ISEB Privacy Policy
Introduction
The Independent Schools Examination Board (ISEB) administers Britain’s oldest exam, the Common Entrance (CE) for UK independent and international schools. It also produces a range of qualifications (including the Common Pre-Tests and iPQ: the ISEB Project Qualification), assessment, training and resources to support pupils, teachers, parents and pupils.
ISEB is a data controller, registered with the UK Information Commissioner’s Office (ZA078200).
Where personal data is provided directly to ISEB through use of the website, the exam booking portal, by email or by registering for ISEB events, or other means where ISEB is determining the way in which that personal data is processed for its own use, then ISEB will be a data controller of such information.
ISEB is firmly committed to complying with privacy and data protection laws and being transparent about how we process personal data and will to the best of its ability comply with the principles set out in this Privacy Policy.
Data Protection Principles
We have policies, procedures and training in place to ensure that everyone employed by ISEB understands their responsibilities to protect personal data, and ensure the security of our systems.
1
Lawfulness, fairness and transparency
We will use personal data in compliance with the law, and in a way that our customers and staff expect us to. We will also tell you what we do with that data.
2
Purpose limitation
We will not use data for any other reason than for which we have collected it.
3
Data minimisation
We will only collect the data we need, for the purpose it is collected for. Nothing more.
4
Accuracy
We will ensure the personal details in our records are kept accurate and up to date.
5
Storage limitation
We will only keep personal data for as long as we need it. After which time it will be securely and permanently destroyed.
6
Integrity and confidentiality (security)
We will ensure that all personal data is protected but accessible when required.
6
Accountability
We will ensure that we have appropriate measures in place and keep records to demonstrate how we achieve data protection compliance.
How we collect and use personal information
We may collect personal data via post, email, or our website, from you and from third parties for a number of purposes.
ISEB will only use your personal data if we have a legal basis for doing so, and for the purposes for which it was collected.
We have set out below all the ways we use your personal data, and which of the legal bases we rely on to do so. We may process personal information where it is in our legitimate interests to do so and where we are confident that such processing will not infringe on your rights and freedoms. Where required, we will process personal information in order to comply with our legal obligations, to assist the prevention and detection of crime, and in order to assist the police and other competent authorities with investigations (including criminal and safeguarding investigations).
Purpose/ Activity | Lawful basis for processing |
---|---|
To process an exam, event, take payment and contact you in relation to our service | Performance of a contract |
To inform you about changes to our service | Performance of a contract/ legitimate interests |
To provide important, useful and relevant information about our products, resources and services | Performance of a contract/ legitimate interests |
To respond to a query and manage the complaint process | Consent/ legitimate interests |
To perform credit checks | Consent/ legitimate interests |
To process your order from our online shop | Performance of a contract |
To send marketing messages to you (You can change your mind on how you receive marketing messages or you can stop receiving them at any time). ISEB uses MailChimp as its email marketing provider. | Consent |
To process special category information that we need to run events, courses, meetings and exams | Consent |
To improve our website and services to you | Legitimate interests |
To administer our own discussion forums for product development | Consent |
Market research We may use your anonymised information to identify trends and to design market research | Legitimate interests |
We may share your information with relevant agencies, law enforcement and other third parties for the purpose of preventing or detecting crime, or where it is the public interest | Legitimate interests/ legal obligation/ public interest |
What we collect
- What information does ISEB collect?
- Information and young people
- Does ISEB use cookies?
- Who does ISEB share information with?
- How are payments made?
- How and when would data be transferred outside of the EEA?
- European Union (EU) Representative
- Information security
- What are my rights?
- How long does ISEB retain information?
- How can I make a complaint to the Information Commissioner's Office?
Contacting us
Our Data Protection Lead is Gary Peace, our Data Protection Officer. If you have any questions regarding our Privacy Policy, please contact us.
Email: DPO@iseb.co.uk
Post: Gary Peace, Data Protection Lead at the following address: Endeavour House, Crow Arch Lane, Ringwood, BH24 1HP, United Kingdom
This Privacy Policy may change from time to time.