This privacy policy sets out the basis and explains how and when Cenit College uses the subscribers’ information in compliance with the Data Protection Act of Ireland. Cenit College Ltd is GDPR (General Data Protection Regulation) compliant at all times and all information is stored within EU borders. The Personal Data provided by you will be held by Cenit College as a controller. Cenit College respects user privacy and is committed to ensuring its protection. We assure you that any identifiable data provided when using our websites will be used only in accordance with this privacy policy.
Data is collected when a user registers for a course or asks a question via email/chat or phone (or similar means of communication). A user may visit our sites without going through the registration process.
When you purchase a product on Cenit College you agree to be added to our “Customers Mailing List”, you may get occasional emails about new offers and discounts for our existing students. You can unsubscribe at any time by using the unsubscribe link at the bottom of any email.
Cenit College saves user information as it is essential to properly identify customers’ needs. When Cenit College understands our customers’ needs we can provide them with the best service.
All personal data enquires should be made to the Cenit College Data Protection Manager at the following email address: dataprotection@cenitcollege.ie
If a data subject is not satisfied with the information provided by Cenit College or you believe that your rights as a data subject have not been addressed, then that data subject can make a formal complaint to the Data Protection Commissioners (Ireland), who can be contacted as follows.
Post: Office of the Data Protection Commissioner, Canal House, Station Road, Portarlington, Co. Laois, R32 AP23, Ireland.
Phone: +353 (0761) 104800, or
Email: info@dataprotection.ie
Personal data may be collected for the following purposes.
The type of personal data that Cenit College collects from its data subjects depends on the interaction between Cenit College and the Data Subject and the relationship between them. Cenit College will collect personal data but only when voluntarily submitted. Non-personal information (such as demographic data regarding user IP addresses that have been clipped) is collected from all of our website users on a cumulative basis. This type of anonymous statistical data cannot be used to identify or contact the user.
Having user’s information is essential for Cenit College to properly identify customers’ needs so Cenit College can provide the best service. When Cenit College processes user information, it may be used for the following reasons:
Under the Data Protection Acts 1988-2018, the College is obliged to update or remove user’s personal information if informed of any changes. Cenit College retains personal data only for as long as is necessary to fulfil the purpose it was collected. It will not be used for purposes beyond that. Retention periods, deletion, archiving, or destruction methods are documented in the Cenit College Record of Processing.
For the website user’s personal information can be updated or removed by emailing the Data Protection Manager at dataprotection@cenitcollege.ie
Where any potential learner contacts Cenit College about any programme of study in the College, Cenit College will collect personal data to respond to that enquiry or request for service. This information permits Cenit College to respond to the respective enquiry. Cenit College may also acquire data from its clients in order to subprocess data and provide the required service to the client.
This information is collected on a legal basis that is within the legitimate interests of both Cenit College and the Data Subject to respond to requests for information. The primary sources of most learner data collected are the information you submit during the application, enrolment, or registration process, the information your manager or supervisor supplies, and your academic data, such as test scores and diplomas.
Where learners apply and register for programmes of study further information such as the following is collected, this is dependent on the programme of study. Our Company may collect some or all the following data:
QQI Programmes: All certificates granted by QQI (the Irish National awarding body) necessitate the student to possess an Irish or UK PPS number (Personal Public Service Number) and other data. The lack of a PPS number renders learners ineligible to receive an award from QQI, as it is a certification requirement by QQI, for our programs. Learners without a PPS number will only receive a completion certificate from Cenit College.
Personal Information | Full legal name
Date of birth Gender Nationality |
Contact Details | Address (including postal code)
Email address Phone number |
Educational Background | Previous qualifications and academic history |
Employment Information (if applicable) | Current employment status (if applicable)
Relevant work experience (if applicable) |
PPS Number | Personal Public Service Number |
Photographic Identification | A valid photo ID (e.g., passport, driver’s license) – We “sight” this information to prove identity. |
Disability or Special Requirements (if applicable) | Information about any disabilities or special requirements the learner may have to ensure proper accommodations can be made if necessary. |
Payment Information
|
Financial details for course fees (We will only hold what is required by law)
|
Declaration of Consent:
|
Agreement to terms and conditions
Consent for the processing of personal data |
ILM Programmes: Requires specific learner information to complete the registration process.
ILM Programmes | |
Personal Information | Full legal name
Date of birth Gender Nationality |
Contact Details | Address (including postal code)
Email address Phone number |
Employment Information | Current employer
Job title Industry sector |
Educational Background | Name of educational institutions attended.
Highest level of education completed. Qualifications obtained. |
ILM Membership Information | ILM membership number (if applicable) |
Payment Information: | Financial details for course fees (We will only hold what is required by law) |
Declaration of Consent | Agreement to terms and conditions
Consent for processing personal data |
PRINCE/SCRUM/Agile/ACCA/Green Project Management: Requires specific learner information to complete the registration process. Please review the information required in our privacy policy.
Personal Information: | Full legal name |
Contact Details | Email address
Phone number |
Employment Information (if applicable | Job title
Current employer Industry sector |
Educational Background (if applicable) | Highest level of education completed.
Name of educational institutions attended. Qualifications obtained. |
Payment Information: | Financial details for course fees (We will only hold what is required by law) |
Declaration of Consent | Agreement to terms and conditions
Consent for processing personal data |
Funded Programmes: If learners enter via a funded route, we may be required to collect specific data, this will be detailed in the course application process. In this process, we are deemed to be a data processor and the client is the controller. Depending on the programme we may be required to collect some or all of the following data:
|
The following may also be collected on all programmes to allow us to provide the relevant service:
This information is collected on the basis that registering as a learner on Cenit College Programmes the data subject is entering into a contract to study with Cenit College. The above information is also collected to fulfil Cenit College’s legal obligation for Protection of Enrolled Learners (PEL) should that clause have to be activated.
Non-Personal Information Cenit College Ltd collects non-personal information (such as demographic data regarding a user IP address (that have been clipped) from all of our website visitors on a cumulative basis. This type of anonymous statistical data cannot be used to identify or contact users.
For some programmes learners may be required to register with the examination vendor (e.g QQI, ILM, PeopleCert) to complete your examinations and/or obtain certification, these vendors operate their retention policy and will require you or us to supply details to them such as:
Personal Information:
|
Full legal name
Date of birth Gender Nationality |
Contact Details: | Address (including postal code)
Email address Phone number |
Photographic Identification: | A valid photo ID (e.g., passport, driver’s license) |
Recordings | Vendors may record the exam process, and an authorised proctor will invigilate your exams. |
As a registered learner, Cenit College will use the personal data it may collect from the learners for the following purposes.
Cenit College will process this data for the following reasons.
Using CCTV Cenit College captures images of individuals entering our premises. This is the legitimate interest of the security, health and safety of all visitors, learners and staff attending the Cenit College premises.
Data Protection law requires that Cenit College must have a valid lawful basis to process personal data. Cenit College relies on several such bases as follows:
Much of the personal information processes are necessary to meet its commitments to you, for example, processing your data in relation to teaching, assessment, and associated administration. The following sets out the main purposes for which we may process your data in the provision of a contract:
An opt-out option is not permitted for these operations and core services.
Cenit College must process your data when required to do so under Irish/EU law, for instance:
Cenit College would share your data with third parties to protect your interests or those of another person, for example:
Cenit College will only process your data with your explicit consent. Explicit consent requires you to make a positive, affirmative action and be fully informed about the matter to which you are consenting, for example:
Under Article 6 of the GDPR Cenit College can share learner information with third parties if it is lawful to do so. According to Article 6 these lawful means are as follows.
Lawful principal | Details |
Consent | the data subject has given consent to the processing of his or her personal data for a specified purpose |
Contract | the processing is necessary in order to perform a contract where both the Cenit College and the data subject are parties to or because the data subject has requested Cenit College to take steps to obtain certain information prior to entering into the contract e.g. reference checks or revenue checks. |
Legal Obligation | the processing is necessary for Cenit College to comply with legislation |
Vital Interests | the processing is necessary to protect the vital interests of the data subject or another person. |
Public Task | the processing is necessary for Cenit College for the performance of a task carried out in the interest of the public or for Cenit College’s official functions which have a legal basis. |
Legitimate Interests | the processing is necessary for Cenit College’s legitimate interests or the legitimate interests of a third party, except where this interest overrides the protection of the data subject’s fundamental rights and freedom of their personal data. |
Generally, within Cenit College, data (especially sensitive data) is not shared with third parties. However, the following instances may give rise to the sharing of personal or sensitive data.
We follow industry standards on information security management and safeguarding sensitive information. Our information security systems apply to people, processes, and information technology systems on a risk management basis.
Your data may be shared between members of staff within Cenit College for us to fulfill its functions and objectives. Cenit College will employ reasonable and appropriate administrative, technical, personnel, procedural, and physical measures to safeguard your information against loss, theft, and unauthorised users’ access, uses or modifications.
The GDPR principles apply:
User’s personal information is stored on secure servers. Although Cenit College is committed to ensuring that data is secure, Cenit College cannot guarantee the security of any information sent to them via the Internet, as no Internet data transmission can be guaranteed to be absolutely secure. To prevent unauthorised access, Cenit College has taken all reasonable physical, electronic, and managerial steps to protect personal information.
Cenit College has a range of measures that it implements to safeguard the personal data of the data subject. These include.
Under articles 12 to 23 of the GDRP legislation, data subjects have increased rights, and data controllers are required to notify data subjects of their rights. Individuals have the right to:
Transparency of information | Cenit College provides individuals with privacy information at the time that it collects personal data from them. The privacy notice is available on the Cenit College website. Furthermore, Cenit College representatives will provide data subjects with a link to the privacy statement, a hardcopy of the privacy statement or give verbal information to the data subject on the privacy statement. |
Access their personal information where consent has been given | This includes information as to whether their personal data has been processed and information about that processing. Prior to releasing any personal data Cenit College requires verification of the identity of the applicant. Where the request has been made in electronic form the data will subsequently be provided in electronic form. Where a large amount of data is involved Cenit College may ask the data subject to specify the precise data they wish to access. |
Withdraw consent | Where consent is the legal basis for data processing. |
Rectification, erasure, and restriction of data processing and be notified when this has taken place.
|
Rectification, erasure, and restriction of data processing and be notified when this has taken place.
a. Rectification: Where a data subject requests rectification of their personal data, the controller must inform recipients to whom that data has been disclosed, where possible. The controller must also inform the data subject about the recipients to whom the data has been disclosed if he/she requests it. b. Erasure: This applies in the following instances: i. Where the personal data is no longer necessary in relation to the purpose for which it was collected. ii. The data subject withdraws consent and there are no other legal grounds for processing the data. iii. The data subject objects to the processing and there are no overriding legitimate grounds for the processing. iv. The personal data have been unlawfully processed. v. The personal data has to be erased to comply with an EU or Member State legal obligation; or vi. The personal data has been collected in relation to the offer of information society services (online business) to a child. Cenit College does not offer information society services to children. Where the controller complies with this request, reasonable attempts must be made to inform other controllers regarding the right to erasure. Often this is difficult for online processing such as on social network sites. |
Request the restriction or suppression of their personal data, in certain circumstances. A data subject’s right to restrict processing applies in four scenarios | 1. The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify its accuracy.
2. The processing is unlawful, and the data subject opposes erasure and requests restriction instead. 3. The controller no longer needs the personal data, but the data subject requires the data to exercise or defend a legal claim; or 4. The data subject has objected to the processing. It should be restricted pending verification of whether the legitimate interest’s grounds or public interest tasks of the controller override those the rights of the data subject. When processing is restricted, Cenit College will store the personal data but not further process it. Where the data are processed automatically, the restriction will be affected through technical methods and Cenit College will make a note on the IT system. |
Data portability | Allowing individuals to reuse their data across different services, where feasible |
Object to personal data processing | In certain circumstances (such as marketing). Cenit College requires consent from the individual to use their personal data for marketing purposes. |
Where a data subject interacts with the Cenit College websites, Cenit College will collect personal data that relates to their browsing activity. This is collected through Cookies and other web technologies such as Vimeo, Google Font and Adobe Typekit, Tidio. Specifically, Cenit College will collect:
Cenit College will collect personal data for the purpose of marketing. This is used to inform the data subjects of programmes, information and events that may be of interest to them. The website utilises Google Analytics to generate reports and insights of users visiting the Cenit College website. Visitors to the Cenit College website can opt out of this by using the Privacy Toolbar when they first enter the website. Alternatively, visitors may opt out by contacting the Cenit College Data Protection Officer. The college would like to send users information about products and services that we think they might like. If you have agreed to receive marketing, you may always opt-out later. You have the right at any time to stop Our Company from contacting you for marketing purposes or giving your data to other members of our Company Group. If users no longer wish to be contacted for marketing purposes, they can unsubscribe here https://www.cenitcollege.ie/unsubscribe.
All visitors to the Cenit College premises must sign the visitors log at reception. On this log, they will record the following information:
Sign-in Logs are shredded once a week.
Cenit College utilises Closed-Circuit Television (CCTV) and recording systems within its premises for security, safety, and contractual purposes. These systems may capture visual and auditory data for the protection of individuals and property. The following guidelines outline our practices regarding CCTV and recording data retention:
Contributions to the Cenit College Website: Posting “Content” on Cenit College (which for these T&C and conditions is defined to include any text of whatever nature, including without limitation any comments or submissions, photographs, graphics, video, or audio posted by you to any part of Cenit College. The subscriber agrees that Cenit College may use, edit, move, moderate, copy, disclose to third parties, and make the Content or any part of it available as it sees fit on the Cenit College or third-party services in any media worldwide now known or later developed. By providing content to Cenit College, the user confirms and warrants that it is your original work and not copied from anyone else or infringing any third party’s intellectual property or other rights and is not defamatory, obscene, harmful to minors, harassing, offensive, sexist, homophobic, threatening, encouraging racial hatred or violence or in breach of anyone’s privacy, or confidentiality rights or prejudicial to legal proceedings and is not posted for promotional or commercial purposes.
If you make a request, we have one month to respond to you if this is data that we are the controller of. Data requests that are the responsibility of our clients (which we are the processor of) will be sent to the controller and they in turn will be in contact with the user.
If you would like to exercise any of these rights or ask any questions, please contact us:
Write to us: @ dataprotection@cenitcollege.ie
Or call us at 01 901 2019
Our Company website may contain links to other websites. Our privacy policy applies only to our website, so you should read their privacy policy if you click on a link to another website.
Our Company keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 06/06/2023.
Cookie | Duration | Description |
---|---|---|
__stripe_sid | 30 minutes | Stripe sets this cookie cookie to process payments. |
__stripe_mid | 1 year | Stripe sets this cookie cookie to process payments. |
cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category . |
PHPSESSID | session | This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed. |
wp_woocommerce_session_d4474584cf10134da72efb2d809cb201 | 2 days | Contains a unique code for each customer so that it knows where to find the cart data in the database for each customer. |
m | 2 years | Set by our payment provider stripe.com to process payments |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Cookie | Duration | Description |
---|---|---|
prism_91360764 | 1 month | Used by ActiveCampaign to track registered users and to provide the live chat functionality of the website. |
Cookie | Duration | Description |
---|---|---|
CONSENT | 2 years | YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data. |
_gat_gtag_UA_115060065_2 | 1 minute | Set by Google to distinguish users. |
_gat_UA-115060065-2 | 1 minute | A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to. |
_gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
_ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
_gcl_au | 3 months | Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services. |
Cookie | Duration | Description |
---|---|---|
yt-remote-connected-devices | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
yt.innertube::nextId | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
yt.innertube::requests | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
yt-remote-device-id | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
VISITOR_INFO1_LIVE | 5 months 27 days | A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface. |
YSC | session | YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages. |
NID | 6 months | NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads. |
test_cookie | 15 minutes | The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies. |