Nexus Human Privacy Policy GDPR/ICO
We respect your trust in us to use, store and share your information. In this privacy policy, we explain how we collect personal information about you, according to the General Data Protection Regulation – GDPR. Nexus Human try to keep this privacy as simple as possible.
If you have any queries, please don’t hesitate to contact us in the email info@nexushuman.co.uk
How we collect information about you
We collect personal information from you in different ways, for example when you sign in for our newsletter, buy a course, book a training with us, apply to a job, enquire about our services, register to Nexus Human webinars and events. We also collect information through our website and live chat.
Our websites use ‘cookie’ technology. A cookie is a little piece of text that our server places on your device when you visit any of our websites or apps. They help us make the sites work better for you. In case you wish to know more about cookie usage in websites you can check here the information provided by Google Analytics:
https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=en-GB
Disclosure of Personal Data
Any information that you provide in this way is not made available to any third party except for the purposes outlined and elsewhere in this document and is used by us for the purposes specified when it was collected, as described, the main examples of which are:
When you make a booking with us using with a credit card the transaction is fully secured and managed by our payment provider(s). This is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol. We do not collect sensitive personal information, such as race, religion, or political affiliations.
Any information that you share with us will be stored and managed by us with the greatest care. We never share (rent, sell, or exchange) Personal Data with Third Parties for the purposes of allowing them to market products and services to you notwithstanding the provisions stipulated in this document. However, we do engage the services of third-party service providers, which act as Data Processors, to assist us with our services to you, marketing activities, payment processing, exams and certification and accreditation. In all cases we endeavour not to hold your sensitive personal data (Personal ID information, Date of Birth, etc) longer than is necessary. We permanently delete and or destroy this when it is used for the purposes that it is given to us for.
How we keep your information safe
We protect your information with security measures under the laws that apply, and we meet international standards. We keep our computers, files and buildings secure. When you contact us to ask about your information, we may ask you to identify yourself. This is to help protect your information.
How long we keep your information.
We hold your information while you are a customer and for a period after that. We do not hold it for longer than necessary.
Your Rights
At Nexus Human, we take your rights seriously. We will respond to any inquiries from you in relation to your Personal Data, how we process and protect that data with the appropriate level of seriousness and diligence.
To help you, we have summarized below three of the rights the European regulation (EU) 2016/679 - GDPR, provides you in relation to your Personal Data:
•The Right of access by the data subject: Ask us what Personal Data we hold and for what purpose.
•The Right of Rectification and erasure: Tell us what is incorrect, and we will update your Personal Data. You want us to delete your Personal Data, no problem, let us know.
•The Right to restriction of processing: Just tell us what we are doing that makes you uncomfortable.
Meeting our legal and regulatory obligations
To use your information lawfully, we rely on one or more of the following legal bases:
- performance of a contract;
- legal obligation;
- protecting the vital interests of you or others;
- public interest;
- our legitimate interests; and
- your consent.
- provide relevant products, services and relevant content;
- identify ways we can improve our products and services;
- maintain and monitor your products and services;
- decide and recommend how our products and services might be suitable for you.
To meet our regulatory and legal obligations, we collect some of your personal information, verify it, keep it up to date through regular checks, and delete it once we no longer have to keep it. We may also gather information about you from third parties, for example, Pearson VUE, Kryterion, and CertiPort exam vendors, to help us meet our obligations. If you do not provide the information we need, or help us keep it up to date, we may not be able to provide you with our products and services.
Consent
Sometimes we need your consent to use your personal information. With direct marketing for example, we need your consent to make you aware of products and services which may be of interest to you. We may do this by phone, post, email, text or through other digital media.
You can decide how much direct marketing you want to accept when you apply for new products and services.
If we ever contact you to get your feedback on ways to improve our products and services, you have the choice to opt out.
When we use private personal information about you, such as email, we ask for your consent. Before you give your consent, we tell you what information we collect and what we use it for. You can remove your consent at any time by contacting us.
How we use your information
We use information about you to:
To provide our products and services under the terms and conditions we agree between us, we need to collect and use personal information about you. If you do not provide this personal information, we may not be able to provide you with our products and services.
Your information and third parties
Sometimes we share your information with third parties. For example, to: Pearson VUE, Microsoft, New Horizons International and US.
We expect these third parties to have the same levels of information protection that we have.
We also must share information with third parties to meet any applicable law, regulation or lawful request. When we believe we have been given false or misleading information, or we suspect criminal activity we must record this and tell law enforcement agencies, which may be either in or outside UK.
International transfers of data
We may transfer your personal information outside of the European Economic Area (EEA) to help us provide your products and services. We expect the same standard of data protection is applied outside of the EEA to these transfers and the use of the information, to ensure your rights are protected.
Your personal information rights
You can exercise your rights by contacting us at our main line above, using our social media channels, emailing us here.
We can help you with:
Accessing your personal information:
You can ask us for a copy of the personal information we hold. You can ask us about how we collect, share and use your personal information.
Updating and correcting your personal details.
Removing consent: You can change your mind wherever you give us your consent, such as for direct marketing, or using your sensitive information, such as medical or biometric data.
Restricting and objecting: You may have the right to restrict or object to us using your personal information or using automated decision making.
Deleting your information (your right to be forgotten). You may ask us to delete your personal information.
Moving your information (your right to Portability). Where possible we can share a digital copy of your information directly with you or another organization.
When you contact us to ask about your information, we may ask you to identify yourself. This is to help protect your information.
We generally do not charge you when you contact us to ask about your information.
Making a complaint
If you have a complaint about the use of your personal information, please let a member of staff know, giving them the opportunity to put things right as quickly as possible.
If you wish to make a complaint you may do so in person, by telephone, in writing and by email. Please be assured that all complaints received will be fully investigated. We ask that you supply as much information as possible to help our staff resolve your complaint quickly.
You can also contact the Data Protection Commission in Ireland at www.dataprotection.ie.
Updates to this notice
We will make changes to this notice from time to time, particularly when we change how we use your information, and change our technology and products.
Contact Information
Questions regarding this Policy should be submitted to Nexus Human by mail to:
Nexus Human
Strand House
24 Strand Street Great
Dublin 1
D01 W1W4
+353 (1) 889-8700
Or by email to: privacy.policy@nexushuman.co.uk
PARTNER DATA SHARING STATEMENT
3rd Party courses:
Where an individual explicitly requests a course delivered via a 3rd party we will inform you of our training partner and provide details of any associated privacy policies.
Microsoft
In order to facilitate your Microsoft lab provision Nexus Human will share your name and email address (that which we have registered for you on our business systems) with a authorised lab hoster as appointed by Microsoft. For official Microsoft courseware you will also need to register with Microsoft directly using a live ID. For Microsoft’s privacy policy please see their site: https://privacy.microsoft.com/en-gb/privacystatement
Amazon Web Services (AWS)
In order to facilitate your AWS e-courseware and lab provision Nexus Human will share your name and email address (that which we have registered for you on our business systems). We will then send you the details of your e-courseware access no less than 48 hours before your course is due to take place. AWS require a record of attendance but will only require your name and email address this may include actions including confirmation of attendance of a course delivered in full compliance of AWS requirements and to identify potential follow on training for you.
Red Hat
To assist in your Red Hat booking, Nexus Human will share your registered name and company name from our business systems with Red Hat. Red Hat requires this information to comply with GDPR regulations, maintain accurate records of data processors/holders, and for business analytics purposes. Please be aware that Red Hat retains these details outside of the EU.
For any Red Hat training bookings, an RHNID is necessary. To acquire this, direct registration with Red Hat is required, often this will mean they will already possess the information we are sharing.
VMware
To enable the provision of your VMware e-courseware, Nexus Human will share the name and email address we have on file for you in our business systems with VMware. VMware will use this information solely to directly send you access details for your e-courseware at least 48 hours prior to your course commencement. Your details will be used exclusively for the purpose of providing you with the e-courseware and will not be utilized for any other intent by VMware.
Please be aware that VMware retains these details outside of the EU. If you possess a pre-existing VMware MyLearn account, it is crucial that you inform Nexus Human of the email address linked to this account.
CertNexus
To ensure the provision of your CertNexus e-courseware, Nexus Human will disclose your name and email address—information registered for you in our business systems—to CertNexus. Access to the courseware is facilitated through their systems. It's important to note that CertNexus holds these details outside of the EU.
EPI
To ensure the provision of your CertNexus e-courseware, Nexus Human will disclose your name and email address information registered for you when registering for your course to the EPI. Access to the courseware is facilitated through their systems. It's important to note that EPI holds these details outside of the EU. We can facilitate an alternative method to anonymise attendees data if requested 30 days in advance of attendance.
CompTIA
To enable the provision of your CompTIA e-courseware and labs, Nexus Human will share the name and email address we have on file for you in our business systems with CompTIA. CompTIA will use this information solely to directly send you access details for your e-courseware at least 48 hours prior to your course commencement. Your details will be used exclusively for the purpose of providing you with the e-courseware and will not be utilized for any other intent by CompTIA.
If you possess a pre-existing CompTIA ID/account, it is crucial that you inform Nexus Human of the email address linked to this account in advance of training.