• Who we are and how to contact us
• What personal data we collect
• How and why we use it
• Your data protection rights
• How to raise a concern or complaint

ReGrowth Learning is an education and e-learning company providing online courses, digital learning experiences, and related services.

ReGrowth Learning is a partnership registered in England and Wales.

Company Number: [Insert Company Number]

Registered Office:

Email: support@regrowth.com

Depending on the context, ReGrowth Learning acts as:

• A Data Controller for learners who register directly with us, determining the purposes and means of processing their personal data.
• A Data Processor when delivering services on behalf of a client organisation (for example, when learners are enrolled by their employer).

If you have any questions about this Policy or how we handle your data, you can contact our Privacy Officer at the email above.

We collect and process the following types of personal data, depending on how you use our services:

• Identity Data: name, age, and gender
• Contact Data: email address, postal address, country/city
• Learning Data: enrolments, course progress, activity progress/completion, assessments, certificates, badges, and feedback
• Technical Data: IP address, browser type, operating system, and other usage information collected via cookies or analytics tools
• Communications Data: messages, emails, or survey responses sent to us

How we use your personal data

We use your personal data for the following purposes:

• To register you for courses and provide access to our learning platform
• To administer your learning records and issue certificates or badges
• To communicate with you about course updates, technical support, or service information
• To ensure the quality, security, and improvement of our learning services
• To meet legal and regulatory obligations
• To respond to feedback, complaints, or requests
• To send you optional updates or marketing (only where you have given consent)

Lawful bases for processing

We rely on one or more of the following lawful bases to process your personal data:

• Performance of a Contract: to provide learning and certification services you have requested
• Consent: for optional communications or marketing (you can withdraw consent at any time)
• Legal Obligation: where processing is required by law
• Legitimate Interests: to improve and secure our learning services and maintain quality assurance

Who we share your data with

We take the protection of your data seriously and only share it where necessary.

We may share your personal data with:

• Service providers who support our operations (e.g., hosting providers, learning management systems, analytics or email platforms)
• Client organisations who have enrolled you in our courses (if applicable)
• Legal or regulatory authorities, where required by law or in response to valid requests

All third-party providers are bound by strict contractual and confidentiality obligations to ensure your data is secure and only processed according to our instructions.

International data transfers

Some of our trusted service providers may process data outside the UK or European Economic Area (EEA).

Where this occurs, we ensure adequate protection through:

• UK Government adequacy regulations; or
• Standard Contractual Clauses or other appropriate safeguards.

You can contact us for further details on international data transfer arrangements.

Data retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this Policy, including for legal, accounting, or reporting requirements.

Typically:

• Learning and certification data are retained for up to 7 years.
• Communications and support records may be kept for up to 2 years.

After these periods, or upon your request (where applicable), your personal data will be securely deleted or anonymised.

Data security

We take reasonable and proportionate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access, disclosure, alteration, or destruction.

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority in accordance with legal requirements.

cookies and tracking technologies

Our website and learning platform use cookies and similar technologies to:

• Enable platform functionality
• Analyse usage and performance
• Improve user experience

You can manage or disable cookies through your browser settings. For more details, please refer to our [Cookie Policy].

Your rights

Under UK GDPR, you have the following rights in relation to your personal data:

• Right of Access: request a copy of your personal data
• Right to Rectification: request correction of inaccurate or incomplete data
• Right to Erasure (“Right to be Forgotten”): request deletion of your personal data where there is no lawful reason for us to keep it
• Right to Restrict Processing: ask us to limit how we use your data in certain circumstances
• Right to Data Portability: request to receive your data in a machine-readable format
• Right to Object: object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: withdraw consent where processing is based on it

To exercise any of these rights, please contact us at: info@regrowthlearning.com

We may ask you to verify your identity before responding to your request and aim to respond within 30 days.

Children’s data

Our services are not intended for individuals under the age of 16 without parental consent.

If we become aware that we have collected personal data from a child without appropriate consent, we will delete it promptly.

Complaints

If you have concerns about how we handle your personal data, please contact us first so we can try to resolve the issue.

If you remain dissatisfied, you can contact the UK Information Commissioner’s Office (ICO):

Website: https://ico.org.uk/concerns/

Telephone: 0303 123 1113

Changes to this policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and where appropriate, notified to you by email.

Please review this page periodically to stay informed about how we protect your information.