Website privacy statement
Browsing our website
We use Google Analytics to collect information on how visitors use our site. This information is used to create reporting and analysis to allow us to improve the site for our users. The cookies used by Google Analytics collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
Opting out of cookies
Information about this and your options for opting out of advertising cookies is available from the Network Advertising Initiative. Alternatively, consult the documentation for your web browser or mobile device for further options to control which cookies you allow. You can disable Google Analytics tracking on your browser by following the instructions on the Google site.
Accessing services through the website
When you access services through our website you are usually required to supply some sort of personal information. This may be simply an email address, or the information required in the online application process. In general, forms on PROTECT website will either contain an explanation about how the information you supply will be used or will provide a link to the relevant page.
Connecting with PROTECT on social media
PROTECT has a presence on social media (Facebook, Twitter, YouTube etc.) and you can interact with us through your existing social media accounts.
Data Protection policy
PROTECT is bound by Israeli and EU data protection law.
Controller’s contact details
PROTECT is the controller for the personal information we process unless otherwise stated.
Our postal address:
Teddy Kolek stadium
David Ayalon, 1
Jerusalem – Israel
For general contact for PROTECT please use: firstname.lastname@example.org
Data Protection Officer’s contact details
PROTECT’s Data Protection and Information Compliance Manager is our Data Protection Officer. You can contact the DPO at: email@example.com or via our postal address.
How do we collect personal data?
PROTECT collects personal data in many different scenarios. Where data is provided to us directly by you the most common examples are:
• You are student registered with on one of our programs
• You have signed up to one of our mailing lists
• You wish to attend, or have attended, an event
• You have accessed our website
• You have bought goods and services from us
We also receive personal information indirectly. Examples of this may include:
• You have a public profile linked to PROTECT
• A complainant refers to you in their complaint correspondence
If it is not disproportionate or prejudicial, we’ll contact you to let you know we are processing your personal information.
Your data protection rights
You have a number of rights under the General Data Protection Regulation, such as the right of access to your data (the ‘Subject Access Right’).
Sharing your information
To fulfill our services we will need, where appropriate, to share relevant data with third parties. This will be outlined in the specific sections of the privacy notices about our services.
PROTECT may use an external contractor or ‘data processor’ to store or manage its data. It will process this data only for purposes specified by PROTECT and will be bound by contract to meeting PROTECT’s obligations under the General Data Protection Regulation. Where data is passed outside the EEA, PROTECT will take the relevant steps to ensure there is adequate protection in place.
Your personal data will not be passed to any other third party without your consent, except where PROTECT is required to do so by law.
Links to other websites
Links to other websites of other organizations are not covered by this Privacy Notice.
PROTECT has a presence on social media (Facebook, Twitter, YouTube etc.) and you can interact with us through your existing social media accounts and their relevant privacy policies.
Your right to complain
You have the right to complain about how we process your data. Complaints about data protection should be made to the Data Protection Officer at the following link: firstname.lastname@example.org
If you remain unsatisfied with our response, you can escalate your complaint to the
Privacy Protection Authority
125 Begin Road
P.O. Box 7360
Tel Aviv 61072
The Authority was formerly the Israeli Law, Information and Technology Authority (ILITA).
Changes to this privacy notice
This page will be regularly reviewed and kept up to date.
Managing customer contacts
If your interactions with us include any unacceptable behavior, by phone, online or in person, which puts our staff or other people at risk we will store a record of those interactions and share that information with relevant staff to avoid that risk in future.
You have a right to object to us collecting and storing this data under GDPR though PROTECT may refuse your request.
Visitors to our website
Student Privacy Notice
During the application and registration processes you will be asked to provide some personal information for our records. The statement below explains how PROTECT will process this data. Your application data will form part of your student record. You will find data protection referred to in the Student Terms and Conditions which you agree to as part of your Contract with PROTECT.
You are registered with PROTECT and your data will be processed by PROTECT, a data controller under the definitions of the General Data Protection Regulation (GDPR).
1. The data we collect
PROTECT collects the following data:
a) Contact details, date of birth
b) Academic history before PROTECT, including academic and/or professional references where required
c) Financial details for fee payments
d) Data about you generated during your time with us (study and assessment)
e) Where relevant, information related to special exam arrangements or mitigating circumstances
f) Data on how you access or use our resources (library, websites, virtual learning environments).
2. What we do with your data
PROTECT processes the information for the following purposes:
a) Managing your application to study with us
b) Managing your time with us a student (study and assessment)
c) Carry out reporting and analysis on our student body to check and monitor our outcomes
d) Informing you of other courses and services available to you
e) Monitoring your interactions – where you appear to have disengaged with your studies, we may contact you and offer support.
3. The legal basis we use to process your data
PROTECT has to have a legal basis for processing your data and relies on the following approach:
a) Collecting the data is necessary for the performance of your contract with us as a registered student
b) Where you access certain optional services we will ask for your consent
c) Holding records of your qualifications is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
4. How long we keep your data for
Your data will be stored for the duration of your registration. After you graduate or cease your studies we will take the following approach:
a) A transcript record of your results and qualifications will be kept permanently by PROTECT.
b) We will retain your academic work for as long as the time you have to make an academic appeal. When that time has passed we will securely dispose of it.
c) We will retain other data collected on you for appropriate periods based on risk and necessity.
d) If your application does not lead to registration, we will retain your record for three years and provide periodic information and reminders about other courses and study opportunities.
5. Sharing your data with third parties
PROTECT will share your information with the organizations that assist in the delivery and assessment of your studies. PROTECT may use an external contractor or ‘data processor’ to store or manage its data. It will process this data only for purposes specified by PROTECT and will be bound by contract to meeting PROTECT’s obligations under the General Data Protection Regulation. Where data is passed outside the EEA, PROTECT will take the relevant steps to ensure there is adequate protection in place. Your personal data will not be passed to any other third party without your consent, except where PROTECT is required to do so by law.
6. Your rights
You have a number of rights under the General Data Protection Regulation:
Finding out about your data ‐ ‘The Right of Access’
PROTECT does not take your data and hide it away. You have a right to find out about what we are doing with it, check we’re holding it correctly and to obtain a copy of what we hold. We will provide this, where possible, through direct access to the data, either electronically or in person. Alternatively, we will provide electronic or paper copies.
You only have the right to access your data. If your data contains references to other people’s information, we may have to withhold some parts of your response to protect the
privacy of others.
Correcting mistakes – ‘The right to rectification’
PROTECT makes every effort to ensure its data is accurate. If you think something we hold about you is wrong, you can ask for this to be corrected. PROTECT will assess your request and correct any inaccuracy.
Remove – You have the right to ask us to remove or delete data we hold on you.
PROTECT will assess your request and, if the following applies, will delete your data:
• It’s no longer needed for what it was collected for
• If you opted in to provide us with your data and now you would like to opt‐out
• If think what we have done with your data is unlawful
• If you think we have no legitimate grounds to keep the information
• If this information has to be deleted to comply with the law
PROTECT will not delete your data if any of the following applies:
• Deleting your information would compromise PROTECT’s right of freedom of expression
• We need to retain the information to comply with the law
• For archiving purposes, scientific, historical or statistical
• Deleting your information would prevent PROTECT defending legal claims in the future
Put it on hold – ‘Right to restriction of processing’
You may, in the course of a dispute with PROTECT about the use of your data, ask PROTECT to stop using your data if the following applies:
• If you are claiming what PROTECT holds about you is inaccurate, and we are still verifying this
• Holding the information is against the law but you would like us to keep it
• We are due to delete the data and you would like us to keep it
• You’ve objected to our legitimate grounds for using your data and we are still verifying it
Letting others know – our obligations
If you have asked us to correct, erase or restrict the use of your data and PROTECT has, in the course of its normal business, passed that information to any third parties, then we are obliged to notify these third parties to allow them to make the required changes. We will let you know who these third parties are.
PROTECT will take every reasonable step to fulfill your request. If, however, coordinating the correction, erasure or restriction of your data with third parties is impossible or requires disproportionate effort then we are not obliged to do so.
Taking your data with you – ‘The right to data portability’
You have the right to ask PROTECT to provide you with a re‐usable electronic copy of your data to allow you to transfer to another provider. You can do this where the data has been provided to us where you have opted‐in or where you have provided data to as part of a contractual agreement. You only have this right with data held in an electronic form.
PROTECT may refuse to transfer the data if:
• If it’s not technically possible to transfer to another organization
• If the data you are asking to be transferred includes other people’s data