This version of our Privacy and Cookies Policy was last updated on 24 May 2018.
Our Privacy Notices can be viewed here:
Our Data Protection Policy can be viewed and downloaded from our Policy and Procedures page.
Who we are
We are Myerscough College and University Centre, provider of Further Education, Higher Education and a range of commercial services. We are registered with the Information Commissioner’s Office (ICO) and our registration number is Z8917574.
How to contact us
If you have any questions about our Privacy and Cookies Policy or the information we collect or use about you, please contact:
Data Protection Officer
St Michaels Road
You do not have to create an account or provide us with any personal information to access our website. We will not collect or store any personal information through your use of our website unless you specifically provide it to us, for example by completing a form. When you do complete any form using our website, you consent for us to use this information for the purpose of your enquiry, for example
- To register for Course Advice Mornings, Applicant Days or Taster Days;
- To purchase tickets for our annual Open Day and Country Fair event;
- To order a publication such as a printed prospectus;
- If you contact us via our website contact form;
- To book the Stumble Inn for an event;
- To subscribe to email marketing communications such as online newsletters.
Some of the personal data we store and process may include:
- Your name, title, date of birth, age and gender;
- Your contact details including address, email address and phone number;
- Your subject/area of interest;
- Your current school or college, if relevant.
Any payments processed via our website are done so in full compliance with the Payment Card Industry Security Standard (PCI DSS).
In addition to the collection, retention and use of directly provided personal information, Myerscough College and University Centre uses ‘cookies’ to store and retrieve anonymous information during each visit to the website.
A cookie is a small text file that is placed on your computer or device by websites that you visit. Cookies are widely used in order to enhance websites, providing a more tailored and personal experience, whilst permitting websites to review and analyse anonymous information about visitors, for example time spent on particular pages. Some of these cookies are presented by us, some of the cookies are presented by third-parties such as Google, Facebook and Twitter. A cookie does not identify the individual viewing a web page and does not give us access to your computer.
The following cookies are used on our site:
Used to track visitors
Used to track visitors
AddThis (social network links)
Used to track visitors
Used to track visitors
UNIT-e Online (Capita)
Used to keep visitor logged in
UNIT-e Online products use session cookies only
Password protected pages and forms
Used to keep visitor logged in
Myerscough College and University Centre also uses third party vendor re-marketing tracking cookies, including the Google Adwords tracking cookie. This means we will continue to show ads to you across the internet, specifically on the Google Content Network (GCN). As always we respect your privacy and are not collecting any identifiable information through the use of Google’s or any other 3rd party remarketing system.
Google has additional information available about their Remarketing Privacy Guidelines, and Restrictions.
How to Disable Cookies
Applying for a Course
When you apply to join a course through the ‘Apply’ tab on one of our course factsheets, you will be asked to register and create an account, this is so that we can process your application. In order to create an account, the following personal information will be required:
- Contact Number
- Email Address
- Date of Birth
Should you choose not to continue with your application at any point, your personal information will be kept for no longer than six months from the start date of the course you applied to join.
Other information we collect and use
We collect and process personal information about prospective and current students and their parents to ensure a positive teaching, learning and assessment experience and to meet our statutory obligations. The personal information that we collect about you when you apply for a course includes:
- Details about yourself, including your name, date of birth and gender
- Contact details, including your address, email address and telephone numbers
- Details about your previous qualifications, employment and educational history
- Your EU residential status
- Information about medical, welfare of health conditions, including whether or not you have a learning difficulty or disability
- Your ethnic origin
- Any criminal convictions
- The name of the last school that you attended (if recent)
- If you are, or have been, in local authority care
- Your next of kin and emergency contacts
- Whether you are interested in applying for residential accommodation
- Your personal statement and career aspirations, in order to assess your suitability for your chosen course of study
- Parent/Carer contact details for those students under the age of 18 in order that we may share information in respect of academic progress
We will only use your personal information for the purpose for which you provided it to us.
How we collect your information
We may collect your personal information directly from you, from a variety of sources, including: at a course advice or open day events; when you visit our website or enquire about a course; when you submit an application to join and then enrol upon a course; during the course of your studies when you become a student with us.
Why we collect and use your information
Where you have provided personal information to us, we will use this only for its intended purpose:
- To process your registration for a Course Advice Mornings Applicant Day or Taster Day;
- To process and issue your tickets to our annual Open Day and Country Fair event;
- To send you a publication such as a printed prospectus;
- To respond to a query you submitted via our website contact form;
- To process your event booking at the Stumble Inn;
- To send marketing communications, where we have your explicit consent to do so.
We take your privacy very seriously and will only ever collect and use your personal information where it is necessary, fair and lawful to do so. We will collect and use your information only where:
- We have a lawful basis to do so; or
- You have given us your explicit consent to do so.
Who we may share your information with
If you are a student, we may share your information with third parties during the course of your studies with us to fulfil our contractual and legal obligations.
These third parties include:
- Education Skills Funding Agency (ESFA)
- Office for Students
- University of Central Lancashire
- Young Peoples Services (Local Authority)
- Higher Education Statistics Agency
- Student Loans Company and Student Finance
- Pay my Student (bursary and scholarship applications)
- The Police and other regulatory bodies when required as part of a criminal investigation or for the prevention and detection of crime
- External Examiners
- UK Visas and Immigration Agency (Tier 4 sponsored international students)
- Learner Record Services
- Professional Bodies
We will never sell or rent your personal details to someone else. Whenever we share your personal information, we will do so in line with our obligations to keep your information safe and secure.
Where your information is processed
All of your personal information is processed in the UK and European Economic Area (EEA).
How we store and protect your personal information
We take information and system security very seriously and we strive to comply with our obligations at all times. Any personal information which is collected, recorded or used in any way, whether on paper, online or any other media, will have appropriate safeguards applied in line with our data protection obligations.
Your information is protected by controls designed to minimise loss or damage through accident, negligence or deliberate actions. Our staff also protect sensitive or confidential information when storing or transmitting information electronically and must undertake annual training on this.
Our security controls are in line with industry standards and good practice; providing an environment that manages risks to the confidentiality, integrity and availability of your information.
How long we keep your information
All personal information will only be held for as long as we are legally required to do so, or as long as is necessary to fulfil our duties as a Further and Higher Education College. After this, we have a policy of securely disposing of, or anonymising personal information.
People who make a complaint to us
When we receive a complaint from a person, we make up a file containing the details of the complaint. This normally contains the identity of the complainant and any other individuals
involved in the complaint.
We will only use the personal information we collect to process the complaint and to check on the level of service we provide. We do compile statistics showing information like the number of complaints we receive, but not in a form which identifies anyone.
We will keep personal information contained in complaint files in line with our retention policy. This means that information relating to a complaint will be retained for four years from closure. It will be retained in a secure environment and access to it will be restricted according to the ‘need to know’ principle.
- Network Security.
The College protects its networks from attack by defending the network perimeter, blocking unauthorised access and malicious content. Security controls are tested and monitored on a daily basis.
- Access Rights.
Management processes are in place to limit number of privileged accounts. User rights are set to least privilege required and user activity is monitored. Activity and audit logs are checked regularly.
- Incident Management
The College has an established incident response and disaster recovery capability. Incident management plans are in place and regularly exercised. Criminal incidents will be reported to law enforcement agencies.
A monitoring and reporting strategy has been established based upon supporting policies. All network systems are continuously monitored. Logs are scanned for unusual activity that could indicate an attack or inappropriate behaviour.
- Malware Prevention
Anti-malware defences have been deployed over the entire virtual estate.
- Portable Media Controls.
There are restrictions on the use of removable media. All allowed removable media is scanned for malware before allowed onto the College systems
- Secure Configurations
Security patches are applied promptly and all systems are based upon a secure configuration. All systems are recoded in the configuration management database.
- Remote Working
Data is protected both in transit and at rest. Remote and mobile workforce adhere to a mobile and remote working security policy.
- Use Education and Awareness
Staff will be given instruction on cyber security policies covering acceptable and secure use of systems. Staff must maintain awareness of cyber risks.
Your individual rights
You have several rights in relation to how Myerscough College and University Centre uses your information. They are:
Right to be informed
Right of Access
You have the right of access to your personal information. If you wish to receive a copy of the personal information we hold on you, you may make a data subject access request (DSAR).
Right to request that your personal information be rectified
If your personal information is inaccurate or incomplete, you can request that it is corrected.
Right to request erasure
In certain circumstances, you can ask for your information to be deleted or removed if there is not a lawful basis for us to continue to process it.
Right to restrict processing
You can ask that we stop the processing of your personal information for certain reasons. This means that we are still permitted to keep your information – but only to ensure we don’t use it in the future for those reasons you have restricted.
Right to data portability
You can ask for a copy of your personal information for your own purposes to use across different services. In certain circumstances, you may move, copy or transfer the personal information we hold to another company in a safe and secure way. For example, if you were moving to another education provider.
Right to object
You can object to us processing your personal information where it is based on our legitimate interests.
Rights related to automatic decision making including profiling
Myerscough College and University Centre does not undertake any automatic decision making
How to Make a Complaint
You also have the right to contact the Information Commissioner’s Office (ICO), the regulatory body for UK data protection, and they can be contacted at https://ico.org.uk/concerns/.