Bolt LMS Privacy statement
Bolt Learning Limited (Bolt) (“We”) are committed to protecting and respecting your privacy. We will not collect any information about individuals, except where it is specifically and knowingly provided by them.
This policy (together with our Terms and Conditions document [https://www.boltlearning.com/terms/] and any other documents referred to on them) sets out the basis on which any personal data that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purpose of the General Data Protection Regulation (GDPR) 2016/679, the data controller is Bolt Learning Limited, a company incorporated in Scotland (company number SC440392) and who can be contacted at the Head Office address Abbey Mill Business Centre Studio 4003, Mile End Mill, 12 Seedhill Road, Paisley, Scotland, PA1 1JS or by telephone 0333 355 2658.
Who are we?
We are Bolt Learning, a company with deep roots in education, training, and technology. Bolt Learning seeks to bring together technology and educational theory to create practical, applicable, training that allows people not just to learn but to learn how to learn.
How do we collect information from you?
We obtain information about you when you use our website, for example, when you contact us about the services that we provide, submit an application to view one of our demo modules or if you register to receive one of our regular newsletters. Your information may also be sent to use via your employer or directly from you via our Learning Management System (herein referred to as LMS).
What type of information is collected from you?
The personal information we collect might include your name, email address, telephone number, company, employee identification number, and biometric data. All the personal information collected, are relevant and necessary for Bolt to perform our obligations thereon. Any personal data categorised as ‘special data’ under the GDPR will require the data controller (typically an employer) to either have explicit consent from the individual (with a genuine choice) or that the processing is necessary for the purposes of carrying out the obligations and exercising specific rights of the controller or of the data subject in the field of employment.
How is your information used?
We will use the information you give to us to:
- to carry out our obligations arising from any contracts entered into between you and us (or employer) and to provide you with the information, products, and services that you request from us. This includes but is not limited to performance data for research and analysis purposes;
- to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;
- If you are an existing customer, we will contact you by electronic (e-mail or SMS) or postal means with information about goods and services similar to those which were the subject of a previous sale or negotiations of a sale to you. If you are a prospective customer, you will only be marketed to, if you have explicitly agreed to it;
- to ensure that content from our site is presented in the most effective manner for you and for your device.
Bolt maintains strict policies to avoid unsolicited correspondence. We may share non-personal aggregate statistics (group) data about our site visitors' traffic patterns with partners or other parties. However, we do not sell or share any information about individual users.
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us. You may request a copy of our retention policy using the postal address above or firstname.lastname@example.org
When you fill out a web-form to sign up to a newsletter, download a resource, such as an infographic, or enquire about a product, we may ask you to provide certain personal information, including your:
- Email address
- Job title & the organisation you work for
- Telephone number
By completing the form and ticking the relevant boxes you are providing your consent for Bolt to process your personal data, and this is the legal basis we are relying on to do so.
We will use the information that you give us to send you relevant emails containing Bolt news & marketing communications. Your information will be stored by a third party data processor; Mercurytide, whose servers are located in the UK, you can read their privacy information: here.
In addition, if you have enquired about a product or service we will use the information you have given to update our customer relationship management system so one of our consultants or advisors can contact you. This information will also be stored by Mercurytide.
We regularly review your interactions with the emails we send you and remove any subscribers who have shown an extended period of inactivity. You can withdraw your consent and unsubscribe at any time by clicking the link at the bottom of our email communications or by emailing email@example.com.
If you continue to interact with our emails or website, we will retain your data indefinitely, so we can continue to send you emails.
It is possible to switch off cookies by setting your browser preferences. For more information on how to switch off cookies on your computer, visit our full cookies policy. Turning cookies off may result in a loss of functionality when using our website.
Computer profile information
The Bolt website and LMS automatically detect information relating to the properties of your computer and its network capabilities. This information is collected in order to ascertain your device suitability for running our training modules. This information is not stored by Bolt and is presented to users for information purposes only, to assist in the trouble-free running of the training content on your device. An example of the data queried for this is below:
Who has access to your information?
We will not sell or rent your information to third parties.
We will not share your information with third parties for marketing purposes.
Third-Party Service Providers working on our behalf: We may pass your information to our third-party service providers, agents, sub-contractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf (for example to process payments and send you mailings). However, when we use third-party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. Please be assured that we will not release your information to third parties beyond the Bolt Network for them to use for their own direct marketing purposes unless you have requested us to do so.
In addition to the company's safeguards, your personal data is protected in the UK by the General Data Protection Regulation (GDPR). You can find more information about your rights here. This states that the data we hold about you should be processed lawfully and fairly. It should be accurate, relevant and not excessive. We will endeavour to keep the information you provide up to date, where required, and not retained for longer than is necessary. It will be kept securely to prevent unauthorised access by other people. If you have concerns about the processing of your personal data by Bolt, you may contact us at firstname.lastname@example.org. If you find any inaccuracies with the personal data we retain, we will delete or correct them promptly.
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking the relevant boxes on the forms we use to collect your data. You can also exercise that right at any time by contacting us at email@example.com
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Right to Access Your Information
The General Data Protection Regulation (GDPR) provides you with the right to access any information held about you. You can assert this right at any time. We will provide a copy of your information, free of charge. However, we do reserve the right to charge a ‘reasonable fee’ when a request is manifestly unfounded or excessive, particularly if it is repetitive. We also reserve the right to charge a reasonable fee to comply with further copies of the same information. Any fee will be based on the administrative cost of providing the information. We will endeavour to supply this information without delay and at the latest within one month of receipt. If the request is complex or numerous we can extend this period by a further two months. You will be informed, if this is the case, within one month of the request with an explanation as to why it is necessary.
16 or Under
We are committed to protecting the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian's permission before you provide us with any personal information.
Transferring your information outside of Europe
As part of the services offered to you through this website, the information which you provide to us may be transferred to countries outside the European Union (“EU”). These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy. If your data is transferred outside of the EU it will be done so to allow us to perform any contractual obligations that are required to provide the services, you have requested from us.
If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.
Security precautions in place to protect the loss, misuse or alteration of your information
When you give us personal information, we take steps to ensure that it’s treated securely. Any sensitive information is encrypted and protected while in transit with 256 Bit SSL encryption. When you are on a secure page, a padlock icon will appear on the address bar of web browsers such as Google Chrome.
All financial transactions are processed through a gateway provider and are not stored or processed on our servers.
Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone and we also recommend you change your password regularly.
Security breach notification
Bolt shall give notice to each organisation administrator when the organisation’s user information was, or it is reasonably believed to have been, inappropriately accessed as a result of a security breach. Said notice shall be made immediately upon confirmed discovery of the breach (including fulfilling our obligation under the GDPR to notify the ICO within 72 hours) and the time necessary such as to allow Bolt to determine the scope of the breach, to identify organisations and individuals affected by the breach, and to restore reasonable integrity of the data system that was breached.
For whatever reason, should you wish to lodge a complaint with the Information Commissioner’s office, as is your right, you can do by contacting the ICO directly via one of the options on their website https://ico.org.uk/global/contact-us/