Privacy Policy

Effective Date: 1 July 2025
Last Updated: 10 August 2025

1. Who We Are

ONT‑UK (“we”, “us”, “our”) is a UK‑based training provider delivering high-quality, evidence‑based nurse training for international professionals seeking nursing registration in the UK. Our training is delivered exclusively by specialists, with competency‑based curricula and continuous evaluation.

2. What Personal Data We Collect

We may collect & process the following data:

• Identity & Contact Data: Name, email address, phone number, postal address, organization (if applicable)
• Professional/Learning Data: Qualifications, relevant experience, training needs questionnaire responses
• Usage Data: IP address, device/browser information, pages visited on the site
• Transactional Data: Payment information (where applicable) — note: we do not store full payment card data

3. How We Use Your Data & Legal Basis

We process your data for these purposes:

• To deliver training, workshops, and support (Legal basis: contractual necessity)
• To communicate course details and logistics (Legal basis: legitimate interests)
• For quality improvements — e.g. analyzing feedback and evaluating training standards (Legal basis: legitimate interests)
• For marketing (if consent is obtained); you may withdraw consent at any time (Legal basis: consent)
• To comply with UK legal obligations such as record-keeping or professional auditing (Legal basis: legal obligation)

4. Who We Share Your Data With

We may share your data with:

• Service Providers, such as LMS platforms or CRM tools — they act as data processors under contractual agreements
• Regulatory or Professional Bodies, if required for training accreditation or audit purposes
• Legal Authorities, where compelled by law

We will never sell your personal data to third parties.

5. International Transfers

If your data is processed outside the UK or EEA (e.g., cloud services), we ensure adequate protection such as UK Adequacy, Standard Contractual Clauses, or hosting within secure data centers. For example, similar providers maintain strict contractual safeguards when data is transferred internationally.

6. Data Retention

We retain your data only as long as necessary for:

• Course completion and certification records (e.g. lifetime access proof)
• Legal, accounting, or auditing requirements (e.g. HMRC compliance, typically 6–7 years)
  After this period, data will be archived securely or deleted

Under UK GDPR, you are entitled to:

• Access your personal data
• Correct inaccurate data
• Request erasure of data (where lawful)
• Restrict processing or object to it
• Receive data portability
• Withdraw consent at any time (if processing is based on consent)

To exercise any of these rights, contact us using the details in Section 10. We pledge to respond within one calendar month.

8. Data Security

We maintain industry-standard measures to safeguard your data:

• Access restricted to authorized staff only
• Secure storage (e.g., encrypted servers)
• Breach protocols to notify you and relevant authorities, if necessary
  Better training providers use procedures ensuring confidentiality and secure handling of data (e.g. as described by Lifetime Training)

9. Updates to This Policy

We may periodically update this Privacy Policy—for legal or operational reasons. Each version will show an updated “Last Updated” date. We encourage you to review this page regularly.

10. Contact Us

If you have any questions, wish to exercise your data rights, or have concerns about your privacy, please contact us via:

• Our Contact Page on ontuk.co.uk
• Or email us at: contact@ontuk.co.uk

---

Why This Works

• Aligns with UK GDPR standards including data rights and legal bases for processing
• References good practice guidance used by similar education/training providers
• Tailored to your core services and audience — ie, overseas nurses and healthcare professionals

Let me know if you’d like to add specifics like cookie usage, embedded tools, or data protection officer (DPO) details!