Privacy Policy

Introduction

At Bright Shore Limited ("we," "our," or "us"), we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website bright-shore.com, use our services, or engage with us in any other way.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access or use our services.

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

• Register for our training programs
• Subscribe to our newsletter
• Contact us through our website forms
• Participate in surveys or promotional activities
• Apply for our courses or services

This personal information may include:

• Name and contact information (email address, phone number, postal address)
• Professional information (company name, job title, industry)
• Educational background and qualifications
• Financial information for payment processing
• Communication preferences

Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device and usage patterns, including:

• IP address and location data
• Browser type and version
• Operating system
• Pages visited and time spent on our site
• Referring website addresses
• Cookie and tracking information

How We Use Your Information

We use the information we collect for various purposes, including:

• Service Delivery: To provide, maintain, and improve our training programs and services
• Communication: To respond to inquiries, send course updates, and provide customer support
• Marketing: To send newsletters, promotional materials, and information about new courses (with your consent)
• Payment Processing: To process payments and maintain billing records
• Legal Compliance: To comply with legal obligations and protect our rights
• Analytics: To analyze website usage and improve user experience

Legal Basis for Processing (UK GDPR)

Under UK GDPR, we process your personal data based on the following legal grounds:

• Contract: Processing necessary for performing our contractual obligations to you
• Consent: Where you have given clear consent for specific processing activities
• Legitimate Interest: For our legitimate business interests, such as improving our services
• Legal Obligation: To comply with legal requirements

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in operating our business, including:

• Payment processing companies
• Email marketing platforms
• Website hosting and analytics services
• Customer relationship management systems

Legal Requirements

We may disclose your information if required to do so by law or if we believe such action is necessary to:

• Comply with legal obligations or court orders
• Protect and defend our rights or property
• Prevent fraud or security breaches
• Protect the safety of our users or the public

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• SSL encryption for data transmission
• Secure data storage systems
• Regular security assessments
• Access controls and authentication procedures
• Staff training on data protection

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Specific retention periods include:

• Course participants: 7 years after course completion for certification purposes
• Marketing communications: Until you unsubscribe or withdraw consent
• Website analytics: 26 months maximum
• Financial records: 6 years as required by UK tax law

Your Rights Under UK GDPR

As a data subject, you have the following rights regarding your personal information:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of processing activities
• Right to Data Portability: Request transfer of your data to another organization
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw previously given consent at any time

To exercise these rights, please contact us using the information provided below. We will respond to your request within one month.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience. For detailed information about our cookie practices, please see our Cookie Policy.

Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party websites you visit.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us immediately.

International Data Transfers

As we operate primarily within the UK, your personal data is generally processed within the UK. If we need to transfer data outside the UK, we will ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date above.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Supervisory Authority

If you believe we have not handled your personal data in accordance with this Privacy Policy or UK data protection law, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):