At IT Raccoons, we take your privacy and data protection seriously. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page explains how we protect your personal data and your rights.
Lawful Basis for Processing
We only collect and use personal information where we have a lawful basis:
Consent - when you agree to us holding and using your data (e.g., during course sign-up).
Contract - when processing is required to deliver the course you or your child are enrolled in.
Legal obligation - when we are required to keep records for safeguarding, tax, or regulatory purposes.
Legitimate interests - when necessary for the smooth running of our services and does not override your rights.
Children's Data
For anyone under 18, parental or guardian consent is required before we collect or process personal data.
We handle children's data with extra care, ensuring it is used only for:
Course administration,
Safeguarding,
Communication with parents/guardians.
Your GDPR Rights
Under the UK GDPR, you have the right to:
Access - request a copy of the personal data we hold about you.
Rectification - ask us to correct inaccurate or incomplete information.
Erasure (“right to be forgotten”) - request deletion of your personal data, unless we must keep it for legal reasons.
Restrict processing - ask us to pause the use of your data under certain circumstances.
Data portability - request a copy of your data in a structured, commonly used format.
Object - object to how we process your personal data if our lawful basis is legitimate interest.
Automated decisions - be assured that IT Raccoons does not use automated decision-making or profiling.
Data Security
Personal data is stored securely and only accessible to authorised staff. We take technical and organisational steps to prevent unauthorised access, loss, or misuse.
If we use third-party tools (e.g., Microsoft Teams), their privacy policies also apply.
Data Breaches
In the unlikely event of a data breach:
We will act immediately to secure information.
We will notify affected individuals without undue delay if there is a high risk to their rights.
We will report the breach to the Information Commissioner's Office (ICO) within 72 hours, if required by law.
Data Retention
We only keep your personal data for as long as necessary for course administration, legal obligations, and safeguarding. Once no longer needed, data will be securely deleted.
Contact Us
If you wish to exercise your GDPR rights or have questions about how we handle your data, please contact us:
Email: info@itraccoons.com
Phone: 07925669729
If you are not satisfied with our response, you may contact the Information Commissioner's Office (ICO):