Privacy Policy & GDPR
1. Introduction
This Privacy Policy explains how The Learning Loop Consulting Ltd (“we”, “us”, “our”) collects, uses, and protects personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
We are committed to ensuring that your privacy is protected and that personal data is handled lawfully, fairly, and transparently.
2. Company Details
The Learning Loop Consulting Ltd
60 Tottenham Court Road
Suite 6742a
Fitzrovia
London
W1T 2EW
United Kingdom
Email: privacy@thelearningloop.net
3. Scope
- Visitors to our website
- Clients and prospective clients
- Individuals whose data is provided to us in connection with our services
4. Roles Under Data Protection Law
Depending on the context, we act as:
- Data Controller – for our own business operations and website
- Data Processor – when processing personal data on behalf of clients
5. Personal Data We Collect
5.1 Identity and Contact Data
- Name
- Email address
- Telephone number
- Company name and role
5.2 Technical Data
- IP address
- Browser type and version
- Device information
5.3 Usage Data
- Website interaction data
- Pages visited and session duration
5.4 Client Data
Where we provide services, we may process personal data provided by clients, including:
- Employee names and roles
- Training and performance data
6. How We Collect Data
- Direct interactions (forms, emails, contracts)
- Automated technologies (cookies, analytics)
- Third parties (clients, service providers)
7. Purposes and Legal Basis for Processing
We process personal data on the following legal bases:
- Contractual Necessity – To deliver our services and manage contractual relationships.
- Legitimate Interests – To operate and improve our business, provided such interests do not override your rights.
- Legal Obligations – To comply with applicable laws and regulations.
- Consent – Where required (e.g. marketing communications, non-essential cookies).
8. How We Use Personal Data
- Provide and manage services
- Communicate with clients and stakeholders
- Improve our website and services
- Maintain security and prevent fraud
- Comply with legal obligations
9. Data Sharing
We may share personal data with:
- Contractors and service providers
- Cloud hosting and IT providers
- Professional advisors (legal, financial)
All third parties are contractually required to protect personal data.
10. International Data Transfers
As a global business, personal data may be transferred outside the UK.
Where this occurs, we ensure appropriate safeguards, including:
- UK International Data Transfer Agreements (IDTA)
- Standard Contractual Clauses (SCCs)
- Transfers to countries with adequacy decisions
11. Data Retention
- Client data: contract duration + up to 6 years
- Financial records: 6 years
- Marketing data: until consent withdrawn
- Technical data: up to 12 months
12. Data Security
- Access controls
- Encryption where appropriate
- Secure systems and infrastructure
- Vendor due diligence
13. Data Breaches
We maintain procedures to detect, report, and investigate data breaches.
Where required, we notify:
- The UK Information Commissioner’s Office (ICO) within 72 hours
- Affected individuals or clients without undue delay
14. Your Rights
Under UK GDPR, you have the right to:
- Access your personal data
- Rectify inaccurate data
- Request erasure (“right to be forgotten”)
- Restrict processing
- Object to processing
- Data portability
- Withdraw consent
Requests can be made to:
privacy@thelearningloop.net
15. Complaints
You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO):
https://ico.org.uk
16. Cookies
We use cookies in accordance with the Privacy and Electronic Communications Regulations (PECR).
Please refer to our Cookie Policy for details.
17. Changes to This Policy
We may update this Privacy Policy from time to time. Updates will be published on this page.