Claim your free gift:

I Have Symptoms

Health Professional

Privacy Policy – SIRPA Ltd

SIRPA Ltd is committed to protecting your privacy and handling personal data responsibly and transparently. This Privacy Policy explains how we collect, use, store, and protect personal information when you use our website, training school, and related services, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

SIRPA Ltd is the data controller for the personal data processed through our website, training school, and associated communications.

If you have any questions about this policy or how your data is used, please contact us using the details at the end of this policy.

Information We Collect

Website Usage Information

When you visit our website (including www.sirpa.org and related domains), we may automatically collect information such as:

  • Date and time of visits
  • Pages viewed and time spent on the site
  • Referring and exit websites
  • IP address
  • Responses to quizzes or surveys

This information helps us understand how our website is used and how we can improve it.

Information You Provide Voluntarily

We may collect personal information when you:

  • Contact us by email
  • Register on our website or training school
  • Complete forms
  • Sign up to receive communications
  • Purchase products or services

This information may include your name, email address, and other details relevant to your enquiry or registration.

Cookies

Our website uses cookies to enhance user experience and analyse site usage. Cookies are small text files stored on your device that help us understand how visitors interact with our site. Your browser controls whether cookies are accepted, and each website can only access its own cookies.

How We Use Your Information

We use personal information to:

  • Administer our website and training services
  • Provide customer support and respond to enquiries
  • Deliver training and educational services
  • Improve our services and learning experience
  • Communicate relevant information, where consent has been given
  • Meet legal and regulatory obligations

We do not sell, rent, or trade personal data to third parties.

Lawful Basis for Processing (UK GDPR)

Under UK GDPR, we process personal data on the following lawful bases, depending on the circumstances:

  • Consent – where you have given clear permission
  • Contract – where processing is necessary to deliver services you have requested
  • Legal obligation – where required by law
  • Legitimate interests – where processing is necessary for the effective operation of our organisation and does not override your rights

Where special category data (such as health-related information) is processed, this is done in accordance with Article 9 UK GDPR, with appropriate safeguards in place.

Email Communications

If you contact us by email, we may retain the content of the correspondence along with your contact details. We use this information solely to respond to your enquiry and manage our relationship with you.

We are committed to keeping email addresses confidential and provide opt-out options in all marketing communications. You may unsubscribe at any time.

Training School Data

If you register for the SIRPA Training School, your information will be used to:

  • Manage your registration and access
  • Support your learning experience
  • Improve training content based on feedback

Training-related data is not sold or shared with unaffiliated third parties without your consent, unless required by law.

Data Sharing and Legal Disclosure

We may disclose personal information if required to do so by law, regulation, safeguarding obligations, or to protect our legal rights.

Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including legal, regulatory, professional, and insurance requirements. When data is no longer required, it is securely deleted or destroyed.

Data Security

We take appropriate technical and organisational measures to protect personal data, including:

  • Secure systems and access controls
  • Password protection and restricted access
  • Secure transmission methods (such as SSL)

While we take reasonable steps to protect information, email is not considered a fully secure method of communication. Please avoid sending sensitive information by email where possible.

Data Breaches

In the event of a personal data breach, we will assess the risk and take appropriate action in line with UK GDPR requirements, including notification to the Information Commissioner’s Office (ICO) and affected individuals where required.

Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Request correction of inaccurate or incomplete data
  • Request erasure of your data, where applicable
  • Restrict or object to processing in certain circumstances
  • Request data portability, where applicable
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

Requests can be made using the contact details below.

External Links

Our website may contain links to external websites. We are not responsible for the content or privacy practices of those sites and encourage you to review their privacy policies.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page. We will not use your personal information in a way that is materially inconsistent with this policy without your consent.

Contact Us

If you have any questions about this Privacy Policy or how your personal data is handled, please contact:

SIRPA Ltd – admin@sirpa.org

You also have the right to contact the Information Commissioner’s Office: www.ico.org.uk 

SIRPA Ltd
Company no. 08353000
VAT no.  501 2505 53

Yorkshire, UK