Cookies & Privacy Policy

Updated 9th December 2020

We understand that your privacy is important to you and that you care about how your personal data is used and shared online. 

We are committed to protecting your privacy and will only use your data for the express purpose of delivering our services to you.

Please read this Privacy Policy carefully and ensure that you understand it. Your acceptance is deemed to occur upon your first use of this website. If you do not accept and agree with this Privacy Policy, you must stop using this website immediately.

This policy sets out when, how and why we may collect and use your personal information, as well as the type of personal information we may collect from you when you use this website and access the courses and lessons sold via this website.

For the purpose of the Data Protection Act 1998 (“the Act”) and General Data Protection Regulation (Regulation (EU) 2016/679) (“the Regulation”) Skippers Online Limited is a data controller in respect of personal data provided by you to us through our website.

This policy also sets out your rights and our obligations in respect of the controlling and processing of such information by us. 

To the extent that we provide personal information to third party processors, those processors are obliged to comply with this policy when processing personal information on our behalf.

By using our website and the courses and lessons sold via this website, you’re agreeing to be bound by this Policy.

Information we may collect and process

We may collect and process various types of personal information at the time you browse, register to use, and during your actual use of, our services. We may also collect personal information when you correspond with us by phone, email or otherwise.

By using our services you are agreeing for us to collect and process the personal information provided as part of that process.

The personal information we collect from you may be held on paper or on a computer or other media, and is subject to certain legal safeguards specified in the Act and the Regulation.

How we collect and use personal information

Personal information may be collected by us actively and passively. The specific types of personal information we may collect from you, and the manner in which such data may be collected, includes:

REGISTRATION DATA 
We collect your name, postal address, email address and telephone number when you register directly with us as a student, or via a registration page placed on an Agent’s website.

Additional information provided to us at the time of completing the new customer questionnaire if you so wish is also included in this category.

Registration data is used to provide access to our courses and to register you as a student with the RYA - see more below.

CONTACT DATA
This is data we must collect from you in order to process and reply to your contact requests.

Contact data includes, but is not limited to, your name, your email address, and your telephone number.

Contact data will be collected by us when you complete and submit the contact form.

Contact data will be used for the purpose of processing and responding to contact requests you make.

We may also use Contact data for the purpose of providing you with information about similar services we provide as we consider ourselves to have a legitimate interest in doing so. You may choose to stop receiving this information at any time through clicking the “unsubscribe” link at the bottom of our marketing emails.

WEBSITE DATA 
This data is passively collected by us in the course of you using and browsing the website.

Website data includes, but is not limited to, your device’s Internet Protocol (IP) address, web cookies, browser type and version, the pages of our website that you visit, the amount of time spent on each page of the website, time zone settings, the time and date of your visit and the operating system or platform you use, information about your visit, clickstream to, through and from our website (including date and time), any products you have viewed or searched for, page response times, download errors, length of visits to certain pages within the website, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.

Website data will be used for the purpose of understanding how our customers’ behave in order for us to develop or optimise our website and products.

Storage of personal data

All personal information we collect and process is stored on our secure servers.

We also provide website data collected from you to Google, Inc. for use in respect of its Google Analytics service - see more info below.

Your rights and our obligations

We will generally process personal data on the basis of having specific consent to do so for that specific purpose. If we require your consent, we will explicitly ask for such consent at the time of collecting your personal data.

However, we may also process your personal information if we are able to do so without explicit consent under the Act and/or Regulation. For example, we may be able to legally control and process your personal information without your consent if it is necessary in order for us to provide the service you have asked us to provide, or if we have a legitimate interest in doing so, or if doing so is in the public interest.

We may also process your personal information without your consent if we have a legitimate interest in doing so, for example, by sending direct marketing emails to you, for some internal administrative purposes, or for the purpose of ensuring electronic information security.

Where we are processing your personal information on the basis of you having given us your consent to do so, you do have the right to withdraw that consent at any time, but this will not affect the lawfulness of processing prior to the withdrawal of such consent.

You can exercise your right to withdraw consent to processing at any time by contacting us via info@skippersonline.net

You have the right to ask for a copy of the information we hold about you and, under certain circumstances, the right to request the erasure of your data.  

Erasing your personal data will prevent us from continuing to provide our services to you.

Data accuracy

The accuracy of your information is important to us. If you change email address, or any of the other information we hold is inaccurate or out of date, please email us at: info@skippersonline.net

How long do we keep your information?

We may keep and process your personal information for as long as is necessary to fulfil the purposes we collected it for, or for as long as it is necessary to do so for legal reasons.

Sharing of personal information

We may disclose personal information we hold to third parties, with your consent, or on the basis of an otherwise lawful reason for doing so under the Act and/or Regulation:

• In order to facilitate, provide and improve the products and services we provide to you through our website and courses.
• In order to analyse the manner in which our services are used.
• When we require a payment provider to facilitate a purchase. We use Stripe and Paypal to facilitate payments.  These are PCI Service Provider Level 1 suppliers and they implement the highest grade of payment processing security.  Skippers Online does not record or store any of your financial data.
• When we register you as a student with the RYA which is the appropriate training regulatory body, to comply with their educational, examinational and administrative requirements.
• in the event that we sell or buy any business or assets, in which case we may disclose personal information we hold to the prospective seller or buyer of such business or assets.
• if we or substantially all of our assets are acquired by a third party, in which case personal information we hold will be one of the transferred assets; and
• if we are under a duty to disclose or share your personal information in order to comply with any legal obligation, or in order to enforce or apply any contract with the data subject or other agreements; or to protect our rights, property, or safety of our employees, customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

Disclosure and Security

We minimise the amount of personal information we disclose to what is directly relevant and necessary to accomplish the specified purpose.

We protect your information using measures that reduce the risks of loss, misuse, unauthorised access, disclosure and alteration. We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in specific accordance with our instructions. 

Where legally compelling grounds exist, we may also disclose your personal information to the government and to law enforcement, and otherwise in the defence of legal claims. 

If we were to be acquired by another company, we may share information with them however we will require that company to agree to follow this Privacy Policy with respect to your personal information. 

Transfers outside the EEA

We may transfer any personal information we hold to a country outside the European Economic Area (EEA), provided that one of the following conditions applies:

• the country to which the personal information is transferred ensures an adequate level of protection for the data subjects’ rights and freedoms;
• you have given your consent;
  the transfer is necessary for one of the reasons set out in the Act and/or Regulation, including the protection of your vital interests;
• the transfer is legally required on important public interest grounds or for the establishment, exercise or defence of legal claims; or
• the transfer is authorised by the relevant data protection authority where we have adduced adequate safeguards with respect to the protection of the data subjects’ privacy, their fundamental rights and freedoms, and the exercise of their rights.

Personal information we hold may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. That staff may be engaged in, among other things, the provision of support services.

Cookies

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the responsible body for the data processing that occurs via this website has their basis outside of the European Economic area and Switzerland, then the associated Google Analytics data processing is carried out by Google LLC. Google Ireland Limited and Google LLC. will hereinafter be referred to as “Google”.

Google Analytics uses “cookies”, which are text files saved on the site visitor’s computer, to help the website analyse their use of the site. The information generated by the cookie (including the truncated IP address) about the use of the website will normally be transmitted to and stored by Google.

Google Analytics is used exclusively with the extension “_anonymizeIp ()” on this website. This extension ensures an anonymization of the IP address by truncation and excludes a direct personal reference. Via this extension Google truncates the site visitor’s IP address within member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional situations will the site visitor’s full IP address be transmitted to Google servers in the United States and truncated there. The IP address, that is provided by the site visitor’s browser in using Google Analytics will not be merged by Google with other data from Google.

On behalf of the site operator, Google will use the information collected to evaluate the use of the website, to compile reports on website activity and to provide other website and internet related services to the site operator (Art. 6 (1)( f) GDPR). The legitimate interest in data processing lies in the optimization of this website, the analysis of the use of the website and the adaptation of the content. The interests of the users are adequately protected by the pseudonymization of their data.

Google LLC. offers a guarantee to maintain an adequate level of data protection on the basis of European standard contractual clauses. The data sent and linked to the Google Analytics cookies, e.g. user IDs or advertising IDs will be automatically deleted after 50 months. The deletion of data whose retention period has been reached is carried out automatically once a month.

The website visitor may refuse the use of cookies by selecting the appropriate settings in their browser. The website visitor can also prevent Google from collecting information (including their IP address) via cookies and processing this information by downloading this browser plugin and installing it: http://tools.google.com/dlpage/gaoptout

The website visitor can prevent data collection via Google Analytics on this website by clicking here. An “Opt-out Cookie” shall then be applied which shall prevent any future collection of the site visitors data when visiting this website.

Further information concerning data processing and use by Google, the settings and deactivation possibilities can be found in the Google Privacy Policy (https://policies.google.com/privacy) as well as in the Google Ads Settings (https://adssettings.google.com/authenticated).

Changes to this policy

We reserve the right to change this policy at any time. Where appropriate, we will notify you of those changes by email.

We recommend that you also regularly review this privacy policy for any changes.

Concerns or complaints

If you have any concerns or complaints relating to this policy, its subject matter, or the manner in which we collect, control and/or process your personal information, please let us know by sending an email to info@skippersonline.net

You also have the right to lodge a complaint with a supervisory authority if you consider that the processing of your personal information has infringed the Regulation.  In the UK, the relevant supervisory authority is the Information Commissioner’s Office.