Privacy Policy for Millbrook Minds
Millbrook Minds is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us.
As an Education Technology (EdTech) company specializing in bespoke e-learning platform development, curriculum digitisation, immersive VR training simulations, data analytics for learning outcomes, and teacher professional development in digital tools, we understand the importance of data protection, especially concerning educational data.
1. Information We Collect
We collect various types of information in connection with the services we provide, which may include:
- Personal Identification Information: This includes names, email addresses, phone numbers, and professional titles when you engage with us for inquiries, demonstrations, or service agreements.
- Educational and Professional Information: When providing services like curriculum digitisation or teacher professional development, we may process information related to educational institutions, roles, and learning objectives. For VR training simulations and data analytics, data will be anonymized or aggregated where possible, and specific agreements will govern personal data handling.
- Technical Data: This includes your Internet Protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our online platform.
- Usage Data: Information about how you use our website and services, such as pages viewed, services accessed, and interaction patterns.
- Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.
2. How We Use Your Information
We use the information we collect for various purposes, including:
- To Provide and Maintain Our Services: Delivering bespoke e-learning platforms, digitising curricula, developing VR simulations, and conducting teacher training.
- To Improve Our Services: Analyzing data to understand user needs, enhance our offerings, and develop new features for our EdTech solutions.
- To Communicate With You: Responding to inquiries, providing updates on our services, and sending relevant information.
- For Marketing Purposes: Sending you information about our services, promotions, and news that may be of interest to you, always with your consent where required by law.
- For Security and Fraud Prevention: Protecting our systems and users from potential threats and ensuring compliance with legal obligations.
- For Data Analytics: Performing aggregated and anonymized analysis on learning outcomes and platform usage to provide insights and improve educational effectiveness.
3. Legal Basis for Processing Personal Data
We will only process your personal data where we have a lawful basis to do so, including:
- Contractual Necessity: To fulfill our contractual obligations to you or to take steps at your request before entering into a contract.
- Legitimate Interests: Where processing is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. This may include improving our services, marketing, and fraud prevention.
- Consent: Where you have given explicit consent for us to process your personal data for a specific purpose. You have the right to withdraw consent at any time.
- Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
4. Disclosure of Your Information
We may share your information with:
- Service Providers: Third-party vendors who provide services on our behalf, such as hosting, data analysis, payment processing, and customer service. These providers are obligated to protect your information.
- Business Partners: With whom we collaborate to offer specific services or solutions, subject to appropriate data protection agreements.
- Legal and Regulatory Authorities: When required by law or to respond to valid legal processes, such as subpoenas or court orders.
- Auditors and Advisors: For purposes of auditing and compliance with legal and financial obligations.
We do not sell your personal data to third parties.
5. International Data Transfers
As a UK-based company, we primarily store and process data within the European Economic Area (EEA). If we transfer your personal data outside the UK or EEA, we will ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission or the UK government.
- Where we use certain service providers, we may use specific contracts approved by the European Commission or the UK government which give personal data the same protection it has in the EEA or UK.
6. Data Security
We have implemented appropriate technical and organisational security measures designed to protect the security of any personal information we process. However, please remember that we cannot guarantee that the internet itself is 100% secure. Although we will do our best to protect your personal information, transmission of personal information to and from our online platform is at your own risk. You should only access the services within a secure environment.
7. Data Retention
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
8. Your Data Protection Rights
Under GDPR and other relevant data protection laws, you have rights including:
- The right to be informed: About how your personal data is being used.
- The right of access: To your personal data.
- The right to rectification: To have inaccurate personal data corrected.
- The right to erasure (right to be forgotten): In certain circumstances.
- The right to restrict processing: To block or suppress processing of your personal data.
- The right to data portability: To obtain and reuse your personal data for your own purposes across different services.
- The right to object: To processing based on legitimate interests or direct marketing.
- Rights in relation to automated decision making and profiling.
To exercise any of these rights, please contact us using the details provided below.
9. Cookies and Tracking Technologies
Our online platform uses cookies and similar tracking technologies to enhance your experience, analyse site usage, and assist in our marketing efforts. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our online platform may become inaccessible or not function properly.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.
11. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:
Millbrook Minds
72 Ironmonger Lane, Floor 3
London, Greater London, EC2V 8EY
UK