GDPR Information

Our Commitment to Data Protection

Violet-crater is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller Information

For the purposes of GDPR, the data controller is:

violet-crater
47 Wellington Street
London, WC2E 7BD
United Kingdom
[email protected]

Your Rights Under GDPR

Right to Access

You have the right to obtain confirmation as to whether we process your personal data and, if so, to access that data along with information about how it is processed.

Right to Rectification

You have the right to have inaccurate personal data corrected and to have incomplete personal data completed.

Right to Erasure (Right to be Forgotten)

You have the right to request the deletion of your personal data where:

• The data is no longer necessary for the purposes for which it was collected
• You withdraw consent and there is no other legal ground for processing
• You object to processing and there are no overriding legitimate grounds
• The data has been unlawfully processed
• Erasure is required to comply with a legal obligation

Right to Restriction of Processing

You have the right to restrict the processing of your personal data where:

• You contest the accuracy of the data
• Processing is unlawful but you oppose erasure
• We no longer need the data but you need it for legal claims
• You have objected to processing pending verification of legitimate grounds

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data where we rely on legitimate interests as the legal basis for processing.

Right to Withdraw Consent

Where we rely on consent as the legal basis for processing, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or place of alleged infringement.

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected] with the following information:

• Your full name and email address
• A clear description of the right you wish to exercise
• Any relevant details to help us locate your data

We will respond to your request within one month. If your request is complex or we receive multiple requests, we may extend this period by two additional months, in which case we will notify you.

Verification of Identity

To protect your privacy, we may need to verify your identity before fulfilling your request. We may ask for additional information to confirm you are the person whose data is being requested.

Data Processing Activities

Purposes of Processing

We process your personal data for the following purposes:

• Course enrolment and administration
• Communication regarding your courses and our services
• Website operation and improvement
• Legal compliance and protection of our rights

Legal Bases for Processing

We process your data based on:

• Contract: To fulfil our obligations under your course enrolment
• Consent: Where you have explicitly agreed to specific processing
• Legitimate interests: For business operations and service improvement
• Legal obligation: To comply with applicable laws and regulations

Data Retention Periods

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

• Course-related data: Duration of your course access plus 7 years for accounting purposes
• Marketing communications: Until you unsubscribe or object
• Website analytics: Typically 26 months

International Data Transfers

When we transfer your data outside the UK or European Economic Area, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions recognising equivalent data protection standards
• Other mechanisms approved under GDPR

Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.

Data Protection Officer

For any questions about our data protection practices or to exercise your rights, contact us at [email protected]

Supervisory Authority Contact

If you wish to lodge a complaint with the UK supervisory authority:

Information Commissioner's Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
United Kingdom
Telephone: 0303 123 1113
Website: www.ico.org.uk

Updates to This Information

We may update this GDPR information periodically to reflect changes in our practices or legal requirements. Significant changes will be communicated through our website.