier Information

When we engage a contractor, partner, or supplier, we may collect certain information concerning them concerning them (or as the case maybe be, their customers). We use the information collected from partners, reseller and suppliers to effectively manage our business relationships, including communication and contract management. This information may be used to process financial transactions, and comply with applicable legal and regulatory requirements.  

How Do We Collect Your Information?

We obtain your personal information either directly from you or through the supplier, partner, or service provider with whom you work. 

What Kind of Information Do We Collect?

The types of personal data we collect will vary depending on your function, location, and any terms and conditions of engagement relevant to you.

Some of the types of personal data we may collect include:

• Basic contact information;
• Employer, Partner, or Supplier identification details;
• Professional information;
• Compliance information;
• Financial Information; and
• Any other information necessary for the purposes of managing our relationship

With Whom Do We Share Your Personal Data?

Your personal data may be shared within LTG with departments and personnel involved in managing our business relationship. We take appropriate steps to ensure that people who receive your data are bound by confidentiality obligations. We may also share your information with certain third-party service providers. Service providers assisting in our business operations, such as external advisors and auditors. Where required by law in in response to legal processes, we may have to share your information with relevant supervisory authorities.

Retention

We retain the information we collect from you for as long as necessary to fulfill the purposes for which it was collected (e.g., to provide the Subscription Services and other services to our customers) or to comply with legal, tax, or accounting requirements.

Once this period ends, we will either delete or anonymize your information. If deletion or anonymization is not possible (e.g., because your information is stored in backup archives), we will securely store your information and isolate it from any further processing until deletion is possible.

Cookies and Other Tracking Technologies

Our site uses cookies to distinguish you from other visitors to provide you with a better experience and to help us improve our site. A cookie is a small data file placed on the hard drive of your computer when you visit a website.

Types of Cookies

Our site may use session cookies, persistent cookies, and web beacons. A “session cookie” expires when you end your session (i.e. close your browser).  A “persistent cookie” stores information on your hard drive so when you end your session and return to the same website at a later date, the cookie information is still available. A “web beacon” is a small string of code that represents a clear graphic image, a redirect URL or JavaScript and is used in conjunction with a cookie. The cookies we place on our server are readable only by us, and cookies cannot access, read or modify any other data on your computer. We may use web beacons alone or in conjunction with cookies to compile information about your usage of our site and interaction with emails from us. For example, we may place web beacons in marketing emails that notify us when you click on a link in the email that directs you to our site, in order to improve our site and email communications.

Purposes of Cookie use

We use Cookies for several purposes. Please see information below on each of these purposes.

Preference Cookies

We use preference cookies to collect information about your choices and preferences, and to allow us to remember language or other local settings and customize our site accordingly.

Analytics Cookies

We also use analytics cookies to collect information about your use of our site, and to enable us to improve the way our site works. For example, analytics cookies show us which are the most frequently visited pages on our site, help us record any difficulties you have with our site, and show us whether our advertising is effective or not. This allows us to see the overall patterns of usage on our site, rather than the usage of a single person. We use the information to analyse the site traffic, but we do not examine this information for individually identifying information.

Marketing Cookies

We use Remarketing with Google Analytics to advertise online. Third party vendors, including Google, may show our ads on sites across the internet.

We, and third party vendors, including Google, use first-party cookies (such as the Google Analytics cookie) and third-party cookies (such as the DoubleClick cookie) together to inform, optimize, and serve ads based on someone’s past visits to our website. Remarketing cookies used by us expire after 30 days. To opt out of Remarketing or to control your ad preferences, please click here.

Controlling Cookies

Most web browsers have a “help” menu where you can review how to prevent your browser from accepting new cookies, how to have your browser alert you when you receive a new cookie or how to fully disable cookies on your browser. You can learn more about cookies at sites like www.aboutcookies.org. If you use your browser settings to block all cookies, you may not be able to access all or parts of our site.

Third Party Cookie providers

In addition to the cookies that we own, we may also use third-party cookies on our Sites for the purposes detailed above. 

You can find more information on the privacy and security policies of each of our third party cookie providers, how to opt-out from their cookies by clicking on the links below:

What are your choices regarding cookies?

Necessary cookies, which are required for the core functionality of the website, are enabled by default automatically when you access the Site.

For all other categories of cookies used, which are not necessary for the site to operate, you can expressly consent to their use by clicking “accept” on the cookie banner which is set on the Site. If you do not wish to consent to the use of these cookies, you can opt out by returning to the Site and changing your cookie settings.

Additionally, you can also decide whether or not to accept cookies through your internet browser’s settings. Most browsers have an option for turning off the cookie feature, which will prevent your browser from accepting new cookies, as well as (depending on the sophistication of your browser software) allow you to decide on acceptance of each new cookie in a variety of ways. You can also delete all cookies that are already on your computer. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some of the Services and functionalities may not work.

By continuing to browse our Site, you are agreeing to our use of cookies unless you have opted out.

Security

We understand that the security of any data we collect is of great importance. We therefore make sure it is well protected. We have appropriate physical, electronic, and managerial procedures to safeguard and secure the personal information we process. We follow generally accepted industry standards to protect personal information submitted to us both during transmission and once received. While we strive to protect your personal information, we cannot guarantee its absolute security and any transmission of personal information is therefore at your own risk. 

If you are a Customer, and you require more information regarding our security measures, please refer to our agreement. If you are an End-User, please reach out to our customer who controls your account. If you are a Visitor, please contact us using the methods detailed below for more information.

Disclosure of Your Information

Personal information may be disclosed to our ultimate holding company and its direct and indirect subsidiaries. Our employees are responsible for the internal security of confidential or proprietary information, and are only given access in accordance with the principle of least privilege, meaning they are only given access to your information when necessary and to the extent necessary for our operations to continue. Employees receive regular data protection and cyber security training, and are subject to LTG’s data protection and security policies. Employees who violate the data protection and security policies are subject to disciplinary action including, but not limited to termination. 

Our general policy is not to disclose your personal information to any third-party without your prior consent. However, we may disclose your personal information to third parties in the following scenarios:

• We may use third-party vendors and hosting partners to provide the necessary hardware, software, networking, and other technology and services required to operate and maintain our Sites. As part of this, we may be required to transfer some of your personal information to these vendors and partners. Where we use third-party service providers, we choose vendors that enhance our services or practices and follow any legal requirements that apply to securing your data.
• If we sell or buy any business or assets in which case your personal information may be disclosed to the prospective seller or buyer.
• If we, or substantially all of our assets, are acquired by a third party, personal information held by us will be transferred as assets.
• We also reserve the right to disclose your personal data as required by law or in the good faith that disclosure is necessary to protect our rights. This may include exchanging information with other organizations for the purposes of fraud protection and credit risk reduction.
• To any other person with your consent to the disclosure.

We do not share, sell, rent, or trade personal information with third parties for their promotional or other purposes. If this practice should change, we will update this policy to identify how individuals can opt-out.

Your Rights

Legal basis for processing your personal data

Our legal basis for processing your personal data depends on the specific data, applicable local laws, and the context in which it is collected. Generally, we will process your personal data based on one of the following legal bases:

Depending on your location, you may have various rights regarding your personal data under different data protection laws. Below is an overview of these rights as provided by the General Data Protection Regulation (GDPR), UK GDPR, Data Protection Act 2018, California Consumer Privacy Act as amended by the California Privacy Rights Act 2020 (collectively, the “CCPA”), and the Colombian General Data Protection Law (Law 1581 of 2012).

• Right to Know – the right to know what personal data we are collecting about you, the reasons why, and how it would be used, shared, or sold. This notice provides you with this information but if you require specific information concerning your use case, please raise a request in accordance with the procedure below. 
• Right of Access / Disclosure - the right to request that we provide you with copies of your personal data that we hold on record. In some scenarios, as permitted by law, we may charge you a small fee for this service. If you are a Californian resident, you have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months.
• The Right to Rectification / Correct - the right to request that we correct any information we have on record that you believe is inaccurate. You also have the right to request that we complete any information we have on record that you believe is incomplete.
• Right to Erasure / Deletion - the right to request that we erase your personal data, under certain conditions or circumstances. If you are a Californian resident, you have the right to request that we delete any personal information we have collected from you in the last 12 months, in certain circumstances.
• The Right to Restrict Processing / Limit - the right to request that we restrict the processing of your personal data, under certain conditions or circumstances. If you are a Californian resident, You have the right to limit our use and disclosure of your sensitive personal information to what is necessary for us to perform our services as requested, as authorised by applicable laws, or as otherwise permitted under the CCPA.
• Right to Object to Processing - the right to object to the processing of your personal data, under certain conditions or circumstances.
• The Right to Data Portability - the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions or circumstances.
• Right to Opt-Out - If you are a Californian resident, the right to request to opt-out of an organization selling or sharing your information to certain third parties. We do not sell information to third parties at this time, but should this change, we will update this policy to provide more information about our practices and the exercise of this right.
• Right to Non-Descrimination - the right to exercise your rights under the CCPA without discrimination, and we will never deny you goods or services, charge you a different price, provide you with a different level or quality of goods or services based on your exercising your rights over your data.

You can verify whether we hold any of your personal data, or make a data subject request by submitting a request via the Data Subject Request Form. We may need to verify your identity before we are able to respond to the inquiry.

COPPA

In accordance with the Children’s Online Privacy Protection Act (“COPPA”) and the GDPR, our Sites are not intended for use by children. We do not knowingly request, solicit, access, or receive personally identifiable information from anyone under the age of 13 and 16 respectively. 

Where we are aware of any personal information submitted through our Sites belonging to a child, we will delete this data from our records.

Exercising Your Rights

You have the right to contact your local data protection authority and can request details on how to do so by contacting us at [email protected]. To exercise your rights under the applicable laws, you may make a request via the Data Subject Request Form or by calling +44(0) 20 7832 3440.

To enable us to process your request, we may require you to:

• Provide sufficient information that allows us to reasonably verify that you are the person about whom we collected personal information or an authorized representative.
• Describe your request in sufficient detail that allows us to understand, evaluate, and respond to it.

Please note that we would be unable to respond to your request, or provide you with any personal data if we are unable to verify your identity or authority to make the request and confirm the personal information relates to you.

We endeavor to respond to a request within thirty (30) days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive or onerous, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

Authorized EEA Representative

All LTG subsidiaries based outside of the EEA have, to the extent that the GDPR is applicable with regard to any data processing performed, appointed Learning Technologies Group GmbH to act as their designated representative within the EEA.

Name: Learning Technologies Group GmbH

Address: Dieningholt 9, 59387 Ascheberg, Germany

Email: [email protected]

Authorized UK Representative

All LTG subsidiaries based outside of the UK have, to the extent that the Data Protection Act 2018 is applicable with regard to any data processing performed, appointed Learning Technologies Group (UK) Limited to act as their designated representative within the UK.

Name: Learning Technologies Group (UK) Limited

Address: Projects The Lanes, Nile House, Nile Street, Brighton, East Sussex BN1 1HW.

Email: [email protected]

Authorized Colombia Representative

All LTG subsidiaries based outside of Colombia, to the extent that the Colombia General Data Protection Law 1581 of 2012 Regulatory Decree 1377 of 2013 and Regulatory Decree 1074 of 2015 are applicable with regard to any data processing performed, appointed Learning Technologies Group (Colombia) S.A.S. to act as their designated representative within Colombia.

Name: Learning Technologies Group (Colombia) S.A.S.
Email: [email protected]

Alternatively, complaints may be filed directly with the Superintendence of Industry and Commerce.

Data Privacy Framework:

For EU, UK, and Swiss Individuals Whose Data is Transferred into the US

As applicable, Learning Technologies Group Plc. its subsidiaries, and its associated businesses including Affirmity, Breezy HR, getBridge LLC, Open LMS, PeopleFluent, Reflektive, Inc., Rustici Software, and Watershed Systems, Inc., comply with the EU-US Data Privacy Framework program (EU-U.S. DPF), UK Extension to E.U.-U.S. DPF (UK-US DPF), and Swiss-US Data Privacy Framework program (Swiss-U.S. DPF) as developed by the United States Department of Commerce, European Commission, UK Government and Swiss Federal Administration. Learning Technologies Group and its US affiliates included in its certification have certified to the U.S. Department of Commerce that it adheres to the DPF Principles with regards to transfers to the US of personal data received from the European Union, in reliance on the EU-U.S. DPF and with regard to transfers to the US from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. We certify adherence to the Swiss-U.S. DPF Principles with transfers to the US of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If any conflict shall arise, the Data Privacy Framework Principles shall govern. To learn more about the Data Privacy Framework program and to view our certification page, please visit www.dataprivacyframework.gov/.

Pursuant to the Data Privacy Framework Principles, we are obligated to inform EU, UK, and Swiss individuals whose data is transferred to the United States that we may be required to release that information in response to lawful requests by public authorities including to meet national security and law enforcement requirements. We remain responsible and liable under the Data Privacy Framework Principles if third-party agents that we engage with process the personal data in a manner inconsistent with the Data Privacy Framework Principles, unless we can prove we are not responsible for the event giving rise to the damage.

We are committed to cooperate with EU Data Protection Authorities (DPAs) and the UK Information Commissioner’s Office and comply with the advice given by such authorities with regard to human resources data transferred from the EU and the UK in the context of the employment relationship. EU individuals with HR complaints should refer to https://edpb.europa.eu/about-edpb/board/members_en for the list of Data Protection Authorities.

We are committed to complying with the Swiss-US DPF and UK Extension to the U.S. – E.U. DPF as approved by the Swiss Federal Administration and UK Government (respectively) as a lawful data transfer mechanism for transfers of personal data from Switzerland or the United Kingdom (and Gibraltar) to the United States and have self-certified for Switzerlandand the United Kingdom and Gibraltar under the Data Privacy Framework.

In compliance with the EU-US Data Privacy Framework Principles, we commit to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the DPF Principles.  European Union, Swiss and United Kingdom individuals with DPF inquiries or complaints should first contact us via the methods detailed below under the heading “Exercising Your Rights”.

We have further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers  for more information and to file a complaint. This service is provided free of charge to you.

If your  DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.  See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2

You may request a copy of, correct or amend incorrect data or request deletion of personal information that has been processed in violation of the Data Privacy Framework Principles. To seek access, correct, amend, or delete inaccurate data transferred to the United States under Data Privacy Framework, please complete this Data Subject Request Form. We will respond to the inquiry within 30 days.

Individuals with general Data Privacy Framework inquiries or complaints should contact us via the methods detailed below under the heading “Exercising Your Rights”.

Enforcement by the Federal Trade Commission - United States

The Federal Trade Commission is the statutory body with jurisdiction to investigate any claims regarding possible unfair or deceptive practices, including violations of laws or regulations covering privacy in the United States.

Third Party Websites

Our Sites may contain links to and from websites of our partner networks, customers, and/or affiliates. Please note that these websites are subject to their own privacy policies and we do not accept any liability for these sites and policies. Please check these policies before you submit any personal data to these websites.

Corporate and Contact Details

Our global privacy team act as our primary point of contact for all privacy matters. You can contact them by submitting a request via the Data Subject Request Form or by calling +44(0) 20 7832 3440.

[email protected], or at:

Learning Technologies Group Plc

3 New Street Square

Attention: Privacy Team

London, UK EC4A 3BF

Phone: +44(0) 20 7832 3440

Changes to this Privacy Notice

We reserve the right to modify this Privacy Notice at any time, so review it frequently. If material changes are made, it will be reposted and made available from our homepage so you are aware of what personal information we collect, how we use it, and under what circumstances (if any) we disclose it.