Privacy Statement

We take your privacy seriously and are committed to protecting your personal data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What Data We Collect

When you complete this form, we collect and process the following personal data:

• Identity Data: First name, last name
• Contact Data: (If applicable, e.g., email address, phone number)
• Technical Data: IP address and any metadata associated with your submission

Lawful Basis for Processing

Under UK GDPR, we must have a lawful basis to process your personal data. We process your data under:

• Legitimate Interests – To respond to your enquiry, manage your registration of interest, and improve our services.
• Consent – If you have opted in to receive marketing communications, you can withdraw your consent at any time.

How We Use Your Data

Your information is used solely for the following purposes:

• To manage and respond to your registration of interest
• To communicate relevant updates and information regarding our services
• To improve our services through internal analysis

We do not sell or share your data with third parties for marketing purposes. However, we may share data with trusted service providers who assist us in processing it, subject to strict data protection agreements.

Data Security & Retention

We implement appropriate technical and organisational measures to safeguard your data against unauthorised access, loss, or misuse.

Your data will be retained only for as long as necessary to fulfil the purposes outlined above, or as required by legal or regulatory obligations. After this period, it will be securely deleted.

Your Data Protection Rights

Under UK GDPR, you have the right to:

• Access – Request a copy of the personal data we hold about you.
• Rectification– Request correction of inaccurate or incomplete data.
• Erasure (“Right to be Forgotten”) – Request deletion of your data where applicable.
• Restriction – Request limited processing of your data.
• Objection – Object to processing based on legitimate interests.
• DataPortability – Request your data in a structured format for transfer.

If you wish to exercise any of these rights, please contact us at [insert contact details].

Contact & Complaints

If you have any concerns about how we handle your data, please contact findyourpath@adeptnet.org.uk.

If you are not satisfied with our response, you have the right to lodge a complaint with the InformationCommissioner’sOffice (ICO), the UK’s data protection authority:

Website: https://ico.org.uk

Helpline: 0303 123 1113

By submitting this form, you acknowledge that you have read and understood this Privacy Statement.

• Data privacy statement for ‘find your path’ search form. As this gathers location and qualification and if used in conjunction with their IP Address could be identifiable information.

Privacy Statement

We are committed to protecting your personal data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What Data We Collect

When you use the “Find Your Path” Search Form, we may collect and process the following personal data:

• IdentityData: (If applicable, e.g., first name, last name)
• LocationData: Your provided location information
• QualificationData: Educational background and qualifications
• TechnicalData: IP address and associated metadata

While we do not collect directly identifiable data such as names unless explicitly provided, when combined, location data, qualifications, and IP address may indirectly identify you. We treat this data with the same level of protection as directly identifiable personal data.

Lawful Basis for Processing

Under UK GDPR, we process your data under the following lawful bases:

• Legitimate Interests – To provide search results tailored to your qualifications and location and to improve our services.
• Consent – Where required, such as for marketing communications, you can withdraw your consent at any time.

How We Use Your Data

Your data is used solely for:

• Tailoring search results based on your location and qualifications
• Analysing trends to improve our services
• Communicating relevant information if you have opted in for updates

We do not sell or share your data with third parties for marketing purposes. We may use trusted service providers to process data under strict data protection agreements.

Data Security & Retention

We implement robust security measures to protect your data from unauthorised access, loss, or misuse.

Your data is retained onlyforaslongasnecessary to fulfil the stated purposes or as required by law. After this period, it will be securely deleted or anonymised.

Your Data Protection Rights

Under UK GDPR, you have the right to:

• Access – Request a copy of the personal data we hold.
• Rectification – Request correction of inaccurate or incomplete data.
• Erasure (“Right to be Forgotten”) – Request deletion of your data where applicable.
• Restriction – Request limited processing of your data.
• Objection – Object to processing based on legitimate interests.
• DataPortability – Request your data in a structured format for transfer.

To exercise your rights, contact [insert contact details].

Contact & Complaints

For data concerns, contact findyourpath@adeptnet.org.uk.

If you are not satisfied with our response, you can lodge a complaint with the Information Commissioner’s Office (ICO):

Website: https://ico.org.uk

Helpline: 0303 123 1113

By submitting this form, you acknowledge that you have read and understood this Privacy Statement.

• Privacy policy template – needs to include mention of 3rd party website (not being responsible for information found on any linked third party websites).

Privacy Policy

Introduction

Findyourpath.uk (“we,” “our,” or “us”) is committed to protecting your privacy and ensuring that your personal data is handled securely and in compliance with the UK General Data Protection Regulation (UK GDPR) and the DataProtectionAct2018. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website Findyourpath.uk or use any of our forms or services.

By using our website, you consent to the collection and use of your personal data as described in this policy.

1. Data We Collect

We collect and process different types of personal data depending on how you interact with our website, including:

a) General Website Use

When you browse our website, we may collect:

• Technical Data – IP address, browser type, device information, and cookies (see Section 6 for more details on cookies).
• Usage Data – Information about how you use our website, such as page visits and interaction patterns.

b) “Register Your Interest” Form

If you complete this form, we may collect:

• Identity Data – First name, last name
• Contact Data – (If applicable, e.g., email address, phone number)
• Technical Data – IP address and submission metadata

c) “Find Your Path” Search Form

If you use this form, we may collect:

• Location Data – Your provided location
• Qualification Data – Educational background and qualifications
• Technical Data – IP address and metadata

While we do not require directly identifiable data in the “Find Your Path” search form, location data, qualifications, and IP address combined may make you identifiable. We treat this data with the same level of protection as personally identifiable data.

2. How We Use Your Data

We only use your personal data when there is a lawful basis under UK GDPR, including:

• Legitimate Interests – To provide and improve our services, process your enquiries, and analyse website usage.
• Consent – If you opt-in to receive marketing communications (you may withdraw consent at any time).

We do not sell or share your personal data with third parties for marketing purposes. However, we may share your data with trusted service providers (such as hosting providers) who assist in processing it, under strict data protection agreements.

3. Data Security & Retention

We implement appropriate technical and organisational measures to protect your data from unauthorised access, alteration, disclosure, or loss.

We retain your personal data only for as long as necessary for the stated purposes or as required by law. After this period, data is securely deleted or anonymised.

4. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

• Right to Access – Request a copy of the personal data we hold about you.
• Right to Rectification – Request correction of inaccurate or incomplete data.
• Right to Erasure – Request deletion of your data (where applicable).
• Right to Restriction – Request limited processing of your data.
• Right to Object – Object to processing based on legitimate interests.
• Right to Data Portability – Request a structured format of your data for transfer.

To exercise any of these rights, contact us at findyourpath@adeptnet.org.uk.

If you are not satisfied with our response, you can lodge a complaint with the Information Commissioner’s Office (ICO):

• Website: https://ico.org.uk
• Helpline: 0303 123 1113

5. Third-Party Websites & Links

Our website may contain links to third-party websites for your convenience. However, we are not responsible for the content, security, or privacy practices of any linked third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.

6.Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies help us:

• Understand user behaviour and website performance
• Store user preferences for future visits
• Improve our website functionality

Managing Cookies

You can manage your cookie preferences through your browser settings. Disabling cookies may affect certain functionalities of our website.

For more information, please see our Cookie Policy.

7. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal or operational changes. Any updates will be posted on this page, and significant changes will be communicated where appropriate.

Last Updated: 22.2.25

8. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at:

Hannah Bartram

Email: findyourpath@adeptnet.org.uk

Address: 10 Queen Street Place, London, EC4R 1BE

• We would also include advice about your use of Google-hosted webfonts and the Google-hosted jQuery library and how that will affect your Cookies statements requirements.

Google-Hosted Webfonts & jQuery Library: Impact on Cookie Statements

Using Google-hosted webfonts (e.g., Google Fonts API) and Google-hosted jQuery (via Google’s CDN) may have privacy and cookie implications, particularly under UK GDPR and EU GDPR. Here’s a breakdown of key considerations:

1. Google-Hosted Webfonts (Google Fonts API)

How It Works:

• When a user visits your website, their browser requests fonts from Google’s servers.
• This request may expose the user’s IP address and other technical metadata (e.g., browser type, OS).
• Google states that they do not store personally identifiable information related to font requests.

Privacy & Cookie Implications:

• No cookies are stored on the user’s device.
• However, IP addresses are transmitted, making this personal data under UK GDPR.
• If using Google Fonts, your Privacy Policy should disclose that external requests are made to Google servers.

Alternative:

• To avoid Google’s servers, you can self-host Google Fonts on your own server. This eliminates third-party requests and improves GDPR compliance.

2. Google-Hosted jQuery (CDN)

How It Works:

• jQuery can be loaded from Google’s Content Delivery Network (CDN).
• When a user’s browser requests the file, Google may log their IP address and other connection details.

Privacy & Cookie Implications:

• Google may track requests via server logs (even if they don’t set cookies).
• If a user has already visited another site using Google’s jQuery CDN, the file may be loaded from their browser cache, reducing additional tracking.

Alternative:

• Self-host jQuery to prevent user data from being shared with Google.

Impact on Your Cookie Statement & Privacy Policy

Since no cookies are directly stored, these services do not require a cookie banner under UK GDPR. However, they do involve personal data processing (IP addresses), so your Privacy Policy should mention:

• That Google Fonts and/or Google’s jQuery CDN are used and may involve requests to external Google servers.
• That Google may log IP addresses (but does not set cookies for fonts).
• How users can learn more about Google’s data policies (link to Google’s Privacy Policy).
• That users can opt out by using privacy-focused browser extensions or by blocking external scripts.

Best Practices for GDPR Compliance

1. Self-host fonts and jQuery if feasible.
2. Update your Privacy Policy to mention third-party requests.
3. Use a content security policy (CSP) to restrict third-party requests where possible.

In light of this I have included below a specific addendum for the Privacy Policy template, but you will need to consider this in your Cookies solution wording.

9. Use of Google Webfonts & jQuery CDN

Our website uses Google Webfonts and the Google-hosted jQuery library, which are provided by Google’s Content Delivery Network (CDN). These services enhance website performance and user experience by loading resources from fast, globally distributed servers.

a) Google Webfonts

When you visit our website, your browser may request font files from Google’s servers. This request:

• Does not store cookies on your device.
• May transmit your IP address and technical data (e.g., browser type, OS) to Google.
• Helps ensure correct font rendering and faster page loading.

Google states that it does not track or store personal data through Google Fonts. However, for transparency, you can review Google’s Privacy Policy here: https://policies.google.com/privacy.

b) Google-Hosted jQuery (CDN)

Our website may load jQuery from Google’s CDN to improve performance. When a request is made:

• Your IP address and connection metadata may be logged by Google.
• If you have previously visited another website using Google’s jQuery CDN, the file may be loaded from your browser cache, reducing further data transmission.

c) Your Privacy Choices

If you wish to limit data sharing with Google’s services, you can:

• Use browser extensions to block third-party requests.
• Disable external scripts via browser settings or privacy-focused tools.
• Opt for self-hosted solutions if you manage your own website.

We continuously review our website’s privacy measures and may implement self-hosted solutions where feasible to further enhance compliance with UK GDPR.

For further details on how we handle your personal data, please refer to other sections of this Privacy Policy.