Skip to content
Guardian Angels Training Logo
Our Courses
nurse and trainer smiling
Clinical Skills Training
carers moving a hospital bed
Health and Social Care Training
trainer training other trainers
Train the Trainer
someone holding an elderly persons hand who's using a wooden walking stick
Physical Intervention and Behaviour Management Training
man slipping on wet floor next to caution wet floor sign
Health and Safety Training
training on a mannequin
First Aid Training
blurred view of training course
Training Manager
4 people holding soil with a plant sprouting
Care Quality Consultancy
Want to find out more or book one of our Courses?
Training Packs
nurse and trainer smiling
Clinical Skills & Management
training on a mannequin
First Aid
man slipping on wet floor next to caution wet floor sign
Health & Safety
carers moving a hospital bed
Health & Social Care
Want to find out more about our Training Packs?
Home
/
Guardian Angels Training – Privacy Notice

Guardian Angels Training - Privacy Notice

Registered name: Stewart Hill Associates Limited
Trading name: Guardian Angels Training
Registered office: 272 Bath Street, Glasgow, G2 4JR
Telephone: 0141 483 4076
Email: hello@guardianangelstraining.co.uk
Website: www.guardianangelstraining.co.uk

We are the Data Controller for the personal information we process. This privacy notice explains how we collect, use, store, and protect your information, and your rights under data protection law.

1. Information We Collect and Why

We collect, use, and store personal information for the following purposes:

a) To provide our training and consultancy services:

  • Names, contact details, and addresses
  • Date of birth (for certification or ID verification)
  • Payment and transaction information
  • Employment and role details (for workplace training)
  • Learning progress, course completion, and assessment records
  • Health information (only where necessary, e.g. allergies, access needs, or safeguarding)

b) To manage customer accounts, payments, and communication:

  • Account login details and billing information
  • Purchase history and course bookings
  • Correspondence, call records, or enquiry details

c) For legal, safeguarding, and compliance purposes:

  • Disclosure and Barring Service (DBS), Access NI, or Disclosure Scotland data (where applicable)
  • Health and safety records and incident information
  • Evidence required by regulators, funders, or awarding bodies

d) For marketing and service updates (optional):

  • Names and contact details
  • Marketing preferences and communication history
  • IP addresses, website usage, and cookies (see our separate Cookies Policy)

We will always limit the information we collect to what is necessary for these purposes.

2. Lawful Bases for Processing

We rely on one or more of the following lawful bases under Article 6 of the UK GDPR:

  • Contract: Processing is necessary to perform our contract with you or take steps before entering into one.
  • Legal Obligation: We must process certain information to comply with our legal duties (e.g. accounting, safeguarding, or certification).
  • Legitimate Interests: We have a legitimate business interest in providing training, maintaining records, ensuring safety, and improving our services. We only use this basis when our interests are not overridden by your rights.
  • Consent: For marketing, photography, or optional communications, we will always ask for your explicit consent, which you can withdraw at any time.

For health or DBS-related data (special category or criminal conviction data), we process under Articles 9(2)(b), (g), or (h) of the UK GDPR and Schedule 1, Part 2 of the Data Protection Act 2018, as necessary for employment, education, or safeguarding obligations.

3. Where We Obtain Personal Information

We collect information from:

  • You directly (via registration, online forms, telephone, or email)
  • Your employer or organisation (for workplace training contracts)
  • Referring institutions such as the NHS, local authorities, or education providers
  • Publicly available sources (e.g. professional registers)
  • Background or verification checks (DBS/Disclosure Scotland)

4. Sharing Personal Information

We only share information where necessary and proportionate. We may share data with:

  • Awarding or accreditation bodies (e.g. Skills for Health, City & Guilds)
  • Employers, placement providers, or regulators (as part of contracted training)
  • Professional or legal advisers
  • Auditors, funding bodies, and quality assurance inspectors
  • Health or emergency services (for safeguarding or incident response)
  • Service providers such as IT hosts, payment processors, or course platforms under strict confidentiality agreements

We do not sell or trade personal information.

5. International Data Transfers

We store and process your information primarily within the United Kingdom.
If data is transferred outside the UK (for example, cloud storage or email servers), it will only occur where:

  • The destination country has an adequacy decision by the UK Government, or
  • We have implemented standard contractual clauses approved by the ICO to protect your data.

6. Data Retention

We retain personal data only for as long as necessary for the purpose collected or to comply with legal and regulatory obligations.

Examples of retention periods:

  • Learner and certification records – 7 years after course completion
  • Financial and invoicing records – 7 years (HMRC requirement)
  • Health and safety records – 3 years (or longer if required by law)
  • DBS or safeguarding information – 6 months from decision or in line with statutory guidance
  • Marketing consent records – until withdrawn

After these periods, information will be securely deleted or anonymised.

7. Data Security

We use appropriate technical and organisational measures to safeguard personal data, including:

  • Secure servers, encrypted backups, and restricted access controls
  • Password-protected systems and staff authentication
  • Staff data protection training and confidentiality agreements
  • Regular review of data security and breach procedures

If a data breach is likely to result in a risk to individuals’ rights or freedoms, we will notify the ICO and affected individuals where legally required.

8. Your Rights

Under UK data protection law, you have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Erase data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability (to transfer your data to another controller)
  • Withdraw consent at any time, where processing is based on consent

Requests can be made to: hello@guardianangelstraining.co.uk
We will respond within one calendar month.

9. Automated Decision-Making

We do not carry out any fully automated decision-making or profiling that has legal or significant effects on individuals.

10. Complaints

If you are unhappy with how we use your personal data, please contact us first using the details above.
If you remain dissatisfied, you can contact the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Helpline: 0303 123 1113
Website: www.ico.org.uk/make-a-complaint

11. Updates to This Notice

We may update this Privacy Notice periodically to reflect legal or operational changes.
The latest version will always be available at www.guardianangelstraining.co.uk/privacy.
Last updated: 9th October 2025

Guardian Angels Training are a specialist provider of quality training courses to organisations and individuals across the UK. We deliver mandatory and specialist training to ensure your organisation is compliant with current legislation and standards.
Sitemap
About us
Contact us
© Guardian Angels Training 2025
Terms and Conditions
Privacy Policy
Cookies
Website Terms