UK Skills Growth Academy Ltd. (“we”, “our”, “us”) (trading as Tower Bridge Beauty Academy) are committed to ensuring your personal information is protected and used appropriately when you use our services.
Our contact details
Call us: 020 7073 2604
Write to us: Tower Bridge Business Centre, 46 - 48 East Smithfield, London, E1W 1AW, United Kingdom
Our main point of contact for data protection matters is our Data Protection Officer - Ikhtiar Rahman, who can be contacted at .
What data do we collect?
Personal Information is any information that can be used to identify a living person.
We may collect your:
Emergency contact details
National Insurance Number
Information about relevant disabilities and/or learning difficulties
How we get the information and why do we have it
The personal information we process is provided to us directly by you.
We collect your contact details (full name, email and telephone number) via forms either submitted on our website (ukskillsgrowth.academy) or through one of our social media campaigns. Your contact details may also be recorded if you email, call or message us directly.
Further information may be collected if you apply to enrol onto one of our programmes. We collect this information via asking you to complete the necessary forms for your enrolment.
We collect your contact details so that we can contact you to discuss your interest in or enrolment onto one of our programmes. We collect further information to facilitate your enrolment onto our programmes and application for any funding.
We process your data because:
It is necessary for compliance with legal obligations to which we are subject
We have received your consent to do so
UK Skills Growth Academy processes personal data, both as a Data Controller and as a Data Processor, as defined by relevant Data Protection Legislation: the General Data Protection Regulations 2016/679, the Data Protection Act 2018, the EU Data Protection Directive 95/46/EC, the Regulation of Investigatory Powers Act 2000, the Telecommunications (Lawful Business Practice) (Interception of Communications) Regulations 2000 (SI 2000/2699), the Electronic Communications Data Protection Directive 2002/58/EC, the Privacy and Electronic Communications (EC Directive) Regulations 2003 and all applicable laws and regulations relating to processing of personal data and privacy, including where applicable the guidance and codes of practice issued by the Information Commissioner.
If we have consent to use your personal information, you have the right to remove it at any time. If you want to remove your consent please contact:
What we do with the information
We use this information internally to keep a record of individuals you are either interested in or enrolled onto one of our programmes. We may use this information to help us to understand the specific characteristics of our customers.
We do not share this information with any third parties other than our partner in the delivery of our programmes – Ixion Holdings (Contracts) Ltd. It is necessary for us to share this information with Ixion Holdings (Contracts) Ltd. to enable us to administer the enrolments and delivery of our programmes. Information is shared electronically with Ixion Holdings (Contracts) Ltd., including via shared systems and email.
How we store your information
Your information may be stored:
• On our web server
• On our email server
• Locally on our computer system
• In shared files based on cloud storage services
• On our customer relationship management system
• In hard copy files secured at the head office of UK Skills Growth Academy Ltd.
We will retain your personal information only for as long as we need it in order to fulfil the purposes for which we have initially collected it, unless otherwise required by law or contractual requirements.
Transfers outside the European Economic Area
We may transfer your personal data outside the EEA, e.g. where we use a third party cloud services provider based outside the EEA to store personal data.
Please note that many countries outside the EEA do not have data protection legislation, or have different data protection or privacy regimes, and so may not always protect their personal data to the same standard as within the EEA.
Where we transfer your personal information across national boundaries to a third party, such as one of our service providers, we will protect your personal information by ensuring that those transfers are made in compliance with all relevant data protection laws.
We have listed below the organisations to which data may be transferred to and stored with, located outside the EEA, and their statements regarding the transfer of personal data outside the EEA.
UK Skills Growth website and data capture forms are hosted by Wix.com Ltd.
“Wix can store your site-visitors' data in a number of locations. Your site-visitors ́ personal information may be stored in data centers located in the United States of America, Ireland, South Korea, Taiwan and Israel. We may use other jurisdictions as necessary for the proper delivery of our services and/or as may be required by law.
Wix is a global company that respects the laws of the jurisdictions it operates within. The processing of the User Customer Data may take place within the territory of the European Union, Israel or a third country, territory, or one or more specified sectors within that third country, of which, the European Commission has decided that it ensures an adequate level of protection (transfer on the basis of an adequacy decision).”
“Wix.com is certified under the EU-US Privacy Shield Framework and the Swiss-US privacy Shield Framework as set forth by the U.S. Department of Commerce, regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, and therefore adheres to the Privacy Shield Principles.”
We may store personal data using Google, LLC services including G Suite and the Google Cloud Platform. We may also use Google, LLC services to analyse website traffic and advertise through Google's platforms.
“We contractually commit under our current data processing agreements to maintain a mechanism that facilitates transfers of personal data outside of the EU as required by the GDPR. Google’s certification under the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks includes G Suite and Google Cloud Platform. We have also gained confirmation of compliance from European Data Protection Authorities for our model contract clauses, affirming that our contractual commitments for G Suite and Google Cloud Platform fully meet the requirements to legally frame transfers of personal data from the EU to the rest of the world.”
We may use Facebook Inc. services to help us track and analyse Facebook campaigns and the actions website users take who have come from one of our Facebook advertisements.
"Facebook Inc. ("Facebook") has certified to the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (collectively, "Privacy Shield Frameworks") with the US Department of Commerce regarding the collection and processing of personal data from our advertisers, customers or business partners in the European Union and, where a Swiss data controller uses Facebook as a data processor, Switzerland ("Partners") in connection with the products and services described in the Scope section below and in our certification."
We may store personal data using services provided by HubSpot, Inc.
“You acknowledge that in connection with the performance of the Subscription Services, HubSpot, Inc. is a recipient of European Data in the United States. The parties acknowledge and agree the following:
(a) Standard Contractual Clauses: HubSpot, Inc. agrees to abide by and process European Data in compliance with the Standard Contractual Clauses.
(b) Privacy Shield: Although HubSpot, Inc. does not rely on the EU-US Privacy Shield as a legal basis for transfers of Personal Data in light of the judgment of the Court of Justice of the EU in Case C-311/18, for as long as HubSpot, Inc. is self-certified to the Privacy Shield HubSpot Inc will process European Data in compliance with the Privacy Shield Principles and let you know if it is unable to comply with this requirement.”
Your data protection rights
Under data protection law, you have rights including:
Your right of access - You have the right to ask us for copies of your personal information.
Your right to rectification - You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
Your right to erasure - You have the right to ask us to erase your personal information in certain circumstances.
Your right to restriction of processing - You have the right to ask us to restrict the processing of your information in certain circumstances.
Your right to object to processing - You have the the right to object to the processing of your personal data in certain circumstances.
Your right to data portability - You have the right to ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances.
You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.
Please contact us at firstname.lastname@example.org if you wish to make a request.
How to complain
You can also complain to the ICO if you are unhappy with how we have used your data.
The ICO’s address:
Information Commissioner’s Office
Helpline number: 0303 123 1113
Cookies are files sent by web servers to web browsers, and stored by the web browsers.
The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers.
There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.
Cookies on our website
UK Skills Growth Academy uses the following cookies on this website, for the following purposes:
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Non-necessary cookies are used for analytical purposes to count the number of visitors to a website, are used by first party or third party advertisers, including affiliates, and are used to recognise the user when they return to a website.
UK Skills Growth Academy uses Google Analytics to analyse the use of this website. Google Analytics generates statistical and other information about website use by means of cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website. Google will store and use this information.
UK Skills Growth Academy uses the Facebook Pixel to analyse actions taken on this website of users who have visited our site from one of our Facebook advertisements. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by Facebook. You can disable this in your Facebook settings here - https://www.facebook.com/settings?tab=ads
Facebook's data policy is available at: https://www.facebook.com/policy.php
Most browsers allow you to refuse to accept cookies.
In Internet Explorer, you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector.
In Firefox, you can adjust your cookies settings by clicking “Tools”, “Options” and “Privacy”.
In Chrome, you can manage cookies by clicking “Settings”, “Advanced”, “Privacy and Security”, “Content Settings” “Cookies” or by installing the Disable Cookies Extension.
In Safari select “Preferences”, and then click “Privacy”. In the “Block cookies” section, specify if and when Safari should accept cookies from websites.
Blocking cookies will have a negative impact upon the usability of some websites.