Policy Owner: Stephanie Austin, Owner & Lead Trainer
Version: 2.1
Last Reviewed: February 2026
Next Review Due: January 2027 (or sooner if statutory guidance changes)
Applies To: All Prima Cura Training deliveries across the United Kingdom

1. Introduction

Prima Cura Training is committed to protecting and respecting the privacy of individuals whose personal data we process. This Privacy Policy explains how we collect, use, store, and protect personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Prima Cura Training is the trading name of a UK sole trader. Prima Cura Training is not associated with Prima Cura Limited. For the purposes of UK data protection legislation, Prima Cura Training is the data controller responsible for the processing of personal data.

2. Personal data we collect

We may collect and process the following categories of personal data:

  • Technical data, including IP address, browser type and version, operating system, referral source, page views, and website navigation paths
  • Identity and contact data provided via website enquiry or contact forms, including name, email address, telephone number, and enquiry details
  • Communication data contained in emails or other correspondence sent to us
  • Booking and service-related data generated through enquiry or booking systems
  • Learner and attendance information required for the delivery of training services
  • Any other personal data voluntarily provided to us

Where you provide personal data relating to another individual, you confirm that you have obtained their consent for that data to be disclosed and processed in accordance with this policy.

3. Lawful basis for processing

We process personal data under one or more of the following lawful bases:

  • Contractual necessity – where processing is required to respond to enquiries or deliver training services
  • Legitimate interests – to manage and operate our business effectively, provided those interests are not overridden by individual rights
  • Consent – where explicitly provided, particularly for marketing communications
  • Legal obligation – where required to comply with legal, regulatory, or accounting requirements

4. How we use personal data

Personal data may be used for the following purposes:

  • Responding to enquiries and requests for information
  • Administering training bookings and delivery
  • Managing learner records and attendance
  • Communicating service-related information
  • Maintaining business records
  • Improving website functionality and performance
  • Ensuring website security and preventing misuse or fraud

We do not process personal data for purposes that are incompatible with those listed above.

5. Marketing communications

We do not sell personal data or share personal data with third parties for marketing purposes.

Where marketing communications are sent, they are only issued where consent has been provided. Consent may be withdrawn at any time by contacting us or using the unsubscribe mechanism provided.

6. Sharing personal data

We may share personal data with carefully selected third parties where necessary to operate our business, including:

  • Website hosting and maintenance providers
  • Website analytics providers
  • Secure cloud storage and record management services

All third parties are required to process personal data securely and in accordance with data protection legislation. Personal data is not transferred outside the UK unless appropriate safeguards are in place.

7. Data security

Appropriate technical and organisational measures are in place to protect personal data against unauthorised access, alteration, disclosure, or destruction. Access to personal data is limited to those who require it for legitimate business purposes.

8. Data retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and regulatory obligations. Data is securely deleted or anonymised when no longer required.

9. Cookies

Our website uses cookies to ensure functionality and to analyse website usage. When you first visit our website, you will be asked to provide consent to the use of cookies via our cookie consent mechanism.

You may manage or withdraw cookie preferences at any time through browser settings or the cookie management tool.

10. Your rights

Under UK data protection law, you have the right to:

  • Access personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Request deletion of personal data where appropriate
  • Restrict or object to processing
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

Prima Cura Training is registered with the UK Information Commissioner’s Office (ICO) as a data controller.

ICO Registration Number: ZA763319

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and guidance issued by the Information Commissioner’s Office.

If you have concerns about how your personal data is handled, you have the right to raise a complaint directly with the ICO via their website at https://ico.org.uk/

11. Contact details

For any questions regarding this Privacy Policy or to exercise your data protection rights, please contact:

Email: info@primacuratraining.co.uk

12. Changes to this policy

We may update this Privacy Policy periodically to reflect changes in legal requirements or business practices. The most current version will always be available on our website.

Last updated: 31st January 2026