Please email your queries to LCATE using the form below:
Our Service does not address anyone under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with personal data, please contact us. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.
LCATE Ltd (LCATE)
Trading also as ‘Law School Online/London Law Centre
‘Please scroll down and tick the box’
We want to bring you to notice of this Privacy Notice prior to us collecting any of your personal data from you.
This is Privacy Notice is aimed at ensuring that we are in compliance with the General Data Protection Regulations (GDPR) with regards to any information which relates to your personal data including any sensitive data.
Please read and acknowledge the following policy related to your personal data
The Privacy Notice relates to information you need to know regarding your personal data before you enrol on:
Products & Services LCATE Provides
Our organisation is involved in the delivery of online and onsite educational courses and providing you with automated certificates.
The Data Protection Officer & Controller will be responsible for ensuring that you are bought to notice of this
Privacy Notice – Contact Details
You can contact the Contoller & Data Protection Officer via the following modes of communication:
Controller & DPO: Yasmine Lupin
Email: [email protected]
Mobile: 0044(0) 07957977600
Details of any Contacts
The organisation accountable for processing your personal data is LCATE Ltd.
The Controller & the Data Protection Officer is Yasmine Lupin
Disclosure of your Personal Data to third parties
We will be disclosing your personal data to third parties such as ‘ATHE Ltd’ or any other third party for educational compliance reasons.
The legitimate reason to disclose personal data to ATHE Ltd or any other third party would be for:
ATHE Ltd or any other third party will ensure that your personal data they hold is kept secure in compliance with GDPR and also will ensure that that it will be destroyed in compliance with their legal compliance procedures.
We will be disclosing your personal data to third parties such as the following:
The legitimate reasons are for legal and tax compliance purposes. As we are a limited liability company we have a requirement to:
Your details may also be disclosed to further third parties such as the HMRC via disclosed third parties for legal compliance & tax purposes. There will be legitimate reason for the HMRC to view your personal data for the purposes of ensuring legal and tax compliance.
LCATE is not responsible for any business or legal purpose as to why your personal data will be processed or retained for legal compliance & tax purposes carried out by tax, legal or governmental bodies.
Disclosure of to you of individuals & organisations who have provided us with your personal data
We will disclose to you the individuals & organisations who have provided us with your personal data.
Principle 1 – Lawful Purpose (Article 5 of the GDPR)
We will be processing your personal data for legitimate purposes. In order to ensure that we can:
Principle 2 – Specific Purpose & Limited (Articles 5 & 6 of the GDPR)
We will be processing your personal data as follows:
Additional information will be required if you enrol on an accredited course. We require this information in order to fulfil our compliance obligations with ATHE LTD or any other third party and fulfil our contractual obligations with you.
We will require:
Some of the above information constitutes ‘Sensitive Data’ please refer to ‘Legitimate Reason for Processing your Personal Data’ – page 4
Principle 3 – Adequate, Relevant & Limited
We only want to keep your personal data or sensitive data which is:
adequate and relevant.
We aim to limit the amount of personal data and sensitive data we process on your behalf.
If you have enrolled on a short online course then our aim is delete any record of your
personal data after 6 months from the date of enrolment of your online course, unless you have clearly opted into any marketing material that you would like to receive from us. However, this will be limited to your name and your email address only.
If you enrol on an accredited course we are under a legal obligation to maintain your records for a period of 4 years after the completion of your course. After this period your personal data will be automatically deleted.
However we may need to retain some personal data regarding your enrolment for audit, legal compliance and tax purposes.
When your personal data is examined by tax or governmental departments, the length of retention of personal data with them, will depend upon their legal requirements and practice. We are not accountable for the retention period of your documents with them.
Principle 4 & 5 – Accuracy of your Personal Data – Principle 4 & 5 (Article 5 of the GDPR)
We want to ensure that your personal data is kept up to date and therefore if any of your personal data changes please kindly update us by contacting the DPO.
We will not be responsible in any way for your failure to notify of us of any changes to your personal data.
Principe 6 – Ensuring Security
We have received assurances from this platform provider that the processing of your personal data on this platform is secure from any damage, accidental loss and if there are any risks the risks are low and that the platform provider will do everything to rectify any security breaches related to the processing of your personal data.
We only require your explicit consent to process personal data which amounts to the following:
Sensitive data – Special Categories of data
The below mentioned list provides you with a list of personal data which is considered ‘sensitive data’ or falls within the ‘Special Categories’ list under the GDPR:
We will not be requiring your consent for the use of your ‘sensitive data’ as we will be exercising the exception of ‘Legitimate Reasons’ as more detailed below.
Legitimate reason for processing your Sensitive Data – No consent required
We may need the following forms of sensitive data from you:
We require this ‘sensitive data’ in order to be able to fully fulfil our obligations with you under our contract of services with you. We also have a legitimate reason to acquire the sensitive data to ensure that we meet our legal compliance obligations with third party organisations such as ATHE Ltd which require this sensitive data to ensure that we are in compliance with UK governmental educational regulatory laws.
We will be complying with the principles regarding your sensitive data as mentioned in this Privacy Notice.
While we keep your personal data you have the following rights:
You have the right to first make a complaint directly to us via [email protected] The Controller will deal with your complaint.
If your matter is not resolved you also have the right to make a complaint to the ICO directly.
Please note we do not have a data portability system in place
Subject Access Request requirements
We can only deal with your ‘SAR’ if you following the following procedure:
Subject Access Requests – Time-scale
We aim to process the SAR within 1 month free of charge; however we have
the right to charge you if your file has been retained by a third party organisation and a charge is involved in requesting such file.
Subject Access Request Details
PD – shall mean ‘Personal Data’
You can request the following information from the DPO regarding your file:
RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA
You have the right to object to certain types of processing of personal data such as:
In the above cases, your explicit consent would be required by us before we can actually process your personal data.
This right to object does not apply if:
Please contact the Controller via [email protected]