Hibernian Training

Privacy Policy

About this document

Data protection is about your fundamental right to privacy.

This document describes our data protection policies in regard to collecting, storing and processing personal data about you.

It describes how we comply with the data protection rules mandated by the EU General Data Protection Regulations (GDPR) and your rights under GDPR. It outlines what personal data we collect and the purpose for collecting it. It outlines how we store the data and for how long. And it specifies to whom we transfer or disclose the data.

Who are we?

Hibernian Training Courses (HTC) is a national leader in the development and delivery of learning solutions which meet the precise business needs of our clients. Our approach is to work in partnership with each client, forming a relationship where there is a deep level of understanding of what will work best to achieve their learning objectives and lasting behavioural change. Our focus on realising the potential within every individual, through tools that change behaviour to improve performance, is what sets us apart.

Our company headquarters and registered office address is: 38 Fenian St, Dublin, Ireland. Our contact email address is: admin@hiberniantrainingcourses.ie. Our contact phone number is: +01-5310175

What is GDPR?

At HTC, we are committed to the following key principles: protect and respect the privacy of each of our customers, maintain the security of any customer information held by us, and to be clear and transparent about what information we collect and what we do with that information. To this end, we will take the necessary steps to ensure that all personal data is collected, stored and processed by us in accordance with current Irish Data Protection Legislation and the EU General Data Protection Regulations (GDPR).

GDPR is the primary EU law regulating how companies protect EU citizens’ personal data. It came into force as of 25 May 2018 for the purpose of providing you with greater rights, control and understanding of how your personal data is being used.

Under the GDPR, your personal data is data that relates to or can identify you either by itself or together with other available information (e.g. your name and phone number). You are a data subject when you are the person to whom the personal data relates. The data controller is the entity that collects or uses your personal data, in this case Hibernian Training Courses.

To demonstrate compliance with the GDPR, we, as the data controller, are obliged:

  • to collect, store and process personal data lawfully, fairly and transparently, for specified, explicit and legitimate purposes
  • to ensure that the data is adequate, relevant and limited
  • to keep the data accurate and up-to-date
  • to store the data safe and secure, and for no longer than necessary

What personal data do we collect?

We may need to collect information about you in connection with your relationship and interactions with us as a customer and through your use of our website, mobile applications and online services.

By disclosing your personal information to us by whatever means, you consent to the collection of your personal information by us in the manner set out in this Privacy Policy.


Personal data we collect includes:

Contact details

We require your contact details In order to be able to communicate with you. These might include your name, phone number, email address and company details.

Certification information

Course certification is carried out by Quality and Qualifications Ireland (QQI), the independent State agency responsible for promoting quality and accountability in education and training services in Ireland. QQI are authorised to collect, store and process relevant certification data, and have delegated these powers to us, as we are a QQI quality-assured training provider.

The certification details we require are your PPSN (Public Personal Social Numbers), your date of birth, and any other details required by QQI for certification purposes.

Internal access to QQI data is strictly limited to those involved in submitting the relevant data to QQI on your behalf, and all data is securely deleted by us once submitted.


In order to improve our customer’s website visits, we monitor website usage via the Google Analytics service. This service provides us with collated, anonymous analytical data about page visits; no identifying details are captured.

To measure performance, Google Analytics uses cookies to gather anonymous data for statistical purposes only; a cookie is a small text file sent by a website to the browser on your computer or mobile device when you are visiting a website.

For details about how Google Analytics treats collected data and for Google’s full privacy policy, refer to the following documents at google.com:

  • Google’s full privacy policy
  • Google: Safeguarding your data

We may also process data internally for statistical purposes, in order to improve our training services, but in such cases, your data will be anonymous.

To whom do we transfer or disclose the data?

In order to provide our services to you, we are contractually obliged to share your data with the requirements of our course accredited body Quality and Qualifications Ireland (QQI), when a course is undertaken under their accreditation.

From time to time we may publish delegate feedback on our website, but only with your consent.

How do we store your personal data?

We store personal data on a secure, password protected server, plus a secure backup server, with access available only to HTC staff who require access to the information in order to manage your course participation and accreditation.

How long do we keep your personal data?

Your personal data is stored for only such time as is necessary to fulfil the purpose of delivering our services.

Different types of personal data may be held for different time periods, depending on the purpose of the data; this may include: certification requirements, consideration for answering your queries, resolving possible problems, complying with legal requirements under applicable laws, and for safeguarding purposes. To this end we may need to retain your personal data for a reasonable period of time after your last interaction with us.

Stored personal data is regularly reviewed and when there is no longer a perceived requirement for storing the data, we will delete or destroy it in a secure manner.

What are your rights under GDPR?

Right to access, rectification or erasure

Both the current Irish legislation and the GDPR provide you with a right to request access to the personal data relating to you. This includes, for example, the right to be informed whether or not personal data about you is being processed, what personal data is being processed, and the purpose of the processing, the identity of any recipients who may see this data, and the expected period for which it will be stored.

If your data is being collected you will be able to request a copy of that data to be sent to you. The controller will be able to charge a reasonable administrative fee for this. Under the current legislation, the fee cannot be more than €6.35.

If personal data is incorrect or incomplete, you may request for it to be amended or supplemented.

You may request that your data be deleted if the purpose behind the data processing activity has lapsed or ceased to be applicable for other reasons. However, retention requirements must be observed.

Any request for your personal data to be amended, supplemented or deleted must be made in writing by you via email to us; there is no charge in dealing with this type of request which will be completed within 40 calendar days from the date the request is received.

Right to object

We are committed to being in compliance with the GDPR in our collection, storage and processing of your personal data. If you believe that we are not in compliance, please provide us with the particulars for discussion. You are, nonetheless, entitled to raise your concerns with a supervisory authority.

Right to data portability

If personal data about you that you yourself have provided is stored by us electronically, you may request that the data is provided to you in a structured, commonly used and machine-readable format.

Right to withdraw your consent

In cases where data processing is based on your consent, you have the right to withdraw your consent to such processing at any time.

Right to opt-out from electronic marketing communications

From time to time we may send delegates emails on courses we think may interest them or that include a newsletter with information that they may be interested in. To opt out of further emails, you can click the Unsubscribe link at the bottom of each email, or contact us by phone or email.

Right to notification if data is compromised

While we are committed to storing your personal data securely, we will inform you if the data is in any way compromised once we become aware of any such actions.

Updates to our Privacy Policy

We reserve the right to change this Privacy Policy at any time. The current version of the Privacy Policy is the one linked to from the HTC website. Any updated version replaces all previous versions and is effective immediately.