Please note that, to the extent that you disclose or you authorize PTC to disclose your information to other parties, whether they are our vendors, affiliates, sponsors, partners, or service providers, different rules may apply to their use or disclosure of the information disclosed to them.
What data do we have, what is it used for. and why is it necessary?
We store the information you give us at time of registration for our courses. This information includes your name, email addresses, school and job title, gender and nationality, emergency contact information, school administrator information, course history, as well as birthplace and birthdate.
We use this information to create course materials used on site, such as nametags and class lists; to set up booking of rooms with our institute hotels; to send out both promotional and important information emails; and to contact you on-site.
Statement on our third parties and whether they are compliant
Your data passes through a few third-party systems, which are included below:
For registration emails and other other non-mass mailing emails as well as PTCNet we use the Google Suite. You can read Google’s GDPR compliance announcement here: https://cloud.google.com/security/gdpr/
Some payments are processed through Authorize.net. You can read their security & compliance policy here: https://www.authorize.net/solutions/merchantsolutions/merchantservices/security/
Other payments and group invoices are handled through Quickbooks and our Intuit merchant account. You can read their GDPR compliance statement here: https://quickbooks.intuit.com/uk/gdpr/
Finally, we store your registration data in an on-site database program, Filemaker. The encrypted database is stored in a company Dropbox account. You can read Dropbox’s GDPR compliance statement here: https://www.dropbox.com/security/GDPR and their security policy here: https://www.dropbox.com/security
For more information on encryption and GDPR, please consult: https://gdpr-info.eu/issues/encryption/
Right to request your data
Under GDPR you have the right to request all data a company has pertaining to you. For more information please consult the two links below:
- Personal Data - https://gdpr-info.eu/issues/personal-data/
- Right of Access (AKA what we would need to be able to provide to people requesting) - https://gdpr-info.eu/issues/right-of-access
Right to remove your data
Under GDPR you also have the Right to be Forgotten https://gdpr-info.eu/issues/right-to-be-forgotten/. In the event that you request the PTC to remove all your data, course history will be retained and your account will be replaced with an anonymous, securely-generated serial number which will be issued to you upon confirmation. Otherwise, we would no longer have a way to confirm courses attended and certificates received.
Our Retention of Your Personally Identifiable Information
The personally identifiable information that you provide will be stored and maintained by PTC until you instruct us otherwise, or, in PTC’s sole discretion, for so long as is necessary or appropriate to carry out the purpose(s) for which such information was collected, and for so long as we are required to maintain such information by law.
Advisory on need for historical data
As mentioned above, your data is used to confirm your historical attendance and completion of courses. If you request all your data to be deleted, we will issue an anonymous, securely-generated serial number to retain your course history.
The Service is intended for a general audience. We do not knowingly collect, use, or disclose personal information from children under the age of 13. If we discover that any information has been supplied by children, we will disregard and delete such information.
If you have any questions or concerns please contact us.