Guidance

Cross-government content community futurelearn training privacy policy

Updated 29 November 2023

© Crown copyright 2023

This publication is licensed under the terms of the Open Government Licence v3.0 except where otherwise stated. To view this licence, visit nationalarchives.gov.uk/doc/open-government-licence/version/3 or write to the Information Policy Team, The National Archives, Kew, London TW9 4DU, or email: psi@nationalarchives.gov.uk.

Where we have identified any third party copyright information you will need to obtain permission from the copyright holders concerned.

This publication is available at https://www.gov.uk/government/publications/cross-government-content-community-events-and-training-privacy-notices/cross-government-content-community-futurelearn-training-privacy-policy

The Central Digital and Data Office (CDDO) supports digital data and technology professionals across government and the public sector. We provide online courses to, for example, teach people the basics of content design. These are provided through the futurelearn platform, which has its own privacy policy.

CDDO is part of the Cabinet Office. The data controller for CDDO is the Cabinet Office. A data controller determines how and why personal data can be processed. Read the Cabinet Office’s entry in the Data Protection Public Register for more information.

What data we collect from you

The personal data we collect from you will normally include:

  • course activity and progress
  • comments dataset
  • email address
  • name

We use your data because you have consented for us to do so for this particular learning platform.

Why we need your data

We need your data to provide you access to the course materials and so you can complete the intended learning journey.

We also use data captured within the system for statistical purposes to improve the courses and maintain quality control.

What we do with your data

We may operate courses in partnership with another government department and we will be sharing analysis (anonymised) with similar government departments who may also wish to use this service. No personal data is shared.

Your personal data will be stored on our processor’s IT infrastructure.

We will not:

  • sell or rent your data to third parties
  • share your data with third parties for marketing purposes

We will share your data if we’re required to do so by law - for example, by court order, or to prevent fraud or other crime.

How long we keep your data

Our provider will hold your personal data for the duration of your profile. Once a profile has been deleted all personal data will be removed and deleted within 90 days.

Where your data is processed and stored

We design, build and run our systems to make sure that your data is as safe as possible at any stage, both while it’s processed and when it’s stored.

Your personal data may be transferred outside the UK while being processed by CDDO. If this happens, we’ll make sure you’re given the same level of technical and legal protection as you are within the UK through the use of model contract clauses.

Future Learn is operated by a UK company which processes personal data in Ireland.

Who we share your data with

We may share reports containing anonymised findings beyond CDDO, for example, with other government departments or organisations that we are working with.

How we protect your data and keep it secure

We are committed to doing all that we can to keep your data secure. We have set up systems and processes to prevent unauthorised access to or disclosure of the data we collect about you. For example, we protect your data using varying levels of encryption. All third parties that process personal data for the Cabinet Office are also required to keep that data secure.

Your rights

You have the right to withdraw consent to the processing of your data at any time.

You also have the right to request:

  • information about how your personal data is processed
  • a copy of your personal data
  • that we correct any inaccuracies in your personal data are rectified without delay
  • that any incomplete personal data is updated - you can include the missing information in your request
  • that your personal data is erased if there is no longer a justification for the data to be processed
  • in certain circumstances (for example, where accuracy is contested), that the processing of your personal data is restricted

If you have any of these requests, contact the GDS Privacy Team.

Questions and complaints

Contact the GDS Privacy Team if you:

  • have any questions about anything in this document
  • think that your personal data has been misused or mishandled
  • want to make a subject access request (SARS)

Email: gds-privacy-office@digital.cabinet-office.gov.uk

The data controller for your personal data is the Cabinet Office. The contact details for our Data Protection Officer are:

Data Protection Officer

Cabinet Office
70 Whitehall
London
SW1A 2AS

If you have a complaint, you can also contact the Information Commissioner, who is an independent regulator set up to uphold information rights.

Information Commissioner's Office

Email icocasework@ico.org.uk

Contact form https://ico.org.uk/glo...

Telephone 0303 123 1113

Textphone 01625 545 860

Changes to this privacy notice

We may change this privacy notice. If these changes affect how your personal data is processed, we will take reasonable steps to let you know.

Back to top