1. Introduction

Trusted Solutions Limited Academy Platform is committed to protecting the privacy and security of personal data. This GDPR policy outlines our compliance with the General Data Protection Regulation (GDPR) and our dedication to ensuring the protection of personal data handled by our online platform.


2. Scope

This policy applies to all personal data processed by Trusted Solutions Limited Academy Platform, including data related to users, students, employees, contractors, and other third parties.


3. Definitions

• Personal Data: Any information relating to an identified or identifiable natural person.
• Processing: Any operation performed on personal data, such as collection, storage, use, and sharing.
• Data Subject: An individual whose personal data is processed.
• Data Controller: The entity that determines the purposes and means of processing personal data.
• Data Processor: The entity that processes personal data on behalf of the Data Controller.

4. Data Protection Principles

Trusted Solutions Limited Academy Platform adheres to the following data protection principles:

• Lawfulness, fairness, and transparency
• Purpose limitation
• Data minimization
• Accuracy
• Storage limitation
• Integrity and confidentiality
• Accountability

5. Lawfulness, Fairness, and Transparency

We ensure that personal data is processed lawfully, fairly, and transparently by:

• Obtaining consent from data subjects where required.
• Informing data subjects about how their data will be used.
• Ensuring that data processing is necessary for the performance of a contract, compliance with legal obligations, or legitimate interests pursued by the platform.

6. Data Collection

We collect personal data only for specified, explicit, and legitimate purposes. The types of personal data we collect include, but are not limited to:

• Contact information (e.g., name, address, email, phone number)
• Account details (e.g., username, password)
• Academic records (e.g., grades, attendance)
• Payment information (e.g., credit card details, billing information). We do not store credit card details as we go through a processing licensed entity which are PCI compliant.
• Usage data (e.g., website usage, IP addresses, cookies)

7. Data Usage

Personal data is used only for the purposes for which it was collected, such as:

• Providing and managing access to the platform
• Delivering educational content and services
• Managing user accounts and authentication
• Processing payments and managing financial transactions
• Complying with legal obligations
• Improving our platform and user experience

8. Data Storage

Personal data is stored securely using appropriate technical and organizational measures to protect against unauthorized access, alteration, disclosure, or destruction.


9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Data that is no longer needed is securely deleted or anonymized.


10. Data Security

We implement appropriate security measures to protect personal data, including:

• Encryption of sensitive data
• Regular security assessments
• Access controls and authentication measures
• Security training for employees

11. Data Subject Rights

Data subjects have the following rights regarding their personal data:

Right to Access
Data subjects can request access to their personal data and obtain information about how it is processed.

Right to Rectification
Data subjects can request correction of inaccurate or incomplete personal data.

Right to Erasure
Data subjects can request deletion of their personal data under certain conditions.

Right to Restriction of Processing
Data subjects can request restriction of processing of their personal data under certain conditions.

Right to Data Portability
Data subjects can request to receive their personal data in a structured, commonly used, and machine-readable format, and to have it transferred to another data controller.

Right to Object
Data subjects can object to the processing of their personal data under certain conditions.


12. Data Breach Management

We have procedures in place to detect, report, and investigate personal data breaches. Data subjects and relevant authorities will be notified of any data breach that poses a risk to the rights and freedoms of individuals.


13. Data Protection Officer (DPO)

Trusted Solutions Limited Academy Platform has appointed a Data Protection Officer (DPO) responsible for overseeing GDPR compliance and serving as the point of contact for data protection matters.


14. Third-Party Processors

We ensure that third-party processors comply with GDPR by:

• Conducting due diligence before engaging with third parties.
• Entering into data processing agreements that outline the responsibilities of both parties.

15. International Data Transfers

When transferring personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect the data, such as:

• Standard contractual clauses
• Binding corporate rules
• Adequacy decisions by the European Commission

16. User Responsibilities

All users of Trusted Solutions Limited Academy Platform are responsible for:

• Understanding and complying with this GDPR policy.
• Reporting any suspected data breaches or security incidents.
• Keeping their account information secure and up to date.

17. Training and Awareness

We provide regular training and awareness programs to ensure that all employees and users understand their responsibilities under GDPR and the importance of data protection.


18. Review and Updates

This GDPR policy is reviewed regularly and updated as necessary to ensure compliance with current data protection laws and practices.


19. Contact Information

For any questions or concerns regarding this GDPR policy or data protection practices, please contact our Data Protection Officer:

• Data Protection Officer: Fotini Nouchta
• Email: fotini@trustedsol.com 
• Phone: 25 255648
• Address: 73 Agias Fylaxeos street, Josephides Court, Office 201, 3087 Limassol, Cyprus

This GDPR policy ensures that Trusted Solutions Limited Academy Platform handles personal data in compliance with the General Data Protection Regulation, maintaining the privacy and security of all personal data processed by our platform.