1. City Lit
  2. Student Services and Support
  3. City Lit policies
  4. Key policies & documents
  5. Corporate

Privacy Policy

1. Privacy Policy: Introduction

City Lit is committed to protecting your personal information when you use our services. This Privacy Policy describes how we use any personal information that we collect from you via the following online services:

  • any City Lit website or online form that links to this Privacy Policy
  • social media or official City Lit content on other websites

It also describes how we use any personal information that you provide by phone, SMS, email, in letters and other correspondence, and in person.

This Privacy Policy explains the following:

  • who we are
  • what information we may collect about you
  • how we will use information we collect about you
  • how long we hold information about you
  • the legal basis for processing your information
  • when we may use your details to contact you
  • whether we will disclose your details to anyone else
  • your rights regarding the personal information you provide to us
  • how to contact us or lodge a complaint to the Information Commissioners Office

City Lit is committed to safeguarding your personal information. Whenever you provide such information, we are obliged to use it in line with applicable laws concerning the protection of personal information (these laws are referred to collectively in this Privacy Policy as the "data protection laws"). City Lit websites contain hyperlinks to websites owned and operated by third parties beyond the control of City Lit. These third party websites will have their own privacy policies which you should read if you have concerns.

2. About us

During this policy and online when saying “we”, “our” or “City Lit”, we are referring to The City Literary Institute
Registered office: City Lit, 1-10 Keeley Street, Covent Garden, London, WC2B 4BA.

Registered charity: 803007

Registered in England no: 2471686

The Data Controller is The City Literary Institute and our registration number in the Data Protection Register is Z4963477.

3. What Information will City Lit collect about me?

We will collect your personal information when you:

  • access, participate in or sign up to any of our services, activities or online content
  • apply or enroll for one of our courses,
  • create an account on our website,
  • phone or email us,
  • donate money to City Lit,
  • reserve a place at an event,

What types of personal data do we collect?

  • name, title, ethnicity, gender and date of birth
  • contact details including address, email and telephone
  • admissions, attendance, and assessment and outcomes records
  • your communication preferences
  • disability/learning difficulty information, and support information where relevant
  • fees and financial support records
  • information about and arising from your engagement with College services such as the Library or Access and inclusion support
  • employment status,
  • prior education level,
  • Residency status
  • state benefits and National Insurance Number where relevant
  • next of kin details where relevant
  • photographs or video images where relevant

City Lit collects information about how you use its website and other City Lit online content, and the device(s) you use to access these services. This includes collecting unique online identifiers such as IP addresses, which are numbers that can uniquely identify a specific computer or other network device on the web. For more information, please see our Cookie Policy.

4. How will City Lit use the personal Information it collects about me?

By providing City Lit with your personal information it will be stored, and may be used by us for any of the following purposes:

  • to register you on to one of our courses and give you access to the course materials and video conferencing platform if the course is to be delivered online.
  • to comply with funding and audit requirements for the Mayor of London (Greater London Authority, Adult Education Budget (GLA AEB)) and Department for Education (DfE)
  • for the direct marketing of City Lit services, to provide you with information about our courses; including progression options; and other information that may be relevant to your interests
  • to assess and provide financial support where requested
  • to assess and provide study support where requested
  • to provide you with invitations to relevant events and reminders or joining details for those events to which you register.
  • to issue directed funding appeals and verify large donations
  • where the processing enables us to enhance, modify, personalise or otherwise improve our services/communications for the benefit of our students/customers.
  • to determine the effectiveness of promotional campaigns and advertising.
  • to better understand how people interact with our websites.
  • To use onsite search, browsing and purchase behaviour to train our AI powered search and product recommendations tool
  • to enhance the security of our network and information systems.
  • to identify and prevent fraud.

We will ask for consent to send you marketing communications about our services. You’ll be able to unsubscribe from these communications at any point or alternatively via the ‘unsubscribe’ option at the bottom of each email we send you. See section 7 for more details.

Whenever processing data for the purposes described above, we will comply with the spirit and the letter of the law in respecting your rights and interests. You have the right to object to marketing. See section 11 for more details.

5. How long will City Lit retain my personal data?

We will hold and process your personal information on our systems only for the purpose for which the data was originally collected unless we have notified you differently, or as long as is set out in any relevant contract you hold with City Lit. Our primary funder, the Department for Education (DfE) currently require us to retain student data for six (6) years.

6. Legal basis for processing your information

Data Protection law requires us to list the legal basis by which we process personal data. There are six categories available:

Legal basis Example
(a) Consent

To obtain permission to take photographs at a City Lit event or receive direct marketing
(b) Performance of a Contract

To fulfill the specific obligations of a contractual agreement e.g. communications about your attendance at an event

(c) Compliance with a legal obligation

 To supply details to the Mayor of London (GLA) and the DfE, the funding bodies for City Lit

(d) To protect the vital interests of the data subject

The processing is necessary to preserve someone’s life e.g. share health information to the emergency services
(e) Public task This is a broad category which incorporates diverse activities including: Providing education, compliance with education standards, funding and reporting requirements and safeguarding and welfare
(f) Legitimate interests of the College

This is a broad category which incorporates diverse activities including: business planning, fraud prevention and IT Network Security

 

Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.


However, we will normally collect personal information from you only (i) where we have your consent to do so, (ii) where we need the personal information to perform a contract with you, or (iii) where the processing is in our legitimate interests and not overridden by your rights. In some cases, we may also have a legal obligation to collect personal information from you.


If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not.

7. Will I be contacted for marketing preferences?

We offer regular emails to let you know about our courses, events and news as well as any alerts relating to courses you have booked or shown an interest in. We may also invite you to take part in surveys about our products and services or issues affecting City Lit, some of which we are legally required to do.
City Lit may personalise the message content based on any information you provide to us and your use of our platforms.


You can update your communications preferences and stop receiving future emails at any time by following the links located at the bottom of our emails. Requests submitted in this manner are processed and effective immediately.


If you believe you have received unwanted, unsolicited emails sent by or purporting to be from City Lit, please forward a copy of that email with your comments to data.protectionofficer@citylit.ac.uk for review.

Occasionally, we may contract a third party to communicate on our behalf. We do not collect your email address or contact information from this third party, and we do not have access to their mailing list.

Depending on the nature of the third-party mailing, we may, in order to comply with applicable laws, provide the third party with a suppression list of our contacts to exclude from their list. The third party does not have permission to keep or market to our contacts on this list, or to use it in any way other than as a suppression list for a mailing they are providing on our behalf.


We may contact you via post to let you know about our courses, events and news. City Lit may personalise the message content based on any information you provide to us. You will only be contacted by post if your marketing preferences state you are happy for us to do so.

8. Profiling, research and Wealth screening

Your data is assessed to ensure we show you relevant information and send you relevant communications. We do this by reviewing the events and activities you have attended or shown interest in. We may tailor the content, the amount of information we send and which channels we use to best suit your needs. We use AI functionality to analysis website visitor behaviour. This profiling also helps us to understand the collective interests, expectations and trends of our community, feeding in to our future planning for activities and fund-raising appeals. We do not make decisions based solely on automated processing of your data.

9. Will City Lit share my personal information with anyone else?

As City Lit receives government funding it is required to share student personal data collected when you enroll on a course to government agencies. These agencies are:

  • Department of Education
  • Greater London Authority

Your information may also be shared with our educational partners where necessary to provide you with a service you have requested. This would happen when, for example, you have requested to enroll on an accredited course where an external awarding body is involved. When doing this, we will provide you with further information at the time of first collecting your information.

We use the services of various external technology service providers to help us run the college efficiently. These include (but are not limited to):

  • Managing and operating our IT systems
  • The provision of remote learning, including the recording and transcription of classes and teaching sessions
  • Software and cloud service related to the provision of education at the college

Some of these services (such as email hosting and data backups) involve the service provider holding and using your personal data. In each case where we share your information with one of our service providers, the service provider is required to keep it safe and secure. Unless otherwise stated when you use one of these services, the provider is not permitted to use your information for its own purposes.

We use the services of third parties to promote our courses and events including our referral scheme partner Mention Me, and personalized onsite search function, these are for the purpose of our legitimate interests.

Although most of the information we store and process stays within the UK, some data may be transferred to other countries. Transfers to countries within the EU are permitted because every EU country is subject to the requirements under GDPR. If data is transferred outside of the European Economic Area (EEA) the recipient organisation must ensure an adequate level of protection for your rights and freedoms.

10. How will City Lit protect my personal data?

We have implemented appropriate safeguards to ensure your data is protected. Examples of how we protect your personal data include the following:

  • Restricted access rights to I.T. systems, with processes in place to grant and revoke these rights;
  • Firewalls and zero day + virus protection in place which are monitored and updated on a systematic basis;
  • Physical security measures such as door access control systems, on-site security and surveillance monitoring systems;
  • Business continuity and disaster recovery procedures in place.
11. What are my rights?

You have the following rights subject to a number of qualifying conditions which are also related to our legal basis for processing your data:

 

Right of access
You have the right to request a copy of the personal information we hold about you, except where releasing that information would breach another person's privacy or where an exemption to data protection laws applies.
You may request that City Lit disclose details of data which it holds about you and the purpose for which such data is held. A ‘Subject Access Request Form’ will be supplied upon request. Additionally we may need documentation such as a copy of your passport or driver’s licence to verify identity.

 

Right of rectification
You have the right to ask us to update or amend the information we hold about you if it is incorrect.

 

Right of erasure
You have the right to ask us to remove your personal information from our records.

 

Right to restrict processing
You have the right to ask us to stop or limit processing of your personal data. When processing is stopped, we are permitted to store the personal data but not to further process it.

 

Right to data portability
You have the right to ask us to provide you with a copy of your personal data in a machine readable format provided that the processing is based on your consent and it is carried out by automated means (i.e. not paper files).
You also have the right to ask us to transmit the data to another controller.

 

Right to Object
You have a right to object to the processing of your personal data including the right to object to direct marketing. You can also withdraw your consent at any time.

Who to contact to exercise your rights:

Please address requests and questions about your rights to the:

Data Protection Officer, City Lit, 1-10 Keeley Street, Covent Garden, London, WC2B 4BA
Email: data.protectionofficer@citylit.ac.uk

How to make a complaint to the supervisory authority:

You have the right to make a complaint to the Information Commissioner’s Office (ICO):

Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom
Tel: +44 (0)303 123 1113 (local rate)
Web: https://ico.org.uk/make-a-complaint/

12. Updates to this privacy policy

We may update or amend this Privacy Policy from time to time, to comply with the law or to meet our changing business requirements. When we update our Privacy Policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. Any updates or amendments will be posted on the Website. By continuing to access our Website you are agreeing to these updates and amendments.

13. Contacting City Lit about it’s privacy policy

If you have any questions or comments about this Privacy Policy, please contact:

Data Protection Officer, City Lit, 1-10 Keeley Street, Covent Garden, London, WC2B 4BA
Email: data.protectionofficer@citylit.ac.uk

Was this article helpful?
21 out of 25 found this helpful