Privacy Notice

The HURACT takes your privacy seriously, and we are committed to safeguarding and protecting your personal data. The Trust is a “Controller” for data protection law and the General Data Protection Regulations (GDPR) 2018 for what concern the EU members. This means that we are responsible for deciding how we hold and use personal data about you. We aim to be clear about how we use your personal data, and this privacy notice explains how we look after your personal data, what personal data we process and why. This notice is compliant with the Federal Law on Data Protection.
You must read this privacy notice together with any other privacy notice we may provide when collecting or processing personal data. Hence, you fully know how and why we use your personal data.

What personal data do we collect and process?

We will collect, use and store personal data when you:

Purchase training, by phone, via our website or at our offices.

Sign up to attend one of our courses, events or workshops.

Sign up for our mailing list via our website.

Sign up for our mailing in other contexts, such as events, workshops or training classes.

Provide feedback about our services.

Ask for information regarding our products and service.

Communicate with us.

The personal data we hold may include your:

Name.

Postal Address.

Telephone Numbers.

Email address.

The organization you work for or to which you belong.

Your role or occupation.

Transaction history (for example, if you have attended training, events, etc., or the requested information).

Billing information.

Preferences regarding how we communicate with you about our activities, training or events.

Information that is available publicly or on social media.

Special Categories of Personal Information

We may also collect and store sensitive information relating to disability if you require specific access arrangements for accessing our services. This sensitive information will be held securely and only used for this limited purpose.

Implications of not providing personal data

We only ask you to provide personal data when we have a good reason to do so, and there may be implications if you do not provide particular information to us. If you choose not to provide us with the personal data requested, we will tell you the particular implications of any such decision at the relevant time.

How do we use your personal data?

Most commonly, we will use your personal data in the following circumstances.

We will use the data we have collected to:

Marketing communication

You are opt-in to the marketing communication by providing your contact details at events, seminars and newsletters.

You also opt-in to marketing communication by enrolling on one of our courses, lessons or webinars.

We will use the data provided for the following.

Suppose you no longer wish to receive marketing information by email about our programme, offers, or customer research, or you think communication has been sent to you erroneously. In that case, you can change your contact preferences by logging into your account online or by contacting HURACT using the contact details at the end of this notice.

An unsubscribe option will also be included in any email we issue.

If the personal data we hold for you is incorrect or incomplete, we would ask you to contact us as soon as possible to request that it be updated.

Social Proof

Enrolling in one course, lesson or webinar allows us to mention your organization's name and logo in our sites' and newsletters' Social Proof sections.

Using Thinkific WEBSITE (www.huract.online)

Our online courses and site is hosted by Thinkific Labs Inc. (“Thinkific”). They provide us with an online course creation platform that allows us to sell our product/services to you.

Your data is stored through Thinkific’s data storage, databases and the general Thinkific application. They store your data on a secure server behind a firewall.

Payment at Thinkific WEBSITE (www.huract.online)

If you purchase on our site, we use a third-party payment processor such as Stripe or Paypal. Payments are encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our site, related courses, and its service providers.

For more insight, you may also want to read Thinkific’s Terms of Service here https://www.thinkific.com/resources/privacy-policy/ or Privacy Statement here https://www.thinkific.com/resources/terms-of-service/ .

Data sharing and third parties

We engage the services of several third-party service providers, who act as Data Processors, to assist us with some of our administrative and operative services. We rely on their contractual obligation to us as the legal basis for sharing personal data with them. These third parties include our email distribution service and mailing house.

Certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies concerning the information we are required to provide to them for your purchase-related transactions.

For these providers, we recommend that you read their privacy policies so you can understand how your personal information will be handled by them.

Certain providers may be located in or have facilities in a different jurisdiction than you or us. Suppose you elect to proceed with a transaction that involves the services of a third-party service provider. In that case, your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.

When you click on links on our course site, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

We may also share personal data with professionals such as bankers, lawyers, auditors and insurers who provide us with professional services to help protect HURACT interests. These third-party service providers will only use your personal data to the extent necessary to allow them to perform the services they are contracted to provide for us. We require all third-party service providers to respect and safeguard the privacy of your personal data and treat it following the law. We do not allow them to use your personal data for their own purposes.
We will not share, rent or exchange personal details with any other third parties without your agreement unless we are required to fulfil our contract with you or unless we are required to do so by law.

Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. Besides, we limit access to your personal data to those employees and third parties with a genuine business requirement to use it.
We have established procedures to deal with any suspected personal data breach. We will notify you and any applicable regulator of a breach where we are legally required to do so.

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

Data retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including to satisfy any legal, accounting or reporting requirements. If you opt-in for marketing purposes, we will retain your data to notify you about our services as long as you decide to leave them there.
A copy of our Data Retention and Archiving Policy is available on request, using the contact details at the end of this privacy notice.

Cookies

We collect cookies or similar tracking technologies. This means information that our website’s server transfers to your computer. This information can be used to track your session on our website. Cookies may also be used to customize our website content for you as an individual. If you are using one of the common Internet web browsers, you can set up your browser to either let you know when you receive a cookie or to deny cookie access to your computer.

Web Analysis Tools

We may use web analysis tools built into the website to measure and collect anonymous session information.

Age of Consent

By using this site, you represent that you are at least the age of majority in your state or province of residence or the age of majority in your state or province of residence.

Changes to this Privacy Policy

We reserve the right to modify this privacy policy anytime, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. Suppose we make material changes to this policy. In that case, we will notify you here that it has been updated so that you know what information we collect, how we use it, and under what circumstances we use and/or disclose it.

If our site or course is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

Your duty to inform us of changes
The personal information we hold about you must be accurate and current. Please ensure that you keep us informed if your personal information changes.

Your rights under the data protection legislation

Under the data protection legislation, you have the following rights about the personal data we process. These are not absolute rights and can only be exercised in certain circumstances.

You will not have to pay a fee to access your personal data (or to exercise any other rights), and we will aim to respond to all legitimate requests within one month. If the request is particularly complex or several requests have been made, it may take us longer to process your request, but this will be explained to you. We may also charge a reasonable fee if your request is unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

QUESTIONS AND CONTACT INFORMATION

If you have questions about how your data is being processed or the rights detailed above, please contact HURACT by email at [email protected].