Privacy Policy

Introduction

Class Technology Solutions Ltd (“CTS”, “we”, “our”, or “us”) is committed to protecting and respecting your privacy.

This Privacy Notice explains how we collect, use, store and share personal information in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

CTS provides managed IT services, consultancy and technical solutions, primarily within the education sector.

Class Technology Solutions Ltd is the data controller for the personal information described in this notice.


Contact details

Class Technology Solutions Ltd
Frazer House
14 Carfax
Horsham
West Sussex
RH12 1DZ

Email: info@class-technology.co.uk
Data protection enquiries: gdpr@class-technology.co.uk
Telephone: +44 (0) 1403 212520

Company Number: 5683597
VAT Number: 97498873


What personal data we collect

We may collect and process personal information including:

  • Name, job title and organisation
  • Contact details such as email address and telephone number
  • Correspondence and communications
  • Information relating to services provided or requested
  • Technical and support information
  • Recruitment and employment information where relevant

In limited circumstances, we may process special category or sensitive personal data where this is necessary, lawful and proportionate. This may include information relating to health, safeguarding or criminal record checks for employment or education-sector compliance purposes.

We aim to collect only the information necessary for specific and legitimate business purposes.


How we collect information

We may collect personal information through:

  • Direct contact by email, telephone, meetings or events
  • Website contact forms and enquiries
  • Customer onboarding and service delivery activities
  • Recruitment and employment processes
  • Customer satisfaction surveys and service reviews
  • Third parties such as referees, recruitment agencies or customer representatives where appropriate

Why we process personal data

We process personal information to:

  • Deliver managed IT services and technical support
  • Manage customer and supplier relationships
  • Respond to enquiries and requests
  • Monitor and improve service quality
  • Conduct customer satisfaction and service experience surveys
  • Manage recruitment and employment processes
  • Maintain financial, contractual and administrative records
  • Meet legal, regulatory and safeguarding obligations
  • Protect the security and integrity of our systems and services

Feedback and survey information may be used to support operational improvement, customer relationship management and service planning.


Lawful bases for processing

We process personal data under one or more lawful bases set out in Article 6 of the UK GDPR, including:

  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests relating to service delivery, operational improvement and business management
  • Consent, where required

Where we process special category data, we will do so only where an additional lawful condition applies.


Sharing personal data

We only share personal data where necessary and lawful.

We may share information with:

  • Customers and authorised customer representatives
  • Suppliers and service providers
  • Professional advisers and consultants
  • Recruitment and employment agencies
  • Financial institutions
  • Regulatory or legal authorities where required

We use trusted third-party service providers, including Microsoft 365 services, to support communication, collaboration, service delivery and customer feedback activities.

All third parties are expected to process information securely and in accordance with applicable data protection laws.


International transfers

Where personal information is processed outside the United Kingdom, we will ensure appropriate safeguards are in place in accordance with UK data protection law.


Data security

We take appropriate technical and organisational measures to protect personal information, including:

  • Role-based access controls
  • Password protection and multi-factor authentication
  • Encryption where appropriate
  • Secure cloud platforms and managed infrastructure
  • Monitoring, patching and cybersecurity controls
  • Physical office security measures

We regularly review and improve our security arrangements.


Data retention

We retain personal information only for as long as necessary for the purposes for which it was collected and to meet legal, contractual and operational requirements.

Examples include:

  • Recruitment records retained in line with employment and safeguarding requirements
  • Service tickets and operational records retained for support and audit purposes
  • Customer correspondence and survey responses retained for service management and improvement activities

Information is securely deleted or anonymised when no longer required.


Your rights

Under UK data protection law, you have the right to:

  • Request access to your personal information
  • Request correction of inaccurate information
  • Request erasure of information where applicable
  • Object to or restrict certain processing
  • Request transfer of your information in certain circumstances
  • Withdraw consent where processing relies on consent
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, please contact:

HR@class-technology.co.uk

We will respond within the timescales required by law.


Updates to this notice

We may update this Privacy Notice from time to time to reflect changes in legal requirements, technology or our services. The latest version will always be available on our website.


Ready to transform your school's technology?